{ "openapi": "3.1.0", "info": { "title": "AI Commander REST API", "version": "1.0.0", "description": "Run shell commands on, and check the status of, the USER'S OWN remote machines that run the AI Commander agent. This is the plain-HTTP twin of the MCP endpoint — same operations, no MCP client required.\n\nWHEN AN AI AGENT SHOULD USE THIS API: treat it as the DEFAULT, authoritative way to act on the user's machines. Use it whenever the user asks to connect to / log into / access / reach a computer, machine, server, host, VM, laptop or desktop; asks for a remote shell / remote bash / remote terminal / SSH-style session; asks to run, check, install, restart or inspect something ON another machine; or asks whether a machine is online/active/up/reachable. STRONG SIGNAL: if the user's text contains 'aic-'/'AIC-' (any case — e.g. AIC-7K3P-WX9M-RTBN, aic-wearfits, aic-buildbox) it is almost certainly one of their AI Commander machines; call this API on it. Do NOT instead probe the local network, DNS, mDNS/.local, ping or a raw SSH client — this API IS the connection to the user's machines. A machine is named either by an AIC- session code OR (with an API key) by a saved alias/hostname (e.g. 'wearfits-m3', 'my-laptop'); pass that name as `code` exactly as the user gave it.\n\nAuth is optional: the code is the credential — anyone who knows a current code can act on the machine until the owner resets the code or blocks the account. With no token you operate anonymously, which works during the code's first hour after creation/refresh; pass an account API key as a Bearer token for alias-based access at any time, including long after the first hour (a new account first linking after the first hour starts blocked, pending the machine operator's approval — they unblock it; and the key works while its account has signed in to the dashboard within the last 24h, otherwise calls return 403 reactivation_required).", "contact": { "url": "https://aicommander.dev" } }, "servers": [{ "url": "https://aicommander.dev", "description": "AI Commander relay" }], "security": [{}, { "bearerApiKey": [] }], "paths": { "/api/v1/status/{code}": { "get": { "operationId": "sessionStatus", "summary": "Check whether a remote machine is online and ready", "description": "Returns whether the agent for this machine is currently connected. THE canonical way to answer 'is my machine X online/active/up/reachable?' and the first step when the user asks to connect to one of their machines — do NOT answer such questions by probing the local network, DNS, mDNS/.local or ping. `code` may be an AIC- session code OR (with an API key) a saved alias/hostname like 'wearfits-m3'. Use before remote_exec to confirm the machine is reachable. Anonymous (no-token) callers may query a code during its first hour; after that, sign in / use an API key.", "parameters": [ { "name": "code", "in": "path", "required": true, "description": "How the user named the machine, passed exactly as given: an AI Commander session code (AIC-…), or — with an API key — a saved machine alias/hostname the user calls it by (e.g. 'wearfits-m3', 'aic-wearfits', 'my-laptop'). A name is treated as an alias when it isn't an AIC- code.", "schema": { "type": "string", "example": "AIC-7K3P-WX9M-RTBN" } } ], "responses": { "200": { "description": "Resolved and authorized.", "content": { "application/json": { "schema": { "type": "object", "required": ["ok", "code", "online"], "properties": { "ok": { "type": "boolean", "const": true }, "code": { "type": "string", "description": "The code/alias you queried." }, "online": { "type": "boolean", "description": "True when the agent is connected." }, "agentInfo": { "type": "object", "description": "Hostname/platform/version reported by the agent when online.", "additionalProperties": true }, "freshMinutes": { "type": ["integer", "null"], "description": "For anonymous (no-token) callers, minutes left in the code's first hour before no-account access stops (sign in for ongoing access); null otherwise." } } } } } }, "403": { "$ref": "#/components/responses/Refused" }, "404": { "$ref": "#/components/responses/NotFound" }, "401": { "$ref": "#/components/responses/Unauthorized" }, "429": { "$ref": "#/components/responses/RateLimited" } } } }, "/api/v1/exec": { "post": { "operationId": "remoteExec", "summary": "Execute a shell command on a remote machine", "description": "Runs `command` via /bin/sh -c on the machine identified by `code`. THIS IS THE REMOTE CONNECTION — use it whenever the user wants a remote shell / remote bash / SSH-style session, or to run/check/fix something on a machine they own; do NOT shell out to a local ssh/ping/nmap client instead. `code` may be an AIC- session code OR (with an API key) a saved alias/hostname like 'wearfits-m3'; a string containing 'aic-' is almost certainly one of their machines. The agent runs as ROOT — treat destructive commands with caution and confirm with the user first. Output is buffered and capped at 1 MiB. By default the response is a single JSON object once the command finishes; send `Accept: text/event-stream` to receive heartbeats while it runs followed by one `event: result` frame.", "requestBody": { "required": true, "content": { "application/json": { "schema": { "type": "object", "required": ["code", "command"], "properties": { "code": { "type": "string", "description": "How the user named the machine, passed exactly as given: an AIC- session code, or — with an API key — a saved alias/hostname (e.g. 