| Auth | /v1/auth | Public mount with auth rate limit | 23 | Custom session, signup/signin, OTP, password, trusted device, and token helpers. | services/api-gateway/src/index.ts:178 + routes/auth.ts |
| Contacts | /v1/contacts | Public | 2 | Public contact submission and retrieval helpers. | services/api-gateway/src/index.ts:179 + routes/contacts.ts |
| Storefront | /v1/storefront | Public | 57 | Tenant lookup, public catalog, checkout payment starts/verifications, customer account, reviews, pages, policies, blog, and contact flows. | services/api-gateway/src/index.ts:180 + routes/storefront.ts |
| Themes | /v1/themes | Public mount with merchant flows | 18 | Catalog, theme schema, editor draft/publish, preview sessions, package upload, and install flows. | services/api-gateway/src/index.ts:181 + routes/themes.ts |
| App marketplace | /v1/app-store | Public mount with merchant/app token flows | 22 | Marketplace listing, OAuth, installs, bridge fetch, developer registration, submissions, charges, and partner dashboard surfaces. | services/api-gateway/src/index.ts:182 + routes/app-store.ts |
| Internal console | /v1/internal/console | Internal token | 9 | Internal console bootstrap and platform-console helper endpoints. | services/api-gateway/src/index.ts:183 + routes/internal-console.ts |
| Stores | /v1/stores | Protected merchant session + CSRF | 10 | Store listing, handle lookup, create/update/publish/delete, and payment config. | services/api-gateway/src/index.ts:191 + routes/stores.ts |
| Products | /v1/products | Protected merchant session + CSRF | 10 | Products, collections, gift cards, create/update/delete, and bulk product actions. | services/api-gateway/src/index.ts:192 + routes/products.ts |
| Orders | /v1/orders | Protected merchant session + CSRF | 7 | Order list/detail, status updates, creation, fulfillment, refund request, and refund completion. | services/api-gateway/src/index.ts:193 + routes/orders.ts |
| Payments | /v1/payments | Protected merchant session + CSRF | 9 | Plans, subscription state/history, subscription order/verify/cancel, Razorpay, and Stripe checkout. | services/api-gateway/src/index.ts:194 + routes/payments.ts |
| Uploads | /v1/upload | Protected merchant session + CSRF | 2 | Upload helpers for merchant runtime assets. | services/api-gateway/src/index.ts:195 + routes/upload.ts |
| Portfolio | /v1/portfolio | Protected merchant session + CSRF; legacy site types only | 4 | Legacy portfolio content for existing sites. New portfolio acquisition is gated by LETBUYY_ENABLE_LEGACY_SITE_TYPES. | services/api-gateway/src/index.ts:196 + routes/portfolio.ts |
| Resume | /v1/resume | Protected merchant session + CSRF; legacy site types only | 10 | Legacy resume profile, experience, education, skills, projects, and related page data for existing sites. New resume acquisition is gated by LETBUYY_ENABLE_LEGACY_SITE_TYPES. | services/api-gateway/src/index.ts:197 + routes/resume.ts |
| Employees | /v1/employees | Protected merchant session + CSRF | 10 | Employee records, invitations, permissions, and team management. | services/api-gateway/src/index.ts:198 + routes/employee.ts |
| Admin | /v1/admin | Protected merchant session + CSRF | 12 | Admin dashboard, metrics, and operational merchant helper endpoints. | services/api-gateway/src/index.ts:199 + routes/admin.ts |
| Blog | /v1/blog | Protected merchant session + CSRF | 13 | Blog posts, categories, tags, publishing, and content management. | services/api-gateway/src/index.ts:200 + routes/blog.ts |
| Customers | /v1/customers | Protected merchant session + CSRF | 6 | Customer list/detail and customer address CRUD by email. | services/api-gateway/src/index.ts:201 + routes/customers.ts |
| Notifications | /v1/notifications | Protected merchant session + CSRF | 9 | Notification preferences, templates, sending, and inbox-style state. | services/api-gateway/src/index.ts:202 + routes/notifications.ts |
| Media | /v1/media | Protected merchant session + CSRF | 4 | Media list, create, update, and delete operations. | services/api-gateway/src/index.ts:203 + routes/media.ts |
| AI | /v1/ai | Protected merchant session + CSRF | 5 | Merchant AI helper endpoints. | services/api-gateway/src/index.ts:204 + routes/ai.ts |
| Export | /v1/export | Protected merchant session + CSRF | 3 | Export job helpers. | services/api-gateway/src/index.ts:205 + routes/export.ts |
| Shipping and tax | /v1/shipping-tax | Protected merchant session + CSRF | 12 | Shipping zones, shipping rates, and tax rates. | services/api-gateway/src/index.ts:206 + routes/shipping-tax.ts |
| Onboarding | /v1/onboarding | Protected merchant session + CSRF | 6 | Merchant onboarding progress and setup steps. | services/api-gateway/src/index.ts:207 + routes/onboarding.ts |
| Inventory | /v1/inventory | Protected merchant session + CSRF | 15 | Locations, suppliers, purchase orders, transfers, levels, adjustments, bulk adjustments, and history. | services/api-gateway/src/index.ts:208 + routes/inventory.ts |
| Coupons | /v1/coupons | Protected merchant session + CSRF | 6 | Coupon list/create/detail/update/delete and validation. | services/api-gateway/src/index.ts:209 + routes/coupons.ts |
| Categories | /v1/categories | Protected merchant session + CSRF | 5 | Category list/create/detail/update/delete. | services/api-gateway/src/index.ts:210 + routes/categories.ts |
| Analytics | /v1/analytics | Protected merchant session + CSRF | 4 | Dashboard, revenue, top products, and order analytics. | services/api-gateway/src/index.ts:211 + routes/analytics.ts |
| Reviews | /v1/reviews | Protected merchant session + CSRF | 3 | Product review list, moderation update, and delete operations. | services/api-gateway/src/index.ts:212 + routes/reviews.ts |
| Form submissions | /v1/form-submissions | Protected merchant session + CSRF | 3 | Form submission list, status update, and delete operations. | services/api-gateway/src/index.ts:213 + routes/form-submissions.ts |
| Pages | /v1/pages | Protected merchant session + CSRF | 10 | Pages, policies, navigation replacement, page updates, and deletes. | services/api-gateway/src/index.ts:214 + routes/pages.ts |
| Operations | /v1/operations | Protected merchant session + CSRF | 44 | Platform operations workflows and support tooling. | services/api-gateway/src/index.ts:215 + routes/operations.ts |