API
REST and GraphQL endpoints.
Programmatic access for foundation integrations, reporting export, audit pulls, and external regulators. Authentication via session token (UI), API key (server-to-server), or OAuth (third-party integrations). Base URL: https://attestyx.com/api.
Endpoint summary
Subset shown below. Full OpenAPI specification is published athttps://attestyx.com/api/openapi.yaml.
| Method | Path | Summary |
|---|---|---|
| GET | /v1/healthz | Liveness probe |
| GET | /v1/readyz | Readiness probe (DB + Redis + downstream services) |
| GET | /v1/transparency/snapshots | Public vault snapshots (daily refresh) |
| GET | /v1/registry/public | Public bad-actor registry (Restricted + Excluded only) |
| GET | /v1/registry/feed.json | Registry feed (subscribe for changes) |
| POST | /v1/auth/signup | Foundation/Grantee user signup |
| POST | /v1/auth/signin | Foundation/Grantee user signin |
| GET | /v1/foundations/me | Foundation profile (auth required) |
| GET | /v1/grantees/me | Grantee profile (auth required) |
| POST | /v1/applications | Grantee creates an application |
| POST | /v1/applications/:id/submit | Grantee submits an application |
| POST | /v1/applications/:id/precheck | Foundation triggers Verdict Engine pre-clearance |
| POST | /v1/grants | Foundation creates a grant from approved application |
| POST | /v1/milestones/:id/submit | Grantee submits milestone evidence |
| POST | /v1/milestones/:id/approve | Foundation approves a milestone |
| POST | /v1/disbursements/:id/authorize | Foundation co-signers authorize disbursement (signal only) |
| GET | /v1/creb/:attestation_id | Fetch a CREB attestation |
| GET | /v1/creb/:attestation_id/receipt?format=pdf | Export CREB receipt (pdf/json/zip) |
| POST | /v1/registry/inclusions | Foundation submits a registry inclusion request |
| POST | /v1/recovery/cases | Open a recovery case |
| POST | /v1/webhooks/stripe | Stripe webhook (Tier 2 billing) |
Webhooks
Foundations register webhook endpoints to receive events. Signed with HMAC-SHA-256, timestamp-bound, replay-resistant.
| Event | Description |
|---|---|
application.submitted | Grantee submitted an application to your foundation |
application.preclearance.completed | Verdict Engine completed pre-clearance with score |
milestone.submitted | Grantee submitted milestone evidence |
milestone.approved | Milestone approved; disbursement authorization required |
disbursement.signaled | Disbursement release signal sent to your banking integration |
creb.generated | CREB attestation generated and CourtChain-anchored |
registry.inclusion.posted | An entity was added to the bad-actor registry |
recovery.case.opened | A recovery case was opened against a grant |