BOSS™ — Your AI Agency

API Reference

RESTful endpoints for the BOSS platform. Authenticate with an API key, call any endpoint, and receive structured JSON responses. All examples include both curl and TypeScript SDK versions.

Authentication

All API requests require a Bearer token in the Authorization header. Generate API keys at /admin/settings/api-keys. Each key has configurable scopes that limit what endpoints it can access.

Key format: sk_cintrico_[prefix]_[random]

Available scopes:

studios:read

studios:write

documents:read

documents:write

agents:invoke

agents:manage

chat:read

chat:write

search:query

webhooks:manage

admin:read

admin:write

curl example

terminal

# Authenticate with Bearer token curl -s -H "Authorization: Bearer sk_cintrico_YOUR_KEY" \ https://cintri.co/api/agents # Key format: sk_cintrico_[prefix]_[random] # Example: sk_cintrico_prod_a1b2c3d4e5f6

TypeScript SDK

app.ts

import { BossClient } from '@cintrico/sdk'; const boss = new BossClient({ apiKey: process.env.BOSS_API_KEY, baseUrl: 'https://cintri.co', }); // All subsequent calls are automatically authenticated const agents = await boss.agents.list();

Endpoints

MethodPathDescription

POST

/api/chat

Send message to agent, get streaming response

GET

/api/agents

List all agents with trust scores and stats

POST

/api/agents/generate-persona

AI-generate agent persona from description

POST

/api/agents/improve-prompt

AI-suggest prompt improvements

GET

/api/studios

List all studios with metadata

POST

/api/studios

Create a new studio

POST

/api/studios/generate-template

AI-generate studio template from description

GET

/api/admin/stats

Dashboard statistics and usage overview

GET

/api/admin/health

System health diagnostics

GET

/api/admin/costs

Cost tracker: usage by model, agent, studio

POST

/api/search

RAG semantic search across studio content

POST

/api/ingest

Trigger RAG indexing for new documents

GET

/api/knowledge-base

List indexed documents and graph stats

POST

/api/knowledge-base/upload

Upload document to knowledge base

POST

/api/billing/checkout

Create Stripe checkout session

POST

/api/billing/portal

Create Stripe customer portal link

POST

/api/billing/webhook

Stripe webhook handler

POST

/api/bridge/teams

Teams Bot Framework webhook

POST

/api/bridge/slack

Slack events webhook

POST

/api/bridge/whatsapp

WhatsApp Business API webhook

POST

/api/bridge/telegram

Telegram Bot API webhook

POST

/api/bridge/discord

Discord interactions endpoint

POST

/api/bridge/email

Email inbound webhook (SendGrid/Mailgun)

POST

/api/webhooks

GET

/api/webhooks

List configured webhooks

POST

/api/swarm

Create a multi-agent swarm project

POST

/api/playbooks/execute

Execute a playbook by ID

POST

/api/contact

Contact form submission

POST

/api/demo

Demo request submission

GET/POST

/api/mcp/[transport]

MCP protocol endpoint (SSE/HTTP)

Request & response examples

POST /api/chat

Send a message to an agent and receive a structured response with optional canvas blocks, citations, and cost tracking.

terminal

# Send a message to an agent curl -X POST https://cintri.co/api/chat \ -H "Authorization: Bearer sk_cintrico_YOUR_KEY" \ -H "Content-Type: application/json" \ -d '{ "studioId": "stu_abc123", "agentId": "ori", "message": "Draft a project plan for Q3 launch", "stream": false }'

streaming.ts

// Send a message and get a streaming response const stream = await boss.chat.send({ studioId: 'stu_abc123', agentId: 'ori', message: 'Analyze our support tickets from last week', stream: true, }); for await (const chunk of stream) { process.stdout.write(chunk.content); }

