2020-09-06 11:40:31 +02:00
openapi : 3.0 .3
2019-07-20 12:26:52 +02:00
info :
title : SFTPGo
2020-12-08 11:18:34 +01:00
description : SFTPGo REST API
2021-01-17 22:29:08 +01:00
version : 2.4 .0
2019-11-13 11:36:21 +01:00
2019-07-20 12:26:52 +02:00
servers :
2021-01-17 22:29:08 +01:00
- url : /api/v2
2020-02-04 00:08:00 +01:00
security :
2021-01-17 22:29:08 +01:00
- BearerAuth : [ ]
2019-07-20 12:26:52 +02:00
paths :
2020-11-01 10:39:10 +01:00
/healthz :
get :
2020-11-22 21:53:04 +01:00
security : [ ]
2020-11-01 10:39:10 +01:00
servers :
- url : /
tags :
- healthcheck
summary : health check
description : Health endpoint to check if the application is still running and responding to requests
responses :
200 :
description : successful operation
content :
text/plain :
schema :
type : string
example : ok
2021-01-17 22:29:08 +01:00
/token :
get :
security :
- BasicAuth : [ ]
tags :
- token
summary : Get an access token
operationId : get_token
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/Token'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2019-08-08 10:01:33 +02:00
/version :
get :
tags :
2020-12-08 11:18:34 +01:00
- maintenance
2019-08-08 10:01:33 +02:00
summary : Get version details
operationId : get_version
responses :
200 :
description : successful operation
content :
application/json :
schema :
2020-09-06 11:40:31 +02:00
$ref : '#/components/schemas/VersionInfo'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-02-04 00:08:00 +01:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-02-04 00:08:00 +01:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/changepwd/admin :
put :
tags :
- admins
summary : Change the password for the logged in admin
operationId : change_admin_password
requestBody :
required : true
content :
application/json :
schema :
$ref : '#/components/schemas/PwdChange'
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
/connections :
2019-07-20 12:26:52 +02:00
get :
tags :
2020-11-01 10:39:10 +01:00
- connections
2019-08-24 14:41:15 +02:00
summary : Get the active users and info about their uploads/downloads
operationId : get_connections
2019-07-20 12:26:52 +02:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
type : array
items :
$ref : '#/components/schemas/ConnectionStatus'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-02-04 00:08:00 +01:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-02-04 00:08:00 +01:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/connections/{connectionID}:
2019-07-20 12:26:52 +02:00
delete :
tags :
2020-11-01 10:39:10 +01:00
- connections
2019-08-24 14:41:15 +02:00
summary : Terminate an active connection
operationId : close_connection
2019-11-13 11:36:21 +01:00
parameters :
2020-11-01 10:39:10 +01:00
- name : connectionID
in : path
description : ID of the connection to close
required : true
schema :
type : string
2019-07-20 12:26:52 +02:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
2019-11-13 11:36:21 +01:00
example :
2019-07-20 12:26:52 +02:00
message : "Connection closed"
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-02-04 00:08:00 +01:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2019-07-20 12:26:52 +02:00
404 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/NotFound'
2019-07-20 12:26:52 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/defender/bantime :
2021-01-02 19:33:24 +01:00
get :
tags :
- defender
summary : Returns the ban time for the specified IPv4/IPv6 address
operationId : get_ban_time
parameters :
- in : query
name : ip
required : true
description : IPv4/IPv6 address
schema :
type : string
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/BanStatus'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
404 :
$ref : '#/components/responses/NotFound'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
/defender/unban :
post :
tags :
- defender
summary : Removes the specified IPv6/IPv6 from the banned ones
operationId : unban_host
requestBody :
required : true
content :
application/json :
schema :
type : object
properties :
ip :
type : string
description : IPv4/IPv6 address to remove
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
400 :
$ref : '#/components/responses/BadRequest'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
404 :
$ref : '#/components/responses/NotFound'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
/defender/score :
get :
tags :
- defender
summary : Returns the score for the specified IPv4/IPv6 address
operationId : get_score
parameters :
- in : query
name : ip
required : true
description : IPv4/IPv6 address
schema :
type : string
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ScoreStatus'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
404 :
$ref : '#/components/responses/NotFound'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/quota-scans :
2019-07-20 12:26:52 +02:00
get :
tags :
2020-11-01 10:39:10 +01:00
- quota
2020-06-07 23:30:18 +02:00
summary : Get the active quota scans for users home directories
2019-08-01 22:42:46 +02:00
operationId : get_quota_scans
2019-07-20 12:26:52 +02:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
type : array
items :
$ref : '#/components/schemas/QuotaScan'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-02-04 00:08:00 +01:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-02-04 00:08:00 +01:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2019-07-20 12:26:52 +02:00
post :
tags :
2020-11-01 10:39:10 +01:00
- quota
2020-06-07 23:30:18 +02:00
summary : start a new user quota scan
description : A quota scan update the number of files and their total size for the specified user
2019-07-20 12:26:52 +02:00
operationId : start_quota_scan
requestBody :
required : true
content :
application/json :
schema :
$ref : '#/components/schemas/User'
responses :
2020-09-13 19:43:56 +02:00
202 :
2019-07-20 12:26:52 +02:00
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
2019-11-13 11:36:21 +01:00
example :
2019-07-20 12:26:52 +02:00
message : "Scan started"
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2019-07-20 12:26:52 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2019-07-20 12:26:52 +02:00
404 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/NotFound'
2019-07-20 12:26:52 +02:00
409 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Conflict'
2019-07-20 12:26:52 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/quota-update :
2020-06-20 12:38:04 +02:00
put :
tags :
2020-11-01 10:39:10 +01:00
- quota
2020-06-20 12:38:04 +02:00
summary : update the user used quota limits
description : Set the current used quota limits for the given user
operationId : quota_update
parameters :
- in : query
name : mode
required : false
description : the update mode specifies if the given quota usage values should be added or replace the current ones
schema :
type : string
enum : [ add, reset]
description : >
Update type :
* `add` - add the specified quota limits to the current used ones
* `reset` - reset the values to the specified ones. This is the default
example : reset
requestBody :
required : true
description : The only user mandatory fields are username,used_quota_size and used_quota_files. Please note that if the quota fields are missing they will default to 0
content :
application/json :
schema :
$ref : '#/components/schemas/User'
