homelab/portainer
1
0
Fork 0
mirror of https://github.com/portainer/portainer.git synced 2026-06-23 04:00:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
develop
portainer/api/api.md
T

2.4 KiB
Raw Permalink Blame History

The Portainer API is an HTTP API served by Portainer. It is used by the Portainer UI, and anything you can do in the UI can also be done via the HTTP API.

API examples are available in the Portainer documentation

You can find out more about Portainer on our website and get some support on Slack.

Authentication

Most of the API endpoints require authentication, as well as some level of authorization. Portainer uses JSON Web Tokens to manage authentication. You must provide a token in the Authorization header of each request using the Bearer scheme.

Example:

Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MSwidXNlcm5hbWUiOiJhZG1pbiIsInJvbGUiOjEsImV4cCI6MTQ5OTM3NjE1NH0.NJ6vE8FY1WG6jsRQzfMqeatJ4vh2TWAeeYfDhP71YEE

Security

Each API endpoint has an associated access policy, documented in its description.

The following policies are available:

  • Public access
  • Authenticated access
  • Restricted access
  • Administrator access

Public access

No authentication is required.

Authenticated access

Authentication is required.

Restricted access

Authentication is required. Additional checks may apply to verify access to the resource, and returned data may be filtered.

Administrator access

Authentication and an administrator role are both required.

Execute Docker requests

Portainer does not expose dedicated endpoints for managing Docker resources (create a container, remove a volume, etc).

Instead, it acts as a reverse-proxy to the Docker HTTP API, allowing you to execute Docker requests via the Portainer HTTP API.

To do so, use the /endpoints/{id}/docker endpoint. Note that this endpoint is not documented below due to Swagger limitations. It has a restricted access policy, so authentication is still required. Any request made to this endpoint is proxied to the Docker API of the associated environment - request and response objects are identical to those in the Docker official documentation.

Private Registry

When using a private registry, include a Base64-encoded JSON string in the request header. The header parameter name is X-Registry-Auth and the value should encode the following structure: {"registryId":<registryId>} where <registryId> is the ID of the registry where the repository was created.

Example encoded value:

eyJyZWdpc3RyeUlkIjoxfQ==
Reference in New Issue View Git Blame Copy Permalink