Response:

response.json

{ "data": { "id": "msg_xyz789", "studioId": "stu_abc123", "agentId": "ori", "agentName": "Ori", "content": "Here is the project plan for the Q3 launch...", "blocks": [ { "type": "checklist", "title": "Q3 Launch Milestones", "items": [ { "text": "Finalize feature spec", "due": "2026-04-15", "assignee": "Atlas" }, { "text": "Development sprint 1", "due": "2026-05-01", "assignee": "Cipher" } ] } ], "model": "claude-sonnet-4-20250514", "tokens": { "input": 1240, "output": 856 }, "cost": 0.0042, "trustAction": "execute" }, "error": null, "meta": { "requestId": "req_abc123", "timestamp": "2026-04-01T14:30:00Z", "latencyMs": 2340 } }

POST /api/search

Semantic vector search across all studio content. Returns ranked results with relevance scores, snippets, and metadata.

terminal

# Semantic search across studio content curl -X POST https://cintri.co/api/search \ -H "Authorization: Bearer sk_cintrico_YOUR_KEY" \ -H "Content-Type: application/json" \ -d '{ "query": "customer onboarding process", "studioId": "stu_abc123", "limit": 10, "types": ["document", "note", "table"], "minScore": 0.7 }'

Response:

response.json

{ "data": { "results": [ { "id": "doc_abc123", "type": "document", "title": "Customer Onboarding Playbook", "snippet": "...the standard onboarding process includes 5 phases...", "score": 0.94, "studioId": "stu_abc123", "updatedAt": "2026-03-28T10:00:00Z" }, { "id": "note_def456", "type": "note", "title": "Onboarding improvements Q2", "snippet": "...reduce time-to-value by automating steps 3 and 4...", "score": 0.87, "studioId": "stu_abc123", "updatedAt": "2026-03-15T08:30:00Z" } ], "total": 7, "queryEmbeddingMs": 45, "searchMs": 120 }, "error": null, "meta": { "requestId": "req_def456", "timestamp": "2026-04-01T14:35:00Z" } }

GET /api/agents

List all agents with their current trust scores, stats, and configuration.

Response:

response.json

{ "data": [ { "id": "agent_ori", "name": "Ori", "role": "Orchestrator", "mode": "hybrid", "trustScore": 85, "tier": "Trusted", "assignedStudios": ["stu_abc123", "stu_def456"], "capabilities": ["routing", "orchestration", "workflow_management"], "model": { "primary": "claude-sonnet-4-20250514", "complex": "claude-opus-4-20250514" }, "stats": { "totalTasks": 1247, "successRate": 0.96, "avgLatencyMs": 1850 } } ] }

Webhook setup

Register outbound webhooks to receive real-time notifications when events occur in your BOSS workspace. All webhook payloads include an HMAC signature for verification.

webhooks.ts

// Register an outbound webhook const webhook = await boss.webhooks.create({ url: 'https://your-server.com/hooks/boss', events: ['document.published', 'task.completed', 'agent.flagged'], secret: 'whsec_your_signing_secret', studioId: 'stu_abc123', // Optional: scope to a specific studio active: true, }); // Verify webhook signatures in your handler import { verifySignature } from '@cintrico/sdk'; app.post('/hooks/boss', (req, res) => { const isValid = verifySignature( req.body, req.headers['x-boss-signature'], 'whsec_your_signing_secret' ); if (!isValid) return res.status(401).send('Invalid signature'); const event = req.body; console.log(event.type, event.data); res.status(200).send('OK'); });

Available event types:

document.createdNew document created in any studio

document.publishedDocument moved from draft to published

task.completedChecklist item or task marked done

task.overdueTask past its due date

agent.flaggedService Engine flagged an agent action

agent.blockedService Engine blocked an agent action

approval.requestedAgent requesting human approval

approval.grantedHuman approved an agent action

studio.createdNew studio created in workspace

member.joinedNew member added to studio

swarm.completedMulti-agent swarm finished execution

playbook.checkpointPlaybook reached a human checkpoint

Error handling

All errors follow a consistent envelope format. The error field contains a machine-readable code and a human-readable message.

