iron_control_api 0.4.0

HTTP API for Iron Cage control plane
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52

# iron_control_api - Specification

**Module:** iron_control_api  
**Layer:** 5 (Integration)  
**Status:** Active  

> **Specification Philosophy:** This specification focuses on architectural-level design and well-established knowledge. It describes what the module does and why, not implementation details or algorithms. Implementation constraints are minimal to allow flexibility. For detailed requirements, see spec/-archived_detailed_spec.md.

## Responsibility

REST + WebSocket control surface for Iron Cage. Exposes token/usage/budget/analytics endpoints, validates IC Tokens and JWT/RBAC, enforces agent token rules, and streams real-time events to the dashboard.

## Scope

**In Scope**
- REST API for tokens, usage limits, traces, auth handshake, and user management
- Budget Control (Protocol 005) handshake/report/return/refresh flows
- Analytics ingress and queries (Protocol 012) for spending/usage
- Agent token enforcement to protect credential endpoints
- WebSocket broadcasting of agent/runtime events for dashboards
- Authentication/authorization (IC Token validation, JWT, RBAC)

**Out of Scope**
- UI components (see iron_dashboard)
- Token generation/rotation logic (see iron_token_manager)
- Budget price computation (see iron_cost)
- Runtime execution and LLM routing (see iron_runtime)

## Dependencies

**Required Modules:** iron_token_manager, iron_runtime_state, iron_telemetry, iron_cost, iron_secrets  
**External:** axum/axum-extra, tower/tower-http, tokio, serde/serde_json, jsonwebtoken, sqlx (sqlite), reqwest, aes-gcm, bcrypt, tracing  
**Features:** `enabled` (default core), `full` (alias)

## Core Concepts

- **REST Router:** HTTP surface for tokens, limits, usage, auth, and admin operations.  
- **Budget Control Router:** Protocol 005 endpoints for lease handshake, usage reporting, refresh/return of budgets.  
- **Analytics Router:** Protocol 012 ingestion and spending/usage queries.  
- **Agent Token Enforcement:** Guards provider-key endpoints so agents only access their assigned keys.  
- **WebSocket Broadcaster:** Pushes live agent/runtime events to dashboard clients.  
- **Auth Middleware:** IC Token + JWT validation with role-based access controls.

## Integration Points

**Used by:** iron_dashboard, iron_sdk/CLI, iron_runtime (provider-key fetch, budget leases)  
**Uses:** iron_token_manager, iron_runtime_state, iron_cost, iron_secrets, iron_telemetry  
**External Services:** Database (sqlite/sqlx), LLM provider APIs (indirect via provider keys)

---

Cross-references: spec/-archived_detailed_spec.md; docs/protocol/002_rest_api_protocol.md; docs/protocol/005_budget_control_protocol.md; docs/protocol/012_analytics_api.md; docs/architecture/006_budget_control_protocol.md.