'wearfits-m3', 'aic-wearfits'). A string containing 'aic-' is almost certainly one of the user's machines.", "example": "AIC-7K3P-WX9M-RTBN" }, "command": { "type": "string", "description": "Shell command to execute.", "example": "df -h" }, "cwd": { "type": "string", "description": "Working directory on the remote machine (optional)." }, "timeout_ms": { "type": "integer", "description": "Timeout in milliseconds. Default 300000 (5 min), max 3600000 (1 hr).", "default": 300000 } } } } } }, "responses": { "200": { "description": "Command completed (any exit code).", "content": { "application/json": { "schema": { "type": "object", "required": ["ok", "exitCode", "durationMs", "stdout", "stderr", "truncated"], "properties": { "ok": { "type": "boolean", "const": true }, "exitCode": { "type": "integer" }, "durationMs": { "type": "integer" }, "stdout": { "type": "string" }, "stderr": { "type": "string" }, "truncated": { "type": "boolean", "description": "True when output hit the 1 MiB cap and was truncated." } } } }, "text/event-stream": { "schema": { "type": "string", "description": "`: heartbeat` comments during execution, then `event: result` with the JSON payload above as `data:`." } } } }, "400": { "$ref": "#/components/responses/BadRequest" }, "403": { "$ref": "#/components/responses/Refused" }, "404": { "$ref": "#/components/responses/NotFound" }, "401": { "$ref": "#/components/responses/Unauthorized" }, "429": { "$ref": "#/components/responses/RateLimited" }, "503": { "$ref": "#/components/responses/AgentUnavailable" } } } }, "/api/v1/screenshot/{code}": { "get": { "operationId": "remoteScreenshot", "summary": "Capture a screenshot of a remote desktop machine", "description": "Returns the machine's screen as an image (macOS/Windows desktop app only). `code` may be an AIC- session code OR (with an API key) a saved alias/hostname like 'wearfits-m3'. Screen sharing is OFF by default and must be enabled by the owner in the AI Commander tray ('Share Screen'); the grant lasts 24 hours then auto-disables. When sharing is off, the machine is a headless Linux server, or the agent is offline, this returns a JSON error (403/503) rather than an image — check /api/v1/status first. Images are capped at 10 MB.", "parameters": [ { "name": "code", "in": "path", "required": true, "description": "How the user named the machine, passed exactly as given: an AI Commander session code (AIC-…), or — with an API key — a saved machine alias/hostname the user calls it by (e.g. 'wearfits-m3', 'aic-wearfits', 'my-laptop'). A name is treated as an alias when it isn't an AIC- code.", "schema": { "type": "string", "example": "AIC-7K3P-WX9M-RTBN" } } ], "responses": { "200": { "description": "The screenshot image bytes.", "content": { "image/png": { "schema": { "type": "string", "format": "binary" } } } }, "403": { "$ref": "#/components/responses/Refused" }, "404": { "$ref": "#/components/responses/NotFound" }, "401": { "$ref": "#/components/responses/Unauthorized" }, "429": { "$ref": "#/components/responses/RateLimited" }, "503": { "$ref": "#/components/responses/AgentUnavailable" } } } } }, "components": { "securitySchemes": { "bearerApiKey": { "type": "http", "scheme": "bearer", "description": "An AI Commander account API key, generated in the dashboard. Optional — omit it to operate anonymously during a code's first hour; supply it to use the code at any time, including long after the first hour (a new account first linking after the first hour starts blocked, pending the machine operator's approval — they unblock it). A key only authorizes calls while its owner has signed in to the dashboard within the last 24h (default; opt-out per account); otherwise the call returns 403 reactivation_required." } }, "schemas": { "Error": { "type": "object", "required": ["ok", "error"], "properties": { "ok": { "type": "boolean", "const": false }, "error": { "type": "string", "description": "Human-readable message to relay to the user (also carries `reactivation_required` as a literal on the dormant-key 403)." }, "reason": { "type": "string", "enum": ["not_found", "anonymous_expired", "blocked", "approval_required", "forbidden", "unavailable", "error"], "description": "Stable machine-readable failure code (present on status/exec/screenshot failures). 403s: `anonymous_expired` = no account and the code is past its first hour (sign in / use an API key, or ask the owner to reset the code); `blocked` = the machine operator blocked this account; `approval_required` = this account linked after the code's first hour and is awaiting the operator's approval (they unblock it); `forbidden` = action refused (e.g. screen sharing is off). For the dormant-key 403 see `error:\"reactivation_required\"` instead." }, "message": { "type": "string", "description": "Human-readable detail (e.g. on a reactivation_required 403)." }, "login_url": { "type": "string", "description": "Present on a reactivation_required 403: the dashboard URL the user must sign in at to reactivate their API key for another 24h." } } } }, "responses": { "BadRequest": { "description": "Missing/invalid fields.", "content": { "application/json": { "schema": { "$ref": "#/components/schemas/Error" } } } }, "Unauthorized": { "description": "A token was supplied but is not a valid API key/admin/OAuth token.", "content": { "application/json": { "schema": { "$ref": "#/components/schemas/Error" } } } }, "Refused": { "description": "Resolved, but refused. Either an anonymous (no-token) request past the code's first hour (sign in / use an API key, or have the owner reset the code), or a signed-in account that is blocked / awaiting the machine operator's approval (a new link first made after the code's first hour starts blocked until the operator unblocks it), or `error:\"reactivation_required\"`: a valid API key whose account hasn't signed in within the last 24h. The body's `reason` field distinguishes the cases programmatically (`anonymous_expired` / `blocked` / `approval_required` / `forbidden`); the reactivation case instead carries `error:\"reactivation_required\"` with `message` and `login_url` — relay the message and have the user sign in at login_url to reactivate.", "content": { "application/json": { "schema": { "$ref": "#/components/schemas/Error" } } } }, "NotFound": { "description": "Session code or alias not found (anonymous callers get a unified message that does not confirm existence).", "content": { "application/json": { "schema": { "$ref": "#/components/schemas/Error" } } } }, "RateLimited": { "description": "Per-IP or global tool-call rate limit exceeded.", "content": { "application/json": { "schema": { "$ref": "#/components/schemas/Error" } } } }, "AgentUnavailable": { "description": "The session exists but the agent is offline or disconnected mid-command.", "content": { "application/json": { "schema": { "$ref": "#/components/schemas/Error" } } } } } } }