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
example :
message : "Quota updated"
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-06-20 12:38:04 +02:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-06-20 12:38:04 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-06-20 12:38:04 +02:00
404 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/NotFound'
2020-06-20 12:38:04 +02:00
409 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Conflict'
2020-06-20 12:38:04 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/folder-quota-update :
2020-06-20 12:38:04 +02:00
put :
tags :
2020-11-01 10:39:10 +01:00
- quota
2020-06-20 12:38:04 +02:00
summary : update the folder used quota limits
description : Set the current used quota limits for the given folder
operationId : folder_quota_update
parameters :
- in : query
name : mode
required : false
description : the update mode specifies if the given quota usage values should be added or replace the current ones
schema :
type : string
enum : [ add, reset]
description : >
Update type :
* `add` - add the specified quota limits to the current used ones
* `reset` - reset the values to the specified ones. This is the default
example : reset
requestBody :
required : true
description : The only folder mandatory fields are mapped_path,used_quota_size and used_quota_files. Please note that if the used quota fields are missing they will default to 0
content :
application/json :
schema :
$ref : '#/components/schemas/BaseVirtualFolder'
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
example :
message : "Quota updated"
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-06-20 12:38:04 +02:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-06-20 12:38:04 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-06-20 12:38:04 +02:00
404 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/NotFound'
2020-06-20 12:38:04 +02:00
409 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Conflict'
2020-06-20 12:38:04 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/folder-quota-scans :
2020-06-07 23:30:18 +02:00
get :
tags :
2020-11-01 10:39:10 +01:00
- quota
2020-06-07 23:30:18 +02:00
summary : Get the active quota scans for folders
operationId : get_folders_quota_scans
responses :
200 :
description : successful operation
content :
application/json :
schema :
type : array
items :
$ref : '#/components/schemas/FolderQuotaScan'
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-06-07 23:30:18 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-06-07 23:30:18 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2020-06-07 23:30:18 +02:00
post :
tags :
2020-11-01 10:39:10 +01:00
- quota
2020-06-07 23:30:18 +02:00
summary : start a new folder quota scan
description : A quota scan update the number of files and their total size for the specified folder
operationId : start_folder_quota_scan
requestBody :
required : true
content :
application/json :
schema :
$ref : '#/components/schemas/BaseVirtualFolder'
responses :
2020-09-13 19:43:56 +02:00
202 :
2020-06-07 23:30:18 +02:00
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
example :
message : "Scan started"
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-06-07 23:30:18 +02:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-06-07 23:30:18 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-06-07 23:30:18 +02:00
404 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/NotFound'
2020-06-07 23:30:18 +02:00
409 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Conflict'
2020-06-07 23:30:18 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/folders :
2020-06-07 23:30:18 +02:00
get :
tags :
2020-11-01 10:39:10 +01:00
- folders
2020-06-07 23:30:18 +02:00
summary : Returns an array with one or more folders
operationId : get_folders
parameters :
- in : query
name : offset
schema :
type : integer
minimum : 0
default : 0
required : false
- in : query
name : limit
schema :
type : integer
minimum : 1
maximum : 500
default : 100
required : false
description : The maximum number of items to return. Max value is 500, default is 100
- in : query
name : order
required : false
description : Ordering folders by path. Default ASC
schema :
type : string
enum :
- ASC
- DESC
example : ASC
- in : query
name : folder_path
required : false
description : Filter by folder path, extact match case sensitive
schema :
type : string
responses :
200 :
description : successful operation
content :
application/json :
schema :
type : array
items :
$ref : '#/components/schemas/BaseVirtualFolder'
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-06-07 23:30:18 +02:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-06-07 23:30:18 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-06-07 23:30:18 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2020-06-07 23:30:18 +02:00
post :
tags :
2020-11-01 10:39:10 +01:00
- folders
2020-06-07 23:30:18 +02:00
summary : Adds a new folder
operationId : add_folder
description : a new folder with the specified mapped_path will be added. To update the used quota parameters a quota scan is needed
requestBody :
required : true
content :
application/json :
schema :
$ref : '#/components/schemas/BaseVirtualFolder'
responses :
2021-01-17 22:29:08 +01:00
201 :
2020-06-07 23:30:18 +02:00
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/BaseVirtualFolder'
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-06-07 23:30:18 +02:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-06-07 23:30:18 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-06-07 23:30:18 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2020-06-07 23:30:18 +02:00
delete :
tags :
2020-11-01 10:39:10 +01:00
- folders
2020-06-07 23:30:18 +02:00
summary : Delete an existing folder
operationId : delete_folder
parameters :
2020-11-01 10:39:10 +01:00
- name : folder_path
in : query
description : path to the folder to delete
required : true
schema :
type : string
2020-06-07 23:30:18 +02:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
example :
message : "Folder deleted"
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-06-07 23:30:18 +02:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2020-06-07 23:30:18 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2020-06-07 23:30:18 +02:00
404 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/NotFound'
2020-06-07 23:30:18 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/admins :
2019-07-20 12:26:52 +02:00
get :
tags :
2021-01-17 22:29:08 +01:00
- admins
summary : Returns an array with one or more admins
2019-10-07 18:19:01 +02:00
description : For security reasons hashed passwords are omitted in the response
2021-01-17 22:29:08 +01:00
operationId : get_admins
2019-07-20 12:26:52 +02:00
parameters :
- in : query
name : offset
schema :
type : integer
minimum : 0
default : 0
required : false
- in : query
name : limit
schema :
type : integer
minimum : 1
maximum : 500
default : 100
required : false
description : The maximum number of items to return. Max value is 500, default is 100
- in : query
name : order
required : false
2021-01-17 22:29:08 +01:00
description : Ordering admins by username. Default ASC
2019-07-20 12:26:52 +02:00
schema :
type : string
enum :
- ASC
- DESC
example : ASC
2021-01-17 22:29:08 +01:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
