Documentation Index
Fetch the complete documentation index at: https://docs.crewform.tech/llms.txt
Use this file to discover all available pages before exploring further.
REST API Reference
CrewForm provides two API layers:
- API v2 — Edge Functions API with versioned envelopes, rate limiting, and pagination (recommended)
- API v1 (Legacy) — Direct Supabase PostgREST access (still supported)
API v2 (Recommended)
Base URL: https://<your-project>.supabase.co/functions/v1
The v2 API uses CrewForm Edge Functions with structured responses, per-tier rate limiting, and cursor-based pagination.
Authentication
All requests require one of:
| Method | Header | Use case |
|---|
| API Key | X-API-Key: cf_your_key | Zapier, scripts, third-party tools |
| JWT | Authorization: Bearer <token> | Frontend, authenticated clients |
Versioning
Set X-API-Version: 2 to opt into v2 response format. Omitting the header defaults to v1 (raw data, no envelope).
curl -H "X-API-Key: cf_..." \
-H "X-API-Version: 2" \
https://your-project.supabase.co/functions/v1/api-agents
{
"data": { ... },
"meta": {
"api_version": 2,
"request_id": "req_abc123def456",
"timestamp": "2026-03-13T10:00:00.000Z"
}
}
{
"data": {
"items": [ ... ],
"next_cursor": "2026-03-12T08:00:00.000Z",
"has_more": true
},
"meta": { ... }
}
{
"error": {
"code": "not_found",
"message": "Agent not found"
},
"meta": { ... }
}
Rate Limits
Enforced per workspace per minute:
| Plan | Requests/min |
|---|
| Free | 30 |
| Pro | 120 |
| Team | 300 |
| Enterprise | 600 |
X-RateLimit-Limit: 120
X-RateLimit-Remaining: 117
X-RateLimit-Reset: 1710324360
429 Too Many Requests with a Retry-After header.
List endpoints support cursor-based pagination:
| Param | Type | Default | Description |
|---|
limit | int | 50 | Items per page |
cursor | string | — | Cursor from next_cursor of previous response |
# First page
curl -H "X-API-Key: cf_..." -H "X-API-Version: 2" \
"https://.../functions/v1/api-agents?limit=10"
# Next page
curl -H "X-API-Key: cf_..." -H "X-API-Version: 2" \
"https://.../functions/v1/api-agents?limit=10&cursor=2026-03-12T08:00:00.000Z"
Endpoints
Agents — /functions/v1/api-agents
| Method | Params | Description |
|---|
GET | — | List all agents |
GET | ?id=<uuid> | Get single agent |
POST | body | Create agent |
PATCH | ?id=<uuid> + body | Update agent |
DELETE | ?id=<uuid> | Delete agent |
{
"name": "Code Reviewer",
"model": "claude-sonnet-4-20250514",
"description": "Reviews code for bugs and best practices",
"system_prompt": "You are a senior code reviewer...",
"temperature": 0.3,
"tools": [],
"status": "idle"
}
Tasks — /functions/v1/api-tasks
| Method | Params | Description |
|---|
GET | — | List all tasks |
GET | ?status=running | Filter by status |
GET | ?id=<uuid> | Get single task |
POST | body | Create task (auto-dispatches if agent/team assigned) |
PATCH | ?id=<uuid> + body | Update task |
DELETE | ?id=<uuid> | Delete task |
{
"title": "Review PR #42",
"description": "Review the authentication changes",
"priority": "high",
"assigned_agent_id": "<uuid>",
"metadata": {}
}
pending, dispatched, running, waiting_for_input, completed, failed, cancelled
Task priorities: low, medium, high, urgent
Teams — /functions/v1/api-teams
| Method | Params | Description |
|---|
GET | — | List all teams (includes members) |
GET | ?id=<uuid> | Get single team |
POST | body | Create team |
PATCH | ?id=<uuid> + body | Update team |
DELETE | ?id=<uuid> | Delete team |
{
"name": "Content Pipeline",
"description": "Research → Write → Edit",
"mode": "pipeline",
"config": {
"steps": [
{
"agent_id": "<uuid>",
"step_name": "Research",
"instructions": "Research the topic thoroughly",
"expected_output": "Detailed research notes",
"on_failure": "retry",
"max_retries": 2
}
],
"auto_handoff": true
}
}
pipeline, orchestrator, collaboration
Team Runs — /functions/v1/api-runs
