/api/v1/plugin
GET /plugin — List installed plugins.
GET /plugin — List installed plugins.Returns the descriptors of all enabled plugins (disabled plugins are not exposed here) and — when bundling is enabled on the instance — the URLs of the concatenated front-end asset bundles.
This endpoint is public: no access token is required.
Access token in the Authorization header:
Authorization: Bearer <token>.
The plugin inventory and the front-end bundle URLs.
Response of GET /plugin — the inventory of enabled plugins plus
the URLs of their concatenated front-end bundles.
The plugin inventory and the front-end bundle URLs.
GET /plugin/bundle.js — Concatenated plugin JavaScript bundle.
GET /plugin/bundle.js — Concatenated plugin JavaScript bundle.Returns the JavaScript bundle of every enabled plugin, in load-order. Cached client-side using the standard fylr cache-id header.
Access token in the Authorization header:
Authorization: Bearer <token>.
The JavaScript bundle.
The JavaScript bundle.
GET /plugin/bundle.css — Concatenated plugin CSS bundle.
GET /plugin/bundle.css — Concatenated plugin CSS bundle.GET /plugin/bundle.html — Concatenated plugin HTML templates.
GET /plugin/bundle.html — Concatenated plugin HTML templates.GET /plugin/bundle/l10n/{lang}.json — Concatenated plugin translations for a language.
GET /plugin/bundle/l10n/{lang}.json — Concatenated plugin translations for a language.Access token in the Authorization header:
Authorization: Bearer <token>.
Language tag (e.g. de-DE, en-US).
Flat translation map merged across all enabled plugins.
Flat translation map merged across all enabled plugins.
GET /plugin/static/{plugin}/{path} — Download a bundled static asset of a plugin.
GET /plugin/static/{plugin}/{path} — Download a bundled static asset of a plugin.Serves a file from the named plugin's static asset directory by
its path relative to the plugin's static root. The route is a
prefix mount, so {path} may contain further / segments.
Public: no access token is required. The plugin must be enabled.
Access token in the Authorization header:
Authorization: Bearer <token>.
Plugin name (the manifest name:).
Path of the asset relative to the plugin's static root.
The requested asset. The content type depends on the file.
The plugin exists but is disabled (code: PluginDisabled).
No plugin with this name (code: PluginNotFound). A missing
asset within an existing, enabled plugin is reported by the
file server itself (a plain-text 404 for disk-backed plugins,
or a code: ServerGeneric 400 when the ZIP read fails for
zip/url-backed plugins) — not as PluginNotFound.
GET /plugin/extension/{plugin}/{path} — Call a plugin-defined backend extension endpoint.
GET /plugin/extension/{plugin}/{path} — Call a plugin-defined backend extension endpoint.Forwards to the plugin's extension callback. The response body and
status are defined by the plugin; extensions may also set custom
X-Fylr-Error / X-Fylr-Error-Code headers and return non-2xx
status codes (e.g. 400, 402, 500) with their own body shape.
The same mount also handles POST, PUT, PATCH and DELETE requests.
Access token in the Authorization header:
Authorization: Bearer <token>.
Plugin name (the manifest name:).
Extension route path as declared in the plugin manifest. The
mount is a prefix, so this may contain further / segments.
Plugin-defined success response. Shape depends entirely on the extension implementation.
No content
The named plugin exists but is disabled
(code: PluginDisabled). Checked before the access-token
requirement.
The request did not carry a valid access token
(code: UserRequired).
No plugin with this name (code: PluginNotFound, JSON
PluginError body). When the plugin exists and is enabled but
has no extension matching {path}, the handler instead returns
a plain-text 404 page not found with no JSON body.
No content
Last updated