List readable configuration fields

const options = {method: 'GET', headers: {Authorization: 'Bearer <token>'}}; fetch('{protocol}://{host}/api/v2/config', options) .then(res => res.json()) .then(res => console.log(res)) .catch(err => console.error(err));

{ "fields": [ { "path": "general/identity/site_name", "kind": "string", "label": "config.field.general.identity.site_name.label", "allowed_scopes": [ "global", "organization", "tenant" ] }, { "path": "general/locale/default_timezone", "kind": "enum", "label": "config.field.general.locale.default_timezone.label", "allowed_scopes": [ "global", "organization", "tenant" ] } ] }

Authorizations

Authorization

string

header

required

Scoped personal access token (cfp_…), validated by the stateless mcp and api_v2 firewalls. The effective permission is the intersection of the user's ACL, the token's scopes, and tenant isolation. The MCP gateway requires the matching mcp:* tool scope; the /api/v2/* surface (including the Config read API) additionally requires the api:full scope and an admin owner.

Response

The fields the caller may read. Cache-Control: no-store.

fields

object[]

required

Show child attributes