| Method | Params | Description |
|---|
GET | — | List all runs |
GET | ?team_id=<uuid> | Filter by team |
GET | ?id=<uuid> | Get single run (includes messages) |
POST | body | Start a new team run |
{
"team_id": "<uuid>",
"input_task": "Research the latest trends in AI agent frameworks"
}
Webhook Hooks — /functions/v1/api-hooks
| Method | Params | Description |
|---|
GET | — | List active webhook subscriptions |
POST | body | Subscribe (Zapier REST Hook) |
DELETE | ?id=<uuid> | Unsubscribe |
{
"target_url": "https://hooks.zapier.com/...",
"event": "task_completed"
}
Identity — /functions/v1/api-me
| Method | Description |
|---|
GET | Returns current user, workspace, plan, and API version |
{
"id": "<user-uuid>",
"email": "user@example.com",
"name": "Vince",
"workspace_id": "<workspace-uuid>",
"workspace_name": "My Workspace",
"plan": "pro",
"api_version": 2
}
Error Codes (v2)
| Code | HTTP Status | Description |
|---|
bad_request | 400 | Invalid request body or parameters |
unauthorized | 401 | Missing or invalid authentication |
not_found | 404 | Resource not found |
method_not_allowed | 405 | HTTP method not supported |
rate_limit_exceeded | 429 | Too many requests |
internal_error | 500 | Server error |
Example: cURL
# List agents (v2 with envelope)
curl -s \
-H "X-API-Key: cf_abc123..." \
-H "X-API-Version: 2" \
"https://your-project.supabase.co/functions/v1/api-agents"
# Create a task and auto-dispatch to an agent
curl -s -X POST \
-H "X-API-Key: cf_abc123..." \
-H "Content-Type: application/json" \
-d '{"title":"Review PR","description":"...","assigned_agent_id":"<uuid>"}' \
"https://your-project.supabase.co/functions/v1/api-tasks"
# Start a team run
curl -s -X POST \
-H "X-API-Key: cf_abc123..." \
-H "Content-Type: application/json" \
-d '{"team_id":"<uuid>","input_task":"Research AI trends"}' \
"https://your-project.supabase.co/functions/v1/api-runs"
AG-UI Protocol — Task Runner Endpoints
Base URL: https://<your-task-runner>/ag-ui
These endpoints are served by the task runner (not Edge Functions). They handle real-time agent streaming and user interactions.
SSE Stream — POST /ag-ui/:agentId/sse
Open an SSE connection to stream AG-UI events for a task execution.
Headers:
Authorization: Bearer <ag-ui or a2a API key>
Content-Type: application/json
{
"threadId": "<task-uuid>",
"runId": "optional-run-id"
}
data: {"type":"RUN_STARTED","timestamp":1711000000,"threadId":"..."}
data: {"type":"TEXT_MESSAGE_CONTENT","timestamp":1711000001,"content":"Hello..."}
data: {"type":"INTERACTION_REQUEST","interactionId":"uuid","interactionType":"approval",...}
data: {"type":"RUN_FINISHED","timestamp":1711000010}
Submit Interaction Response — POST /ag-ui/:agentId/respond
Submit a user response to a pending interaction request. The task must be in waiting_for_input status.
Headers:
Authorization: Bearer <ag-ui or a2a API key>
Content-Type: application/json
{
"threadId": "<task-uuid>",
"interactionId": "<interaction-uuid>",
"approved": true
}
{
"threadId": "<task-uuid>",
"interactionId": "<interaction-uuid>",
"approved": true,
"data": { "name": "Corrected Name", "email": "updated@example.com" }
}
{
"threadId": "<task-uuid>",
"interactionId": "<interaction-uuid>",
"selectedOptionId": "option-2"
}
{ "ok": true, "interactionId": "<interaction-uuid>" }
| Status | Error |
|---|
| 400 | threadId and interactionId are required |
| 401 | Unauthorized — provide Bearer token |
| 404 | Task not found |
| 409 | Task is not waiting for input (status: ...) |
Health Check — GET /ag-ui/health
{ "status": "ok", "protocol": "ag-ui", "version": "1.1" }
API v1 (Legacy)
Base URL: https://<your-project>.supabase.co/rest/v1
The v1 API provides direct Supabase PostgREST access. It is still supported but we recommend migrating to API v2 for rate limiting, structured responses, and pagination.