CodeMeaningAction

400Bad Request -- validation failedCheck request body against the schema. Common: missing required field, invalid enum value.

401Unauthorized -- missing or invalid API keyVerify your API key starts with sk_cintrico_ and has not been revoked.

403Forbidden -- insufficient permissionsCheck the key scopes. This key may lack the required scope for this endpoint.

404Not Found -- resource does not existVerify the studio/agent/document ID. Resources may have been deleted.

429Too Many Requests -- rate limit exceededWait for the Retry-After header duration, then retry with exponential backoff.

500Internal Server Error -- platform errorRetry with exponential backoff. If persistent, check /api/admin/health status.

503Service Unavailable -- maintenance or overloadThe platform is temporarily down. Retry after the Retry-After duration.

Retry strategy with exponential backoff

The recommended pattern for handling transient errors:

retry.ts

// Robust error handling with retry import { BossClient, BossError } from '@cintrico/sdk'; const boss = new BossClient({ apiKey: process.env.BOSS_API_KEY }); async function sendWithRetry(message: string, retries = 3): Promise<any> { for (let attempt = 1; attempt <= retries; attempt++) { try { return await boss.chat.send({ studioId: 'stu_abc123', agentId: 'ori', message, }); } catch (error) { if (error instanceof BossError) { // Don't retry client errors (4xx) if (error.status >= 400 && error.status < 500 && error.status !== 429) { throw error; } // Retry on rate limit with Retry-After header if (error.status === 429) { const retryAfter = error.headers['retry-after'] ?? 5; console.log(`Rate limited. Retrying in ${retryAfter}s...`); await new Promise(r => setTimeout(r, retryAfter * 1000)); continue; } // Retry on server errors with exponential backoff if (error.status >= 500) { const delay = Math.min(1000 * 2 ** attempt, 30000); console.log(`Server error ${error.status}. Retry ${attempt}/${retries} in ${delay}ms`); await new Promise(r => setTimeout(r, delay)); continue; } } throw error; } } throw new Error('Max retries exceeded'); }

Rate limits

100

requests / minute

per API key

10,000

requests / hour

per organization

concurrent streams

chat SSE connections

Rate limit headers are included in every response:

X-RateLimit-LimitMaximum requests per window

X-RateLimit-RemainingRequests remaining in current window

X-RateLimit-ResetUnix timestamp when the window resets

Retry-AfterSeconds to wait (only on 429 responses)

Enterprise plans have higher rate limits (1,000 req/min, 100,000 req/hr) and dedicated infrastructure. Contact sales for custom rate limit configurations.

Response format

All responses follow a consistent envelope format with data, error, and meta fields. Successful responses have error: null. Failed responses have data: null.

response-envelope.json

// Success { "data": { ... }, "error": null, "meta": { "requestId": "req_abc123", "timestamp": "2026-04-01T12:00:00Z", "latencyMs": 245 } } // Error { "data": null, "error": { "code": "VALIDATION_ERROR", "message": "studioId is required", "details": { "field": "studioId", "rule": "required" } }, "meta": { "requestId": "req_def456", "timestamp": "2026-04-01T12:00:01Z" } }

Next steps

MCP Server docs Integrations guide Swarm Engine Getting started guide

Request & response examples

POST /api/chat

Send a message to an agent and receive a structured response with optional canvas blocks, citations, and cost tracking.

terminal

streaming.ts

Response:

response.json

POST /api/search

Semantic vector search across all studio content. Returns ranked results with relevance scores, snippets, and metadata.

terminal

Response:

response.json

GET /api/agents

List all agents with their current trust scores, stats, and configuration.

Response:

response.json

Response format

All responses follow a consistent envelope format with data, error, and meta fields. Successful responses have error: null. Failed responses have data: null.

response-envelope.json