type : array
items :
$ref : '#/components/schemas/Admin'
400 :
$ref : '#/components/responses/BadRequest'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
post :
tags :
- admins
summary : Adds a new admin
operationId : add_admin
requestBody :
required : true
content :
application/json :
schema :
$ref : '#/components/schemas/Admin'
responses :
201 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/Admin'
400 :
$ref : '#/components/responses/BadRequest'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
/admins/{username}:
get :
tags :
- admins
summary : Find admin by username
description : For security reasons the hashed password is omitted in the response
operationId : get_admin_by_username
parameters :
- name : username
in : path
description : username of the admin to retrieve
required : true
schema :
type : string
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/Admin'
400 :
$ref : '#/components/responses/BadRequest'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
404 :
$ref : '#/components/responses/NotFound'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
put :
tags :
- admins
summary : Update an existing admin
operationId : update_admin
parameters :
- name : username
in : path
description : username of the admin to update
required : true
schema :
type : string
requestBody :
required : true
content :
application/json :
schema :
$ref : '#/components/schemas/Admin'
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
example :
message : "User updated"
400 :
$ref : '#/components/responses/BadRequest'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
404 :
$ref : '#/components/responses/NotFound'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
delete :
tags :
- admins
summary : Delete an existing admin
operationId : delete_admin
parameters :
- name : username
in : path
description : username of the admin to delete
required : true
schema :
type : string
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
example :
message : "User deleted"
400 :
$ref : '#/components/responses/BadRequest'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
404 :
$ref : '#/components/responses/NotFound'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
/users :
get :
tags :
- users
summary : Returns an array with one or more users
description : For security reasons hashed passwords are omitted in the response
operationId : get_users
parameters :
- in : query
name : offset
schema :
type : integer
minimum : 0
default : 0
required : false
- in : query
name : limit
schema :
type : integer
minimum : 1
maximum : 500
default : 100
required : false
description : The maximum number of items to return. Max value is 500, default is 100
2019-07-20 12:26:52 +02:00
- in : query
2021-01-17 22:29:08 +01:00
name : order
2019-07-20 12:26:52 +02:00
required : false
2021-01-17 22:29:08 +01:00
description : Ordering users by username. Default ASC
2019-07-20 12:26:52 +02:00
schema :
type : string
2021-01-17 22:29:08 +01:00
enum :
- ASC
- DESC
example : ASC
2019-07-20 12:26:52 +02:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
type : array
items :
$ref : '#/components/schemas/User'
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2019-07-20 12:26:52 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2019-07-20 12:26:52 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2019-07-20 12:26:52 +02:00
post :
tags :
2020-11-01 10:39:10 +01:00
- users
2019-11-18 23:30:37 +01:00
summary : Adds a new user
2019-07-20 12:26:52 +02:00
operationId : add_user
requestBody :
required : true
content :
application/json :
schema :
$ref : '#/components/schemas/User'
responses :
2021-01-17 22:29:08 +01:00
201 :
2019-07-20 12:26:52 +02:00
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/User'
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2019-07-20 12:26:52 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2019-07-20 12:26:52 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2021-01-17 22:29:08 +01:00
/users/{username}:
2019-07-20 12:26:52 +02:00
get :
tags :
2020-11-01 10:39:10 +01:00
- users
2021-01-17 22:29:08 +01:00
summary : Find user by username
2019-10-07 18:19:01 +02:00
description : For security reasons the hashed password is omitted in the response
2021-01-17 22:29:08 +01:00
operationId : get_user_by_username
2019-11-13 11:36:21 +01:00
parameters :
2021-01-17 22:29:08 +01:00
- name : username
2020-11-01 10:39:10 +01:00
in : path
2021-01-17 22:29:08 +01:00
description : username of the user to retrieve
2020-11-01 10:39:10 +01:00
required : true
schema :
2021-01-17 22:29:08 +01:00
type : string
2019-07-20 12:26:52 +02:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/User'
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2019-07-20 12:26:52 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2019-07-20 12:26:52 +02:00
404 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/NotFound'
2019-07-20 12:26:52 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2019-07-20 12:26:52 +02:00
put :
tags :
2020-11-01 10:39:10 +01:00
- users
2019-08-01 22:42:46 +02:00
summary : Update an existing user
operationId : update_user
2019-11-13 11:36:21 +01:00
parameters :
2021-01-17 22:29:08 +01:00
- name : username
2020-11-01 10:39:10 +01:00
in : path
2021-01-17 22:29:08 +01:00
description : username of the user to update
2020-11-01 10:39:10 +01:00
required : true
schema :
2021-01-17 22:29:08 +01:00
type : string
2020-11-01 10:39:10 +01:00
- in : query
name : disconnect
schema :
type : integer
enum :
- 0
- 1
description : >
Disconnect :
* `0` The user will not be disconnected and it will continue to use the old configuration until connected. This is the default
* `1` The user will be disconnected after a successful update. It must login again and so it will be forced to use the new configuration
2019-07-20 12:26:52 +02:00
requestBody :
required : true
content :
application/json :
schema :
$ref : '#/components/schemas/User'
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
2019-11-13 11:36:21 +01:00
example :
2019-07-20 12:26:52 +02:00
message : "User updated"
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2019-07-20 12:26:52 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2019-07-20 12:26:52 +02:00
404 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/NotFound'
2019-07-20 12:26:52 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2019-07-20 12:26:52 +02:00
delete :
tags :
2020-11-01 10:39:10 +01:00
- users
2019-08-01 22:42:46 +02:00
summary : Delete an existing user
operationId : delete_user
2019-11-13 11:36:21 +01:00
parameters :
2021-01-17 22:29:08 +01:00
- name : username
2020-11-01 10:39:10 +01:00
in : path
2021-01-17 22:29:08 +01:00
description : username of the user to delete
2020-11-01 10:39:10 +01:00
required : true
schema :
2021-01-17 22:29:08 +01:00
type : string
2019-07-20 12:26:52 +02:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
2019-11-13 11:36:21 +01:00
example :
2019-07-20 12:26:52 +02:00
message : "User deleted"
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2019-07-20 12:26:52 +02:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2019-07-20 12:26:52 +02:00
404 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/NotFound'
2019-07-20 12:26:52 +02:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2020-12-08 11:18:34 +01:00
