API Endpoints¶

Complete reference for WireBuddy REST API.

Authentication¶

All endpoints require Bearer token authentication unless otherwise noted.

Base URL¶

https://vpn.example.com/api

Common Responses¶

Success (200 OK)¶

{
  "success": true,
  "data": { ... }
}

Created (201 Created)¶

{
  "success": true,
  "data": { ... },
  "message": "Resource created successfully"
}

Error (4xx, 5xx)¶

{
  "error": "Error Type",
  "message": "Detailed error message",
  "details": { ... }
}

Interfaces¶

List Interfaces¶

GET /api/interfaces

Response:

{
  "success": true,
  "data": [
    {
      "name": "wg0",
      "address": "10.8.0.1/24",
      "listen_port": 51820,
      "status": "active",
      "peer_count": 12
    }
  ]
}

Get Interface¶

GET /api/interfaces/{name}

Create Interface¶

POST /api/interfaces

Request:

{
  "name": "wg0",
  "address": "10.8.0.1/24",
  "listen_port": 51820,
  "dns": "1.1.1.1, 1.0.0.1"
}

Update Interface¶

PUT /api/interfaces/{name}

Delete Interface¶

DELETE /api/interfaces/{name}

Start Interface¶

POST /api/interfaces/{name}/start

Stop Interface¶

POST /api/interfaces/{name}/stop

Peers¶

List Peers¶

GET /api/peers

Query Parameters:

interface - Filter by interface name
status - Filter by status (active, inactive, disabled)
limit - Results per page (default: 50)
offset - Pagination offset

Response:

{
  "success": true,
  "data": {
    "peers": [
      {
        "id": "123e4567-e89b-12d3-a456-426614174000",
        "name": "John's iPhone",
        "interface": "wg0",
        "ip": "10.8.0.2",
        "status": "connected",
        "last_handshake": "2026-03-15T14:30:00Z",
        "transfer_tx": 1048576000,
        "transfer_rx": 524288000
      }
    ],
    "total": 12,
    "limit": 50,
    "offset": 0
  }
}

Get Peer¶

GET /api/peers/{id}

Create Peer¶

POST /api/peers

Request:

{
  "name": "New Peer",
  "interface": "wg0",
  "ip": "10.8.0.10",
  "routing_mode": "full_tunnel",
  "persistent_keepalive": 25
}

Update Peer¶

PUT /api/peers/{id}

Delete Peer¶

DELETE /api/peers/{id}

Get Peer Config¶

GET /api/peers/{id}/config

Response:

[Interface]
PrivateKey = <key>
Address = 10.8.0.2/32
DNS = 10.8.0.1

[Peer]
PublicKey = <key>
Endpoint = vpn.example.com:51820
AllowedIPs = 0.0.0.0/0, ::/0
PersistentKeepalive = 25

Generate QR Code¶

GET /api/peers/{id}/qrcode

Returns PNG image of QR code.

DNS¶

Get DNS Settings¶

GET /api/dns/settings

Update DNS Settings¶

PUT /api/dns/settings

Get Query Log¶

GET /api/dns/queries

Query Parameters:

client - Filter by client name
domain - Filter by domain
status - allowed or blocked
limit - Results per page (default: 100)
offset - Pagination offset

Get DNS Statistics¶

GET /api/dns/stats

Update Blocklists¶

POST /api/dns/blocklists/update

Get Custom Rules¶

GET /api/dns/rules

Add Custom Rule¶

POST /api/dns/rules

Request:

{
  "action": "block",
  "domain": "ad.example.com",
  "client": "optional-peer-name"
}

Metrics¶

Get Dashboard Metrics¶

GET /api/metrics/dashboard

Get Peer Traffic¶

GET /api/metrics/peers/{id}

Query Parameters:

start - Start time (ISO 8601)
end - End time (ISO 8601)
resolution - hourly, daily, weekly

Get Geographic Stats¶

GET /api/metrics/geo/countries

GET /api/metrics/geo/asn

Users¶

List Users (Admin Only)¶

GET /api/users

Get User¶

GET /api/users/{id}

Create User (Admin Only)¶

POST /api/users

Request:

{
  "username": "newuser",
  "email": "user@example.com",
  "password": "SecurePassword123!",
  "role": "user"
}

Update User¶

PUT /api/users/{id}

Delete User (Admin Only)¶

DELETE /api/users/{id}

Settings¶

Get Settings (Admin Only)¶

GET /api/settings

Update Settings (Admin Only)¶

PUT /api/settings

Rate Limits¶

Endpoint Type	Authenticated	Unauthenticated
Read (GET)	100/min	10/min
Write (POST/PUT/DELETE)	30/min	5/min

Pagination¶

Paginated endpoints support:

limit - Results per page (max 100)
offset - Skip N results

Response includes:

{
  "data": [...],
  "total": 150,
  "limit": 50,
  "offset": 0
}

Error Codes¶

Code	Meaning
400	Bad Request - Invalid parameters
401	Unauthorized - Missing/invalid token
403	Forbidden - Insufficient permissions
404	Not Found - Resource doesn't exist
409	Conflict - Resource already exists
422	Unprocessable Entity - Validation failed
429	Too Many Requests - Rate limited
500	Internal Server Error

SDKs & Libraries¶

Official SDKs (planned):

Python: wirebuddy-python
JavaScript: wirebuddy-js

Community contributions welcome!

OpenAPI Specification¶

Download OpenAPI spec:

https://vpn.example.com/api/openapi.json

Next Steps¶

Authentication Guide - Generate tokens
API Overview - Getting started
Security - API security best practices