Skip to main content

Documentation Index

Fetch the complete documentation index at: https://mintlify.com/thenoname-gurl/EcliPanel/llms.txt

Use this file to discover all available pages before exploring further.

Admin endpoints provide staff with visibility and control over the entire EcliPanel installation. They cover panel-wide statistics, server and user management overrides, global search, fraud detection, anti-abuse incident tracking, feature rollouts, and system logs. All endpoints in this section require staff or admin-level access unless otherwise noted.
These endpoints expose sensitive operational data and perform destructive actions. Access should be restricted to trusted staff accounts via the role/permission system.

Statistics and metrics

Panel statistics

GET /api/admin/stats Returns high-level counts across the panel: total users, servers, nodes, organisations, open tickets, and active fraud alerts. 
curl https://your-panel.example.com/api/admin/stats \
  -H "Cookie: session=<token>"
users
number
Total registered user accounts.
servers
number
Total provisioned servers.
nodes
number
Total registered nodes.
organisations
number
Total organisations.
openTickets
number
Tickets in open or pending status.
fraudAlerts
number
Active unresolved fraud alerts.

Panel metrics

GET /api/admin/metrics Returns time-series performance metrics for the panel backend: request rates, response times, error rates, and Redis/database latency. 
curl https://your-panel.example.com/api/admin/metrics \
  -H "Cookie: session=<token>"

User and server management

List all users

GET /api/admin/users Returns a paginated list of all user accounts with profile, tier, and fraud fields.
page
number
default:"1"
Page number.
limit
number
default:"50"
Results per page.
search
string
Filter by email, name, or user ID.
curl "https://your-panel.example.com/api/admin/users?search=alice&limit=20" \
  -H "Cookie: session=<token>"

List all servers

GET /api/admin/servers Returns all game servers across all users and nodes. 
curl https://your-panel.example.com/api/admin/servers \
  -H "Cookie: session=<token>"

Create server (admin)

POST /api/admin/servers Creates a server on behalf of any user, bypassing normal plan limits.
userId
number
required
Owner’s user ID.
name
string
required
Server display name.
nodeId
number
required
Node to deploy on.
eggId
number
required
Egg (server type) ID.
memory
number
RAM in megabytes.
disk
number
Disk in megabytes.
cpu
number
CPU percentage.
curl -X POST https://your-panel.example.com/api/admin/servers \
  -H "Cookie: session=<token>" \
  -H "Content-Type: application/json" \
  -d '{"userId":55,"name":"Staff Test","nodeId":1,"eggId":3,"memory":1024,"disk":5120,"cpu":100}'

List all nodes

GET /api/admin/nodes Returns all registered nodes including health status. Equivalent to GET /api/nodes but always returns the full list regardless of the caller’s portal tier. 
curl https://your-panel.example.com/api/admin/nodes \
  -H "Cookie: session=<token>"
GET /api/admin/search Searches across users, servers, nodes, and organisations simultaneously.
q
string
required
Search query string (minimum 2 characters).
curl "https://your-panel.example.com/api/admin/search?q=minecraft" \
  -H "Cookie: session=<token>"
users
object[]
Matching user records.
servers
object[]
Matching server records.
nodes
object[]
Matching node records.
organisations
object[]
Matching organisation records.

Security operations (SOC)

SOC overview

GET /api/soc/overview Returns the SOC dashboard snapshot: active fraud alerts, recent anti-abuse incidents, suspended accounts, and DMCA takedowns. 
curl https://your-panel.example.com/api/soc/overview \
  -H "Cookie: session=<token>"
fraudAlerts
object[]
Recent unresolved fraud alerts.
antiAbuseIncidents
object[]
Recent anti-abuse incidents.
dmcaServers
number
Count of servers under DMCA takedown.
suspendedUsers
number
Count of suspended user accounts.

List fraud alerts

GET /api/admin/fraud-alerts Returns active fraud alerts generated by the automated detection system. 
curl https://your-panel.example.com/api/admin/fraud-alerts \
  -H "Cookie: session=<token>"
id
number
Alert ID.
userId
number
Flagged user ID.
reason
string
Reason the account was flagged.
severity
string
Alert severity level.
createdAt
string
ISO 8601 detection timestamp.

List anti-abuse incidents

GET /api/admin/antiabuse/incidents Returns all anti-abuse incidents tracked by the panel.
status
string
Filter by status: open, resolved, or dismissed.
curl "https://your-panel.example.com/api/admin/antiabuse/incidents?status=open" \
  -H "Cookie: session=<token>"
id
number
Incident ID.
type
string
Incident category (e.g. spam, ddos, tos_violation).
serverId
string
Server UUID associated with the incident, if applicable.
userId
number
User associated with the incident.
status
string
Current incident status.
createdAt
string
ISO 8601 timestamp.

Rollouts

List rollouts

GET /api/admin/rollouts Returns all feature rollout configurations. Rollouts control gradual feature releases to subsets of users. 
curl https://your-panel.example.com/api/admin/rollouts \
  -H "Cookie: session=<token>"
id
number
Rollout ID.
key
string
Feature flag key.
percentage
number
Percentage of users with the feature enabled (0–100).
enabled
boolean
Whether the rollout is active.

Settings

Get panel settings

GET /api/admin/settings Returns all configurable panel settings as a key-value map. 
curl https://your-panel.example.com/api/admin/settings \
  -H "Cookie: session=<token>"
key
string
Setting key identifier.
value
string
Setting value.

Logs

Get API request logs

GET /api/admin/logs Returns recent API request logs for debugging and audit purposes.
limit
number
default:"100"
Number of log entries to return.
userId
number
Filter logs to a specific user.
curl "https://your-panel.example.com/api/admin/logs?limit=50&userId=123" \
  -H "Cookie: session=<token>"
id
number
Log entry ID.
method
string
HTTP method.
path
string
Request path.
statusCode
number
Response status code.
durationMs
number
Request duration in milliseconds.
userId
number
Authenticated user ID, or null for unauthenticated requests.
ipAddress
string
Client IP address.
createdAt
string
ISO 8601 timestamp.

Build docs developers (and LLMs) love

Get started for freeTalk to us