/status :
get :
tags :
- maintenance
summary : Retrieve the status of the active services
operationId : get_status
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ServicesStatus'
400 :
$ref : '#/components/responses/BadRequest'
401 :
$ref : '#/components/responses/Unauthorized'
403 :
$ref : '#/components/responses/Forbidden'
500 :
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2019-12-27 23:12:44 +01:00
/dumpdata :
get :
tags :
2020-11-01 10:39:10 +01:00
- maintenance
2020-12-08 11:18:34 +01:00
summary : Backup SFTPGo data as data provider independent JSON
description : The backup is saved to a local file to avoid to expose sensitive data over the network. The output of dumpdata can be used as input for loaddata
2019-12-27 23:12:44 +01:00
operationId : dumpdata
parameters :
- in : query
name : output_file
schema :
type : string
required : true
description : Path for the file to write the JSON serialized data to. This path is relative to the configured "backups_path". If this file already exists it will be overwritten
2020-02-02 22:20:39 +01:00
- in : query
name : indent
schema :
type : integer
enum :
- 0
- 1
description : >
indent :
* `0` no indentation. This is the default
* `1` format the output JSON
2019-12-27 23:12:44 +01:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
example :
message : "Data saved"
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2019-12-27 23:12:44 +01:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2019-12-27 23:12:44 +01:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2019-12-27 23:12:44 +01:00
/loaddata :
get :
tags :
2020-11-01 10:39:10 +01:00
- maintenance
2019-12-27 23:12:44 +01:00
summary : Restore SFTPGo data from a JSON backup
2020-06-07 23:30:18 +02:00
description : Users and folders will be restored one by one and the restore is stopped if a user/folder cannot be added or updated, so it could happen a partial restore
2019-12-27 23:12:44 +01:00
operationId : loaddata
parameters :
- in : query
name : input_file
schema :
type : string
required : true
description : Path for the file to read the JSON serialized data from. This can be an absolute path or a path relative to the configured "backups_path". The max allowed file size is 10MB
- in : query
name : scan_quota
schema :
type : integer
enum :
- 0
- 1
- 2
description : >
Quota scan :
2020-06-07 23:30:18 +02:00
* `0` no quota scan is done, the imported users will have used_quota_size and used_quota_files = 0 or the existing values if they already exists. This is the default
2019-12-27 23:12:44 +01:00
* `1` scan quota
* `2` scan quota if the user has quota restrictions
required : false
2020-01-31 19:10:45 +01:00
- in : query
name : mode
schema :
type : integer
enum :
- 0
- 1
2020-09-01 16:10:26 +02:00
- 2
2020-01-31 19:10:45 +01:00
description : >
Mode :
* `0` New users are added, existing users are updated. This is the default
* `1` New users are added, existing users are not modified
2020-09-01 16:10:26 +02:00
* `2` New users are added, existing users are updated and, if connected, they are disconnected and so forced to use the new configuration
2019-12-27 23:12:44 +01:00
responses :
200 :
description : successful operation
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
example :
message : "Data restored"
400 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/BadRequest'
2020-02-04 00:08:00 +01:00
401 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Unauthorized'
2019-12-27 23:12:44 +01:00
403 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/Forbidden'
2019-12-27 23:12:44 +01:00
500 :
2020-09-08 09:45:21 +02:00
$ref : '#/components/responses/InternalServerError'
default :
$ref : '#/components/responses/DefaultResponse'
2019-07-20 12:26:52 +02:00
components :
2020-09-08 09:45:21 +02:00
responses :
BadRequest :
description : Bad Request
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
Unauthorized :
description : Unauthorized
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
Forbidden :
description : Forbidden
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
NotFound :
description : Not Found
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
Conflict :
description : Conflict
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
InternalServerError :
description : Internal Server Error
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
DefaultResponse :
description : Unexpected Error
content :
application/json :
schema :
$ref : '#/components/schemas/ApiResponse'
2019-07-20 12:26:52 +02:00
schemas :
Permission :
type : string
enum :
- '*'
- list
- download
- upload
2019-09-17 08:53:45 +02:00
- overwrite
2019-07-20 12:26:52 +02:00
- delete
- rename
- create_dirs
- create_symlinks
2019-11-15 12:15:07 +01:00
- chmod
- chown
2019-11-16 10:23:41 +01:00
- chtimes
2019-07-20 12:26:52 +02:00
description : >
Permissions :
2019-09-18 22:19:34 +02:00
* `*` - all permissions are granted
2019-07-20 12:26:52 +02:00
* `list` - list items is allowed
* `download` - download files is allowed
* `upload` - upload files is allowed
2019-09-17 08:53:45 +02:00
* `overwrite` - overwrite an existing file, while uploading, is allowed. upload permission is required to allow file overwrite
2019-07-20 12:26:52 +02:00
* `delete` - delete files or directories is allowed
* `rename` - rename files or directories is allowed
* `create_dirs` - create directories is allowed
* `create_symlinks` - create links is allowed
2019-11-15 12:15:07 +01:00
* `chmod` changing file or directory permissions is allowed
* `chown` changing file or directory owner and group is allowed
2019-11-16 10:23:41 +01:00
* `chtimes` changing file or directory access and modification time is allowed
2019-12-25 18:20:19 +01:00
DirPermissions :
type : object
additionalProperties :
type : array
items :
$ref : '#/components/schemas/Permission'
minItems : 1
minProperties : 1
description : hash map with directory as key and an array of permissions as value. Directories must be absolute paths, permissions for root directory ("/") are required
2021-01-17 22:29:08 +01:00
AdminPermissions :
type : string
enum :
- '*'
- 'add_users'
- 'edit_users'
- 'del_users'
- 'view_users'
- 'view_conns'
- 'close_conns'
- 'view_status'
- 'manage_admins'
- 'quota_scans'
- 'manage_system'
- 'manage_defender'
- 'view_defender'
2020-02-19 22:39:30 +01:00
LoginMethods :
type : string
enum :
- 'publickey'
- 'password'
- 'keyboard-interactive'
2020-04-09 23:32:42 +02:00
- 'publickey+password'
- 'publickey+keyboard-interactive'
2020-08-19 19:36:12 +02:00
description : >
To enable multi-step authentication you have to allow only multi-step login methods. If password login method is denied or no password is set then FTP and WebDAV users cannot login
2020-08-17 12:49:20 +02:00
SupportedProtocols :
type : string
enum :
- 'SSH'
- 'FTP'
- 'DAV'
2020-11-15 22:04:48 +01:00
PatternsFilter :
type : object
properties :
path :
type : string
description : exposed virtual path, if no other specific filter is defined, the filter apply for sub directories too. For example if filters are defined for the paths "/" and "/sub" then the filters for "/" are applied for any file outside the "/sub" directory
allowed_patterns :
type : array
items :
type : string
description : list of, case insensitive, allowed shell like file patterns.
