Note: This documentation is still in progress, not reviewed properly, and might contain some errors or outdated images. It's intended for the upcoming 4.0.0 release, so configuration settings might be different from previous versions.
API Configuration
Overview
Poweradmin includes a RESTful API that allows external applications to interact with DNS records and zones programmatically. The API supports both API key authentication and HTTP Basic Authentication.
Configuration Options
API settings can be configured in the config/settings.php file under the api section.
| Setting | Default | Description |
|---|---|---|
enabled |
false |
Enable API functionality (including API keys) |
basic_auth_enabled |
false |
Enable HTTP Basic Authentication for public API endpoints |
basic_auth_realm |
Poweradmin API |
Realm name for HTTP Basic Authentication |
log_requests |
false |
Log all API requests |
docs_enabled |
false |
Enable API documentation at /api/docs endpoint |
Configuration Example
return [
'api' => [
'enabled' => true,
'basic_auth_enabled' => true,
'basic_auth_realm' => 'DNS Management API',
'log_requests' => true,
'docs_enabled' => true,
],
];
Authentication Methods
API Key Authentication
API keys provide secure, token-based authentication:
- Generate API keys - Create keys for each application
- Permissions - Restrict access to specific operations
- Revocation - Easily revoke compromised keys
Using API Keys
curl -H "X-API-Key: your-api-key-here" \
-H "Content-Type: application/json" \
https://your-domain.com/api/v1/zones
HTTP Basic Authentication
Traditional username/password authentication:
curl -u username:password \
-H "Content-Type: application/json" \
https://your-domain.com/api/v1/zones
API Endpoints
Zone Management
GET /api/v1/zones- List all zonesGET /api/v1/zones/{id}- Get zone detailsPOST /api/v1/zones- Create new zonePUT /api/v1/zones/{id}- Update zoneDELETE /api/v1/zones/{id}- Delete zone
Record Management
GET /api/v1/zones/{id}/records- List zone recordsGET /api/v1/records/{id}- Get record detailsPOST /api/v1/zones/{id}/records- Create recordPUT /api/v1/records/{id}- Update recordDELETE /api/v1/records/{id}- Delete record
User Management
GET /api/v1/users- List users (admin only)GET /api/v1/users/{id}- Get user detailsPOST /api/v1/users- Create user (admin only)PUT /api/v1/users/{id}- Update userDELETE /api/v1/users/{id}- Delete user (admin only)
API Documentation
When docs_enabled is true, interactive API documentation is available at /api/docs. This provides:
- Interactive testing - Test API endpoints directly
- Request/response examples - See data formats
- Authentication guide - Learn how to authenticate
- Error codes - Understand error responses
Security Considerations
Production Setup
'api' => [
'enabled' => true,
'basic_auth_enabled' => false, // Use API keys only
'log_requests' => true, // Enable audit logging
'docs_enabled' => false, // Disable docs in production
],
Security Best Practices
- Use HTTPS only - Never expose API over HTTP
- API key rotation - Regularly rotate API keys
- Input validation - Validate all API inputs
- Access control - Restrict API access by IP if possible
- Audit logging - Log all API requests and responses
Request/Response Format
Request Format
{
"name": "example.com",
"type": "A",
"content": "192.168.1.100",
"ttl": 3600
}
Response Format
{
"success": true,
"data": {
"id": 123,
"name": "example.com",
"type": "A",
"content": "192.168.1.100",
"ttl": 3600,
"created_at": "2023-01-01T12:00:00Z",
"updated_at": "2023-01-01T12:00:00Z"
}
}
Error Response
{
"success": false,
"error": {
"code": "VALIDATION_ERROR",
"message": "Invalid record type",
"details": {
"field": "type",
"value": "INVALID"
}
}
}
Troubleshooting
Common Issues
- 401 Unauthorized: Invalid API key or credentials
- 403 Forbidden: Insufficient permissions
- 500 Internal Server Error: Server configuration issue
Debugging
Enable request logging for troubleshooting:
'api' => [
'log_requests' => true,
],
Check logs in your configured logging destination for detailed request/response information.