API Reference

Mezite exposes two API surfaces for programmatic access to the SSH platform.

gRPC API (Auth Service)

The auth service listens on port 3025 and exposes a gRPC API defined in proto/v1/auth.proto. This is the primary API used by all Mezite components (agents, CLI tools, and the web UI) to authenticate, manage resources, and emit audit events.

See the gRPC API reference for the full list of RPCs.

Web / REST API (Proxy Service)

The proxy service listens on port 3080 (HTTPS) and provides a REST-style JSON API under /v1/webapi/. This API powers the web UI and can be used for lightweight integrations that do not require a gRPC client.

See the Web API reference for available endpoints.

Authentication

Both APIs use short-lived TLS client certificates for authentication. Obtain certificates by calling the Login RPC or the /v1/webapi/login endpoint, then present them on subsequent requests.