example : [ "*.jpg" , "a*b?.png" ]
denied_patterns :
type : array
items :
type : string
description : list of, case insensitive, denied shell like file patterns. Denied patterns are evaluated before the allowed ones
example : [ "*.zip" ]
2020-03-01 22:10:29 +01:00
ExtensionsFilter :
type : object
properties :
path :
type : string
2020-11-15 22:04:48 +01:00
description : exposed virtual path, if no other specific filter is defined, the filter apply for sub directories too. For example if filters are defined for the paths "/" and "/sub" then the filters for "/" are applied for any file outside the "/sub" directory
2020-03-01 22:10:29 +01:00
allowed_extensions :
type : array
items :
type : string
description : list of, case insensitive, allowed files extension. Shell like expansion is not supported so you have to specify `.jpg` and not `*.jpg`
example : [ ".jpg" , ".png" ]
denied_extensions :
type : array
items :
type : string
description : list of, case insensitive, denied files extension. Denied file extensions are evaluated before the allowed ones
example : [ ".zip" ]
2019-12-30 18:37:50 +01:00
UserFilters :
type : object
properties :
allowed_ip :
type : array
items :
type : string
description : only clients connecting from these IP/Mask are allowed. IP/Mask must be in CIDR notation as defined in RFC 4632 and RFC 4291, for example "192.0.2.0/24" or "2001:db8::/32"
example : [ "192.0.2.0/24" , "2001:db8::/32" ]
denied_ip :
type : array
items :
type : string
description : clients connecting from these IP/Mask are not allowed. Denied rules are evaluated before allowed ones
example : [ "172.16.0.0/16" ]
2020-02-19 22:39:30 +01:00
denied_login_methods :
type : array
items :
$ref : '#/components/schemas/LoginMethods'
description : if null or empty any available login method is allowed
2020-08-17 12:49:20 +02:00
denied_protocols :
type : array
items :
$ref : '#/components/schemas/SupportedProtocols'
description : if null or empty any available protocol is allowed
2020-11-15 22:04:48 +01:00
file_patterns :
type : array
items :
$ref : '#/components/schemas/PatternsFilter'
description : filters based on shell like file patterns. These restrictions do not apply to files listing for performance reasons, so a denied file cannot be downloaded/overwritten/renamed but it will still be in the list of files. Please note that these restrictions can be easily bypassed
2020-03-01 22:10:29 +01:00
file_extensions :
type : array
items :
$ref : '#/components/schemas/ExtensionsFilter'
2020-11-15 22:04:48 +01:00
description : filters based on shell like patterns. Deprecated, use file_patterns. These restrictions do not apply to files listing for performance reasons, so a denied file cannot be downloaded/overwritten/renamed but it will still be in the list of files. Please note that these restrictions can be easily bypassed
2020-08-16 20:17:02 +02:00
max_upload_file_size :
type : integer
format : int64
description : maximum allowed size, as bytes, for a single file upload. The upload will be aborted if/when the size of the file being sent exceeds this limit. 0 means unlimited. This restriction does not apply for SSH system commands such as `git` and `rsync`
2020-01-19 07:41:05 +01:00
description : Additional restrictions
2020-11-22 21:53:04 +01:00
Secret :
type : object
properties :
status :
type : string
enum :
- Plain
- AES-256-GCM
2020-11-30 21:46:34 +01:00
- Secretbox
- GCP
- AWS
- VaultTransit
2020-11-22 21:53:04 +01:00
- Redacted
description : Set to "Plain" to add or update an existing secret, set to "Redacted" to preserve the existing value
payload :
type : string
key :
type : string
additional_data :
type : string
2020-12-01 22:18:16 +01:00
mode :
type : integer
description : 1 means encrypted using a master key
2020-01-19 07:41:05 +01:00
S3Config :
type : object
properties :
bucket :
type : string
minLength : 1
region :
type : string
minLength : 1
access_key :
type : string
access_secret :
2020-11-22 21:53:04 +01:00
$ref : '#/components/schemas/Secret'
2020-01-19 07:41:05 +01:00
endpoint :
type : string
description : optional endpoint
storage_class :
type : string
2020-03-13 17:28:55 +01:00
upload_part_size :
type : integer
description : the buffer size (in MB) to use for multipart uploads. The minimum allowed part size is 5MB, and if this value is set to zero, the default value (5MB) for the AWS SDK will be used. The minimum allowed value is 5.
upload_concurrency :
type : integer
2020-03-13 19:13:58 +01:00
description : the number of parts to upload in parallel. If this value is set to zero, the default value (2) will be used
2020-01-19 23:23:09 +01:00
key_prefix :
type : string
2020-08-11 23:56:10 +02:00
description : key_prefix is similar to a chroot directory for a local filesystem. If specified the user will only see contents that starts with this prefix and so you can restrict access to a specific virtual folder. The prefix, if not empty, must not start with "/" and must end with "/". If empty the whole bucket contents will be available
2020-01-19 23:23:09 +01:00
example : folder/subfolder/
2020-01-19 07:41:05 +01:00
required :
- bucket
- region
description : S3 Compatible Object Storage configuration details
2020-01-31 19:04:00 +01:00
GCSConfig :
type : object
properties :
bucket :
type : string
minLength : 1
credentials :
2020-11-22 21:53:04 +01:00
$ref : '#/components/schemas/Secret'
2020-02-19 09:41:15 +01:00
automatic_credentials :
type : integer
enum :
- 0
- 1
description : >
Automatic credentials :
* `0` - disabled, explicit credentials, using a JSON credentials file, must be provided. This is the default value if the field is null
* `1` - enabled, we try to use the Application Default Credentials (ADC) strategy to find your application's credentials
2020-01-31 19:04:00 +01:00
storage_class :
type : string
key_prefix :
type : string
2020-08-11 23:56:10 +02:00
description : key_prefix is similar to a chroot directory for a local filesystem. If specified the user will only see contents that starts with this prefix and so you can restrict access to a specific virtual folder. The prefix, if not empty, must not start with "/" and must end with "/". If empty the whole bucket contents will be available
2020-01-31 19:04:00 +01:00
example : folder/subfolder/
required :
- bucket
2020-11-22 21:53:04 +01:00
description : Google Cloud Storage configuration details. The "credentials" field must be populated only when adding/updating a user. It will be always omitted, since there are sensitive data, when you search/get users
2020-10-25 08:18:48 +01:00
AzureBlobFsConfig :
type : object
properties :
container :
type : string
account_name :
type : string
description : Storage Account Name, leave blank to use SAS URL
account_key :
2020-11-22 21:53:04 +01:00
$ref : '#/components/schemas/Secret'
2020-10-25 08:18:48 +01:00
sas_url :
type : string
description : Shared access signature URL, leave blank if using account/key
endpoint :
type : string
description : optional endpoint. Default is "blob.core.windows.net". If you use the emulator the endpoint must include the protocol, for example "http://127.0.0.1:10000"
upload_part_size :
type : integer
description : the buffer size (in MB) to use for multipart uploads. If this value is set to zero, the default value (4MB) will be used.