Authentication
All API requests require a REST API key in the Authorization header:
curl -H "Authorization: Bearer crfm_your_api_key" \
-H "Content-Type: application/json" \
https://your-project.supabase.co/rest/v1/agents
Creating API Keys
- Go to Settings → API Keys
- Click Generate Key
- Copy the key — it’s only shown once
- The key is hashed (SHA-256) before storage for security
Endpoints
All endpoints are accessed via the Supabase REST API at:
https://<your-project>.supabase.co/rest/v1/<table>
apikey header with your Supabase anon key:
curl -H "Authorization: Bearer crfm_your_api_key" \
-H "apikey: your-supabase-anon-key" \
https://your-project.supabase.co/rest/v1/agents
Agents
List Agents
GET /rest/v1/agents?select=*
[
{
"id": "uuid",
"name": "Code Reviewer",
"description": "Reviews code for bugs and best practices",
"model": "claude-sonnet-4-20250514",
"provider": "anthropic",
"system_prompt": "You are a senior code reviewer...",
"temperature": 0.3,
"max_tokens": 4096,
"tags": ["code", "review"],
"workspace_id": "uuid",
"created_at": "2026-01-15T10:00:00Z",
"updated_at": "2026-01-15T10:00:00Z"
}
]
Create Agent
POST /rest/v1/agents
Content-Type: application/json
{
"name": "Code Reviewer",
"model": "claude-sonnet-4-20250514",
"provider": "anthropic",
"system_prompt": "You are a senior code reviewer...",
"workspace_id": "your-workspace-id"
}
Update Agent
PATCH /rest/v1/agents?id=eq.{agent_id}
Content-Type: application/json
{
"name": "Updated Name",
"temperature": 0.5
}
Delete Agent
DELETE /rest/v1/agents?id=eq.{agent_id}
Tasks
List Tasks
GET /rest/v1/tasks?select=*&order=created_at.desc
| Parameter | Example | Description |
|---|
status | eq.running | Filter by status |
priority | eq.high | Filter by priority |
agent_id | eq.{uuid} | Filter by assigned agent |
Create Task
POST /rest/v1/tasks
Content-Type: application/json
{
"title": "Review PR #42",
"description": "Review the authentication changes",
"agent_id": "uuid",
"priority": "high",
"workspace_id": "your-workspace-id"
}
pending, dispatched, running, waiting_for_input, completed, failed, cancelled
Task priorities: low, medium, high, urgent
Get Task Detail
GET /rest/v1/tasks?id=eq.{task_id}&select=*
Teams
List Teams
GET /rest/v1/teams?select=*
Create Team
POST /rest/v1/teams
Content-Type: application/json
{
"name": "Content Pipeline",
"description": "Research → Write → Edit",
"mode": "pipeline",
"workspace_id": "your-workspace-id"
}
Team Runs
GET /rest/v1/team_runs?team_id=eq.{team_id}&select=*&order=created_at.desc
Usage Records
Query Usage
GET /rest/v1/usage_records?select=*&created_at=gte.2026-01-01&order=created_at.desc
| Field | Type | Description |
|---|
task_id | uuid | Associated task |
agent_id | uuid | Agent that ran |
provider | string | LLM provider |
model | string | Model used |
prompt_tokens | integer | Input tokens |
completion_tokens | integer | Output tokens |
estimated_cost_usd | decimal | Estimated cost |
billing_model | string | per-token or subscription-quota |
Marketplace
Browse Agents
GET /rest/v1/agents?is_marketplace=eq.true&select=*
Install Agent (RPC)
POST /rest/v1/rpc/increment_install_count
Content-Type: application/json
{
"agent_row_id": "uuid"
}
Rate Limits (v1)
The Supabase free tier includes:
- 500 requests/minute per API key
- 50,000 requests/month total
For higher limits, upgrade your Supabase plan.
Error Handling (v1)
All errors follow the standard Supabase/PostgREST format:
{
"code": "PGRST301",
"message": "Row not found",
"details": null,
"hint": null
}
| HTTP Status | Meaning |
|---|
401 | Missing or invalid API key |
403 | Row-Level Security denied access |
404 | Resource not found |
409 | Conflict (duplicate key) |
422 | Validation error |
