Chapter 44. REST API
The CloverDX REST API enables you to interact with CloverDX Server programmatically. You can use it to script interactions or develop various kinds of integrations with the Server. The API provides access to CloverDX Server resources by using a predefined set of stateless operations realized via HTTP calls. Requests to resource URIs, and also the received responses, use a payload formatted in JSON. The REST API uses the standard HTTP status codes.
The Server also provides a generated REST API documentation available at
which can be also accessed via the link
Server REST API Catalog in Server Console login page.
It should be the main source of information for using the API. It lists all the resources available through the API,
their respective operations (URI paths and HTTP methods), parameters and also examples of requests and responses.
It is an interactive page which can be also used to try out API requests and see the returned responses.
The examples use the sandbox |
Version and URI
This documentation is for version 1 of the REST API, which is the latest version. The URIs for resources have the following structure:
Authentication and Authorization
Requests to the API must be authenticated, the API uses basic HTTP authentication. Regarding authorization, the user used to authenticate the request needs to have the required permissions to read or modify the specific resource.
All operations on monitors require the existing permission
The REST API provides protection against Cross-Site Request Forgery (CSRF) attacks. The mechanism basically requires
the presence of a
X-Requested-By header in every request to the API, same as described
in chapter Simple HTTP API, in the section called “CSRF Protection” and is also controlled
globally by the same configuration property
To put all the information together, an example API request to create a new monitor resource can look like:
curl -X POST "http://example.com:8080/clover/api/rest/v1/dashboards/1/monitors" -H "Accept: application/json" -H "Content-Type: application/json" -H "X-Requested-By: arbitrary_value" -u username:password -d "@request.json"
username:password are the user's credentials and
request.json is a file containing the request body.