Tools API Documentation

Welcome to the Tools API documentation.

This documentation is written as a user guide for developers integrating with our public APIs and web interface. It covers authentication, request formats, response schemas, code examples, and token usage.

API Reference

IRC Memory Lane - Log Search API

Search and retrieve IRC channel logs with advanced filtering. Perfect for integrating log data into other applications.

Authentication: API Key Bearer token
Rate Limiting: 60 requests/minute
Features: Full-text search, channel filtering, date ranges, user nicks

View IRC Log API Documentation →

Quick Start Guide (includes setup, basic + advanced examples): IRC Memory Lane API Guide →

RSS Feed Analytics - Category Analysis API

Generate AI-powered analyses of RSS feeds by category. ChatGPT identifies themes, narrative patterns, and behavioral trends in aggregated news content.

Authentication: Web session + permission:rss
Rate Limiting: 20 requests/minute (generation)
Caching: Automatic deduplication by content signature

View RSS Analytics API Documentation →

SMS Delivery API

Send SMS messages with callback tracking and delivery status updates.

Authentication: API Key or Bearer token
Rate Limiting: 300 requests/minute
Features: Template messages, delivery tracking, error handling

View SMS API Reference →

SMS Callback Responses (webhook responses): SMS Prefix Callback Guide →

Marvel MCU Timeline API

Search and retrieve Marvel Cinematic Universe data with chronological ordering and IMDB integration.

Authentication: Public (no auth required)
Rate Limiting: 300 requests/minute
Features: Timeline search, phase lookup, related content

View MCU API Documentation →

DNS Zone List API

Discover and query BIND DNS zones, retrieve zone metadata, and access DNS records.

Authentication: API Key Bearer token
Rate Limiting: 60 requests/minute
Features: Zone discovery, file paths, TSIG keys, record parsing

View DNS API Documentation →

DNSBL / FraudBL API

Real-time blocklist queries with bitmask support, DNS-first publication, and commerce data mirroring.

Authentication: API Key or Bearer token
Rate Limiting: 9000 requests/minute
Features: Bitmask lookups, whitelist queries, data submission

View DNSBL/FraudBL API Documentation →

Web UI Documentation

OpenAI / AI Engine

Internal AI engine dashboard for managing prompt profiles, testing prompts, and monitoring API usage.

Access: /admin/openai (requires permission:openai.manage)
Features: Profile management, model selection, token budgets, rate limiting, test interface

View OpenAI Engine Documentation →

RSS Watch - Feed Viewer

Web-based RSS aggregator with categorization, feed source management, and inline editing.

Access: /rss (requires permission:rss)
Features: Feed management, category views, AI analytics, search

View RSS Watch Documentation →

Microsoft To Do

Personal Microsoft To Do integration for authenticated users, with bidirectional sync and authenticated API access.

Access: /settings/integrations/microsoft-todo (requires login)
Features: OAuth connect, list/task management, immediate sync, authenticated /api/microsoft-todo/* endpoints

View Microsoft To Do Documentation →

Whisper Transcriptions

Queued media transcription service with owner/admin progress visibility in both web UI and API.

Access: /whisper (requires permission:whisper.use)
Features: URL queueing, stage progress, retries/failures, owner/admin visibility, authenticated /api/whisper/*

View Whisper Documentation →

Menstrual Tracking

Simple personal cycle tracking UI for authenticated users.

Access: /menstrual-tracking (requires login)
Features: Birth date and first-start profile, monthly cycle registration, and estimated next cycle date

View Menstrual Tracking Documentation →

My Profile

Personal account settings page for authenticated users.

Access: /users/profile (requires login)
Features: Update name/email, set/change password, manage Google account linking for sign-in

View My Profile Documentation →

OAuth Endpoints (Slack + SoundCloud)

Reference for OAuth start/callback endpoints, plus Slack redirect URL guidance.

Access: Web routes under /oauth/*
Includes: Slack start/callback/callback-url, SoundCloud start/callback

View OAuth Endpoints Documentation →

Authentication & Tokens

API Key Authentication

Used for server-to-server requests to public APIs:

Authorization: Bearer sk-YOUR_API_KEY_HERE

Where to find your key:

Log in to Tools
Navigate to My API Keys (/keys/mine)
Create or copy an existing key

Web Session Authentication

Used for browser-based requests to protected endpoints:

Automatic via browser cookies
Requires permission:rss, permission:openai.manage, etc.

Tools AI Bearer Tokens

Special tokens for AI-specific operations:

Authorization: Bearer YOUR_TOOLS_AI_TOKEN

Usage: /api/ai/url/analyze and similar AI endpoints

Quick Reference

Feature	Endpoint	Auth	Rate Limit
IRC Search	`POST /api/irclog/search`	API Key	60/min
RSS Analytics	`POST /feed-admin/analytics/generate`	Web Session	20/min
SMS Send	`POST /api/sms/send`	API Key	300/min
MCU Search	`GET /api/mcu/timeline`	Public	300/min
DNS Query	`GET /api/dns/zones`	API Key	60/min
DNSBL Query	`POST /api/dnsbl/query`	API Key	9000/min

Error Handling

All APIs follow standard HTTP status codes:

200 OK - Request successful
400 Bad Request - Invalid parameters or validation error
401 Unauthorized - Missing or invalid authentication
403 Forbidden - Authenticated but missing required permissions
429 Too Many Requests - Rate limit exceeded
500 Internal Server Error - Server-side error

Error Response Format

{
  "ok": false,
  "error": "Human-readable error message",
  "error_code": "VALIDATION_ERROR"
}

Tools Environment

Tools supports multiple domains using a single .env configuration by detecting the current request host.

Production: https://tools.tornevall.net
Development: https://tools.tornevall.com
Local: http://localhost:8000

Changelog

For recent changes and new features: View Changelog →

Last Updated: 2026-03-27 API Version: v1

Tornevall Networks