upload_concurrency :
type : integer
description : the number of parts to upload in parallel. If this value is set to zero, the default value (2) will be used
2020-10-30 22:17:17 +01:00
access_tier :
type : string
enum :
- ""
- "Archive"
- "Hot"
- "Cool"
2020-10-25 08:18:48 +01:00
key_prefix :
type : string
description : key_prefix is similar to a chroot directory for a local filesystem. If specified the user will only see contents that starts with this prefix and so you can restrict access to a specific virtual folder. The prefix, if not empty, must not start with "/" and must end with "/". If empty the whole container contents will be available
example : folder/subfolder/
use_emulator :
type : boolean
description : Azure Blob Storage configuration details
2020-12-05 13:48:13 +01:00
CryptFsConfig :
type : object
properties :
passphrase :
$ref : '#/components/schemas/Secret'
description : Crypt filesystem configuration details
2020-12-12 10:31:09 +01:00
SFTPFsConfig :
type : object
properties :
endpoint :
type : string
description : remote SFTP endpoint as host:port
username :
type : string
description : you can specify a password or private key or both. In the latter case the private key will be tried first.
password :
$ref : '#/components/schemas/Secret'
private_key :
$ref : '#/components/schemas/Secret'
fingerprints :
type : array
items :
type : string
description : SHA256 fingerprints to use for host key verification. If you don't provide any fingerprint the remote host key will not be verified, this is a security risk
prefix :
type : string
description : Specifying a prefix you can restrict all operations to a given path within the remote SFTP server.
2020-01-19 07:41:05 +01:00
FilesystemConfig :
type : object
properties :
provider :
type : integer
enum :
- 0
- 1
2020-01-31 19:04:00 +01:00
- 2
2020-10-25 08:18:48 +01:00
- 3
2020-12-05 13:48:13 +01:00
- 4
2020-12-12 10:31:09 +01:00
- 5
2020-01-19 07:41:05 +01:00
description : >
Providers :
2020-10-25 08:18:48 +01:00
* `0` - Local filesystem
2020-01-19 07:41:05 +01:00
* `1` - S3 Compatible Object Storage
2020-01-31 19:04:00 +01:00
* `2` - Google Cloud Storage
2020-10-25 08:18:48 +01:00
* `3` - Azure Blob Storage
2020-12-05 13:48:13 +01:00
* `4` - Local filesystem encrypted
2020-12-12 10:31:09 +01:00
* `5` - SFTP
2020-01-19 07:41:05 +01:00
s3config :
$ref : '#/components/schemas/S3Config'
2020-01-31 19:04:00 +01:00
gcsconfig :
$ref : '#/components/schemas/GCSConfig'
2020-10-25 08:18:48 +01:00
azblobconfig :
$ref : '#/components/schemas/AzureBlobFsConfig'
2020-12-05 13:48:13 +01:00
cryptconfig :
$ref : '#/components/schemas/CryptFsConfig'
2020-12-12 10:31:09 +01:00
sftpconfig :
$ref : '#/components/schemas/SFTPFsConfig'
2020-01-19 07:41:05 +01:00
description : Storage filesystem details
2020-06-07 23:30:18 +02:00
BaseVirtualFolder :
2020-02-23 11:30:26 +01:00
type : object
properties :
2020-06-07 23:30:18 +02:00
id :
type : integer
format : int32
minimum : 1
2020-02-23 11:30:26 +01:00
mapped_path :
type : string
2020-06-07 23:30:18 +02:00
description : absolute filesystem path to use as virtual folder. This field is unique
used_quota_size :
type : integer
format : int64
used_quota_files :
type : integer
format : int32
last_quota_update :
type : integer
format : int64
description : Last quota update as unix timestamp in milliseconds
users :
type : array
items :
type : string
description : list of usernames associated with this virtual folder
2020-02-23 11:30:26 +01:00
required :
- mapped_path
2020-06-07 23:30:18 +02:00
description : defines the path for the virtual folder and the used quota limits. The same folder can be shared among multiple users and each user can have different quota limits or a different virtual path.
VirtualFolder :
allOf :
- $ref : '#/components/schemas/BaseVirtualFolder'
- type : object
properties :
virtual_path :
type : string
quota_size :
type : integer
format : int64
2020-08-11 23:56:10 +02:00
description : Quota as size in bytes. 0 menas unlimited, -1 means included in user quota. Please note that quota is updated if files are added/removed via SFTPGo otherwise a quota scan or a manual quota update is needed
2020-06-07 23:30:18 +02:00
quota_files :
type : integer
format : int32
2020-08-11 23:56:10 +02:00
description : Quota as number of files. 0 menas unlimited, , -1 means included in user quota. Please note that quota is updated if files are added/removed via SFTPGo otherwise a quota scan or a manual quota update is needed
2020-06-07 23:30:18 +02:00
required :
- virtual_path
2020-08-11 23:56:10 +02:00
description : A virtual folder is a mapping between a SFTPGo virtual path and a filesystem path outside the user home directory. The specified paths must be absolute and the virtual path cannot be "/", it must be a sub directory. The parent directory for the specified virtual path must exist. SFTPGo will try to automatically create any missing parent directory for the configured virtual folders at user login.
