API Documentation
The FluffyStack REST API gives you programmatic access to the cloud service catalogue, governance policy generation, and list management. Open API — no key, no sign-in. Just curl it.
Base URL
https://api.fluffystack.devQuick links
Full API reference
Every endpoint, parameter, response shape, and example.
Read the docsOpenAPI 3.1 spec
Machine-readable spec for openapi-generator, Postman, Insomnia, Bruno, kiota, orval — feed it in and get a typed client.
View specCurl-friendly reference
ANSI-formatted endpoint reference for the terminal. `curl text.fluffystack.dev/api`.
See itAPI Changelog
Version history, breaking changes, new endpoints.
See changelogJSON Schemas
Machine-readable schemas for export formats.
View schemasWhat you can build
Cloud service discovery in CI pipelines
Query GET /v1/services to programmatically check if a service is in the catalogue, what category it belongs to, and its compliance posture.
Generate governance policies on demand
POST an approved service list and get back AWS SCP, Azure Policy, or GCP Org Policy files ready to apply. No client-side code generation needed.
LLM agent tooling
Feed the catalogue to Claude, GPT, or Gemini as context for cloud architecture decisions. The JSON responses are structured and the schema is published.
Save & share service lists
Persist approved service lists via the API and generate shareable URLs for team review.
Rate limits
| Endpoints | Limit |
|---|---|
| Read endpoints (GET) | No Worker-side limit; cached at the edge for 5 minutes |
| Mutation endpoints (POST) | 10 req/min/IP |
Mutation responses carry X-RateLimit-Limit, X-RateLimit-Remaining, and X-RateLimit-Reset headers. Exceeding the limit returns 429 with a Retry-After header.
Quick example
# List all cloud providers
curl https://api.fluffystack.dev/v1/providers
# Generate an AWS SCP for your approved services
curl -X POST https://api.fluffystack.dev/v1/policies/aws-scp \
-H "Content-Type: application/json" \
-d '{"approvedServiceIds": ["aws-ec2", "aws-s3", "aws-lambda"]}'