Skip to content
FutPicks

Overview

FootballLab API v1

Section titled “FootballLab API v1”

FootballLab / FutPicks API v3.1 — Secure API Layer.

Authentication: All endpoints require JWT Bearer token.

Authorization:

  • Ops endpoints (/api/v1/ops/*) require Admin policy (admin role).
  • Data endpoints (/api/v1/data/*) require ProTier policy (pro or admin subscription).

Error Handling: All errors use RFC 9457 application/problem+json format.

Idempotency: Mutating operations require Idempotency-Key header.

Rate Limiting: Rate limit headers included in responses.

Pagination: List endpoints use cursor or page-based pagination with bounded limits.

Webhooks: HMAC-SHA256 signed deliveries with retry/backoff.

Exports: 24-hour TTL with secure download tokens.

See /docs/ops-api.md and /docs/data-api.md for detailed endpoint documentation.

Information

  • OpenAPI version: 3.0.1

Operations

Section titled “ Operations ”
GET
/api/v1/data/catalog
GET
/api/v1/data/schema/{resource}
GET
/api/v1/data/leagues
GET
/api/v1/data/teams
GET
/api/v1/data/matches
GET
/api/v1/data/matches/{matchId}
GET
/api/v1/data/odds-snapshots
GET
/api/v1/data/signals
GET
/api/v1/data/track-record
GET
/api/v1/data/usage
GET
/api/v1/data/sports-intelligence/matches/{matchId}
POST
/api/v1/data/exports
GET
/api/v1/data/exports/{id}
GET
/api/v1/data/exports/{id}/download
GET
/api/v1/data/saved-queries
POST
/api/v1/data/saved-queries
GET
/api/v1/data/saved-queries/{id}
DELETE
/api/v1/data/saved-queries/{id}
POST
/api/v1/data/saved-queries/{id}/execute
GET
/api/v1/data/webhooks
POST
/api/v1/data/webhooks
PATCH
/api/v1/data/webhooks/{id}
POST
/api/v1/data/webhooks/{id}/rotate-secret
GET
/api/v1/data/webhooks/{id}/deliveries
POST
/api/v1/data/webhooks/{id}/deliveries/{deliveryId}/replay
GET
/api/admin/ping
GET
/api/admin/users
PUT
/api/admin/users/{id}/grant-pro
PUT
/api/admin/users/{id}/revoke-pro
PUT
/api/admin/users/{id}/suspend
PUT
/api/admin/users/{id}/unsuspend
GET
/api/admin/pipeline-runs
POST
/api/admin/trigger/ingestion
POST
/api/admin/trigger/scoring
POST
/api/admin/trigger/settlement
POST
/api/admin/trigger/calibrate-fit
GET
/api/admin/picks
GET
/api/admin/calibration-profiles
GET
/api/admin/health
GET
/api/admin/sports-intelligence/matches/{matchId}/snapshots
POST
/api/admin/sports-intelligence/matches/{matchId}/refresh
GET
/api/affiliate/config
GET
/api/alert-rules
POST
/api/alert-rules
GET
/api/alert-rules/{id}
PUT
/api/alert-rules/{id}
DELETE
/api/alert-rules/{id}
PATCH
/api/alert-rules/{id}/active
POST
/api/auth/register
POST
/api/auth/login
POST
/api/auth/refresh
POST
/api/auth/logout
PUT
/api/auth/users/{userId}/tier
POST
/api/backtest/run
GET
/api/billing/config
POST
/api/billing/checkout-session
POST
/api/billing/portal-session
GET
/api/billing/subscription
GET
/api/evaluate/matches
GET
/api/evaluate/{matchId}
GET
/api/explorer/slate
GET
/api/explorer/matches/{matchId}
GET
/api/explorer/markets/{matchId}/{market}
GET
/api/explorer/markets/history
GET
/api/explorer/teams/{teamId}
GET
/api/explorer/comparable
GET
/api/health
GET
/api/matches/today
GET
/api/matches/{id}
GET
/api/matches/{id}/intelligence
GET
/api/matches/upcoming
GET
/api/matches/by-slug/{date}/{slug}
GET
/api/picks/today
GET
/api/picks/{id}
GET
/api/picks/history
GET
/api/picks/board
GET
/api/picks/export
GET
/api/rating-thresholds
GET
/api/rating-thresholds/{id}
PUT
/api/rating-thresholds/{id}
GET
/api/v1/seo/leagues
GET
/api/v1/seo/leagues/{slug}
GET
/api/v1/seo/teams
GET
/api/v1/seo/teams/{slug}
GET
/api/v1/seo/picks/archive/dates
GET
/api/v1/seo/picks/archive/{date}
GET
/api/v1/seo/predictions/upcoming
GET
/api/v1/seo/predictions/{slug}
GET
/api/v1/seo/sitemap.xml
GET
/api/sports-intelligence/matches/{matchId}
GET
/api/teams
GET
/api/teams/{slug}
POST
/api/telegram/link-code
GET
/api/track-record
GET
/api/track-record/by-market
GET
/api/track-record/by-league
GET
/api/track-record/by-rating
GET
/api/track-record/by-edge-bucket
GET
/api/track-record/by-competition-type
GET
/api/track-record/filtered
GET
/api/track-record/daily
GET
/api/user-bets
POST
/api/user-bets
GET
/api/user-bets/{id}
PUT
/api/user-bets/{id}
DELETE
/api/user-bets/{id}
GET
/api/user-bets/summary
GET
/api/user-bets/export
GET
/api/watchlist
POST
/api/watchlist/team/{teamId}
DELETE
/api/watchlist/team/{teamId}
POST
/api/watchlist/league/{leagueId}
DELETE
/api/watchlist/league/{leagueId}
POST
/api/webhooks/stripe
GET
/api/v1/ops/meta
GET
/api/v1/ops/me
POST
/api/v1/ops/operations/ingestion-runs
POST
/api/v1/ops/operations/scoring-runs
POST
/api/v1/ops/operations/settlement-runs
POST
/api/v1/ops/operations/calibration-runs
POST
/api/v1/ops/operations/intelligence-refreshes
GET
/api/v1/ops/operations/{id}
GET
/api/v1/ops/operations/{id}/result
POST
/api/v1/ops/operations/{id}/cancel
POST
/api/v1/ops/operations/{id}/retry
GET
/api/v1/ops/status
GET
/api/v1/ops/health/services
GET
/api/v1/ops/health/data-freshness
GET
/api/v1/ops/config/status
GET
/api/v1/ops/secrets/status

Authentication

Section titled “ Authentication ”

Bearer

Section titled “Bearer ”

JWT Authorization header using the Bearer scheme. Enter your token in the text input below.

Example: “abc123def456…”

Anonymous requests receive 401. Free users receive 403 for Data API.

Security scheme type: http

Bearer format: JWT