2019-07-20 12:26:52 +02:00
User :
type : object
properties :
id :
type : integer
format : int32
minimum : 1
2019-11-13 11:36:21 +01:00
status :
type : integer
enum :
- 0
- 1
description : >
status :
* `0` user is disabled, login is not allowed
* `1` user is enabled
2019-07-20 12:26:52 +02:00
username :
type : string
2020-06-07 23:30:18 +02:00
description : username is unique
2019-11-13 11:36:21 +01:00
expiration_date :
type : integer
format : int64
description : expiration date as unix timestamp in milliseconds. An expired account cannot login. 0 means no expiration
2019-07-20 12:26:52 +02:00
password :
type : string
2021-01-17 22:29:08 +01:00
format : password
2020-05-15 20:08:53 +02:00
description : password or public key/SSH user certificate are mandatory. If the password has no known hashing algo prefix it will be stored using argon2id. You can send a password hashed as bcrypt or pbkdf2 and it will be stored as is. For security reasons this field is omitted when you search/get users
2019-08-07 23:41:10 +02:00
public_keys :
2019-08-01 22:42:46 +02:00
type : array
items :
type : string
2020-05-15 20:08:53 +02:00
description : a password or at least one public key/SSH user certificate are mandatory.
2019-07-20 12:26:52 +02:00
home_dir :
type : string
description : path to the user home directory. The user cannot upload or download files outside this directory. SFTPGo tries to automatically create this folder if missing. Must be an absolute path
2020-02-23 11:30:26 +01:00
virtual_folders :
type : array
items :
$ref : '#/components/schemas/VirtualFolder'
2020-08-11 23:56:10 +02:00
description : mapping between virtual SFTPGo paths and filesystem paths outside the user home directory. Supported for local filesystem only. If one or more of the specified folders are not inside the dataprovider they will be automatically created. You have to create the folder on the filesystem yourself
2019-07-20 12:26:52 +02:00
uid :
type : integer
format : int32
minimum : 0
maximum : 65535
2020-08-11 23:56:10 +02:00
description : if you run SFTPGo as root user, the created files and directories will be assigned to this uid. 0 means no change, the owner will be the user that runs SFTPGo. Ignored on windows
2019-07-20 12:26:52 +02:00
gid :
type : integer
format : int32
minimum : 0
maximum : 65535
2020-08-11 23:56:10 +02:00
description : if you run SFTPGo as root user, the created files and directories will be assigned to this gid. 0 means no change, the group will be the one of the user that runs SFTPGo. Ignored on windows
2019-07-20 12:26:52 +02:00
max_sessions :
type : integer
format : int32
2020-03-27 23:26:22 +01:00
description : Limit the sessions that a user can open. 0 means unlimited
2019-07-20 12:26:52 +02:00
quota_size :
type : integer
format : int64
2020-08-11 23:56:10 +02:00
description : Quota as size in bytes. 0 menas unlimited. Please note that quota is updated if files are added/removed via SFTPGo otherwise a quota scan or a manual quota update is needed
2019-07-20 12:26:52 +02:00
quota_files :
type : integer
format : int32
2020-08-11 23:56:10 +02:00
description : Quota as number of files. 0 menas unlimited. Please note that quota is updated if files are added/removed via SFTPGo otherwise a quota scan or a manual quota update is needed
2019-07-20 12:26:52 +02:00
permissions :
2019-12-25 18:20:19 +01:00
type : object
2019-07-20 12:26:52 +02:00
items :
2019-12-25 18:20:19 +01:00
$ref : '#/components/schemas/DirPermissions'
2019-07-20 12:26:52 +02:00
minItems : 1
2019-12-25 18:20:19 +01:00
example : {"/" : [ "*" ] , "/somedir" : [ "list" , "download" ] }
2019-07-20 12:26:52 +02:00
used_quota_size :
type : integer
format : int64
2020-06-07 23:30:18 +02:00
used_quota_files :
2019-07-20 12:26:52 +02:00
type : integer
format : int32
2019-07-28 19:29:32 +02:00
last_quota_update :
2019-07-20 12:26:52 +02:00
type : integer
format : int64
2019-12-30 18:37:50 +01:00
description : Last quota update as unix timestamp in milliseconds
2019-07-20 12:26:52 +02:00
upload_bandwidth :
type : integer
format : int32
description : Maximum upload bandwidth as KB/s, 0 means unlimited
download_bandwidth :
type : integer
format : int32
description : Maximum download bandwidth as KB/s, 0 means unlimited
2019-11-13 11:36:21 +01:00
last_login :
type : integer
format : int64
2020-11-30 21:46:34 +01:00
description : Last user login as unix timestamp in milliseconds. It is saved at most once every 10 minutes
2019-12-30 18:37:50 +01:00
filters :
$ref : '#/components/schemas/UserFilters'
2020-01-19 07:41:05 +01:00
filesystem :
$ref : '#/components/schemas/FilesystemConfig'
2020-11-25 22:26:34 +01:00
additional_info :
type : string
description : Free form text field for external systems
2021-01-17 22:29:08 +01:00
AdminFilters :
type : object
properties :
allow_list :
type : array
items :
type : string
description : only clients connecting from these IP/Mask are allowed. IP/Mask must be in CIDR notation as defined in RFC 4632 and RFC 4291, for example "192.0.2.0/24" or "2001:db8::/32"
example : [ "192.0.2.0/24" , "2001:db8::/32" ]
Admin :
type : object
properties :
id :
type : integer
format : int32
minimum : 1
status :
type : integer
enum :
- 0
- 1
description : >
status :
* `0` user is disabled, login is not allowed
* `1` user is enabled
username :
type : string
description : username is unique
password :
type : string
format : password
description : Admin password. For security reasons this field is omitted when you search/get admins
email :
type : string
format : email
permissions :
type : array
items :
$ref : '#/components/schemas/AdminPermissions'
filters :
$ref : '#/components/schemas/AdminFilters'
additional_info :
type : string
description : Free form text field
2019-08-24 14:41:15 +02:00
Transfer :
2019-07-20 12:26:52 +02:00
type : object
properties :
operation_type :
type : string
2019-11-13 11:36:21 +01:00
enum :
2019-07-20 12:26:52 +02:00
- upload
- download
2019-08-08 19:33:16 +02:00
path :
type : string
2019-11-18 23:30:37 +01:00
description : file path for the upload/download
2019-07-20 12:26:52 +02:00
start_time :
type : integer
format : int64
2019-07-28 19:29:32 +02:00
description : start time as unix timestamp in milliseconds
2019-07-20 12:26:52 +02:00
size :
type : integer
