Create an origin server
POST
/api/organizations/{organizationId}/origin-servers
Registers a new origin server for the organization. The name must be unique within the organization, and the address+port pair must also be unique. The address must be a valid hostname (no wildcards) or IP address and is rejected if it resolves to a forbidden internal range (loopback, RFC1918, link-local, cloud metadata) to prevent SSRF.
Authorizations
ApiToken
Long-lived API token created via POST /api/api-tokens (returned once in plaintext).
Type
API Key (header: X-API-TOKEN)
or
JWT
JWT access token obtained via POST /api/auth/login. Send as: Authorization: Bearer
Type
HTTP (bearer)
Parameters
Path Parameters
organizationId*
Organization identifier
Type
Requiredstring
Request Body
JSON "name": "primary-eu-west", "protocol": "https", "address": "origin.example.com", "port": 443, "requestHostname": "internal-app.example.com"
{
}
Responses
origin-server resource created
JSON "@context": "string", "@id": "string", "@type": "string", "id": "0f8fad5b-d9cb-469f-a165-70867728950e", "name": "primary-eu-west", "protocol": "https", "address": "origin.example.com", "port": 443, "requestHostname": "internal-app.example.com", "createdAt": "2026-01-15T09:30:00+00:00", "updatedAt": "2026-01-15T09:30:00+00:00"
{
}