format : int64
description : bytes transferred
ConnectionStatus :
type : object
properties :
username :
type : string
description : connected username
connection_id :
type : string
2019-08-24 14:41:15 +02:00
description : unique connection identifier
2019-07-20 12:26:52 +02:00
client_version :
type : string
2019-11-18 23:30:37 +01:00
description : client version
2019-07-20 12:26:52 +02:00
remote_address :
type : string
2019-11-18 23:30:37 +01:00
description : Remote address for the connected client
2019-07-20 12:26:52 +02:00
connection_time :
type : integer
format : int64
2019-07-28 19:29:32 +02:00
description : connection time as unix timestamp in milliseconds
2020-08-11 23:56:10 +02:00
command :
2019-11-18 23:30:37 +01:00
type : string
2020-12-24 18:48:06 +01:00
description : SSH/FTP command or WebDAV method
2019-07-20 12:26:52 +02:00
last_activity :
type : integer
format : int64
2019-07-28 19:29:32 +02:00
description : last client activity as unix timestamp in milliseconds
2019-08-24 14:41:15 +02:00
protocol :
type : string
enum :
- SFTP
- SCP
2019-11-18 23:30:37 +01:00
- SSH
2020-08-11 23:56:10 +02:00
- FTP
- DAV
2019-07-20 12:26:52 +02:00
active_transfers :
type : array
items :
2019-08-24 14:41:15 +02:00
$ref : '#/components/schemas/Transfer'
2019-07-20 12:26:52 +02:00
QuotaScan :
type : object
properties :
username :
type : string
description : username with an active scan
start_time :
type : integer
format : int64
2019-07-28 19:29:32 +02:00
description : scan start time as unix timestamp in milliseconds
2020-06-07 23:30:18 +02:00
FolderQuotaScan :
type : object
properties :
mapped_path :
type : string
description : path with an active scan
start_time :
type : integer
format : int64
description : scan start time as unix timestamp in milliseconds
2020-12-08 11:18:34 +01:00
SSHHostKey :
type : object
properties :
path :
type : string
fingerprint :
type : string
2020-12-23 16:12:30 +01:00
SSHBinding :
2020-12-08 11:18:34 +01:00
type : object
properties :
2020-12-23 16:12:30 +01:00
address :
type : string
description : TCP address the server listen on
port :
type : integer
description : the port used for serving requests
apply_proxy_config :
type : boolean
description : apply the proxy configuration, if any
WebDAVBinding :
type : object
properties :
address :
type : string
description : TCP address the server listen on
port :
type : integer
description : the port used for serving requests
enable_https :
2020-12-08 11:18:34 +01:00
type : boolean
2020-12-29 19:33:04 +01:00
client_auth_type :
type : integer
description : 1 means that client certificate authentication is required in addition to HTTP basic authentication
2020-12-23 16:12:30 +01:00
FTPDBinding :
type : object
properties :
2020-12-08 11:18:34 +01:00
address :
type : string
2020-12-23 16:12:30 +01:00
description : TCP address the server listen on
port :
type : integer
description : the port used for serving requests
apply_proxy_config :
type : boolean
description : apply the proxy configuration, if any
tls_mode :
type : integer
enum :
- 0
- 1
- 2
description : >
* `0` - clear or explicit TLS
* `1` - explicit TLS required
* `2` - implicit TLS
force_passive_ip :
type : string
description : External IP address to expose for passive connections
2020-12-29 19:33:04 +01:00
client_auth_type :
type : integer
description : 1 means that client certificate authentication is required in addition to FTP authentication
2020-12-08 11:18:34 +01:00
SSHServiceStatus :
2020-12-23 16:12:30 +01:00
type : object
properties :
is_active :
type : boolean
bindings :
type : array
items :
$ref : '#/components/schemas/SSHBinding'
host_keys :
type : array
items :
$ref : '#/components/schemas/SSHHostKey'
ssh_commands :
type : string
description : accepted SSH commands comma separated
2020-12-08 11:18:34 +01:00
FTPPassivePortRange :
type : object
properties :
start :
type : integer
end :
type : integer
FTPServiceStatus :
2020-12-23 16:12:30 +01:00
type : object
properties :
is_active :
type : boolean
bindings :
type : array
items :
$ref : '#/components/schemas/FTPDBinding'
passive_port_range :
$ref : '#/components/schemas/FTPPassivePortRange'
2020-12-08 11:18:34 +01:00
WebDAVServiceStatus :
2020-12-23 16:12:30 +01:00
type : object
properties :
is_active :
type : boolean
bindings :
type : array
items :
$ref : '#/components/schemas/WebDAVBinding'
2020-12-08 11:18:34 +01:00
DataProviderStatus :
type : object
properties :
is_active :
type : boolean
driver :
type : string
error :
type : string
ServicesStatus :
type : object
properties :
ssh :
$ref : '#/components/schemas/SSHServiceStatus'
ftp :
$ref : '#/components/schemas/FTPServiceStatus'
webdav :
$ref : '#/components/schemas/WebDAVServiceStatus'
data_provider :
$ref : '#/components/schemas/DataProviderStatus'
2021-01-02 19:33:24 +01:00
defender :
type : object
properties :
is_active :
type : boolean
BanStatus :
type : object
properties :
date_time :
type : string
format : date-time
nullable : true
description : if null the host is not banned
ScoreStatus :
type : object
properties :
score :
type : integer
description : if 0 the host is not listed
2021-01-17 22:29:08 +01:00
PwdChange :
type : object
properties :
current_password :
type : string
new_password :
type : string
2019-07-20 12:26:52 +02:00
ApiResponse :
type : object
properties :
message :
type : string
2020-09-08 09:45:21 +02:00
description : message, can be empty
2019-07-20 12:26:52 +02:00
error :
type : string
description : error description if any
2019-08-08 10:01:33 +02:00
VersionInfo :
type : object
properties :
version :
type : string
build_date :
type : string
commit_hash :
type : string
2020-05-23 11:58:05 +02:00
features :
type : array
items :
type : string
2020-08-11 23:56:10 +02:00
description : Features for the current build. Available features are "portable", "bolt", "mysql", "sqlite", "pgsql", "s3", "gcs", "metrics". If a feature is available it has a "+" prefix, otherwise a "-" prefix
2021-01-17 22:29:08 +01:00
Token :
type : object
properties :
access_token :
type : string
expires_at :
type : string
format : date-time
2020-02-04 00:08:00 +01:00
securitySchemes :
BasicAuth :
type : http
scheme : basic
2021-01-17 22:29:08 +01:00
BearerAuth :
type : http
scheme : bearer
bearerFormat : JWT
