IronWiFi
Home / Developers

Build on IronWiFi

89+ REST API endpoints, OAuth2, webhooks, SCIM 2.0 provisioning, and a Terraform provider. Everything you need to automate WiFi authentication at scale.

The IronWiFi platform exposes 89+ REST API endpoints in HAL+JSON format with OAuth2 authentication. Automate user provisioning with SCIM 2.0, manage infrastructure with Terraform, and receive real-time events via webhooks. Full API documentation is available at api.ironwifi.com.

REST API

89+ endpoints covering users, organizations, RADIUS servers, networks, policies, certificates, and ITDR incidents. HAL+JSON format with HATEOAS links.

API Reference →

OAuth2 Authentication

Secure API access with OAuth2 client credentials flow. Generate API keys in the console and authenticate with Bearer tokens.

Auth Guide →

Webhook Events

Real-time notifications for authentication events, ITDR alerts, user changes, and policy updates. Configurable filters and retry logic.

Webhooks Docs →

SCIM 2.0 Provisioning

Automated user and group sync with Okta, Microsoft Entra ID (Azure AD), Google Workspace, and any SCIM 2.0-compliant identity provider.

SCIM Guide →

Terraform Provider

Manage RADIUS servers, networks, policies, users, and certificates as infrastructure as code. Available in the Terraform Registry.

Terraform Docs →

SIEM Integration

Stream events to Splunk, Microsoft Sentinel, Elastic, QRadar, or Datadog via webhook or syslog in CEF format.

SIEM Guide →

Quick Start: List Users via API

Authenticate with your API key and make your first request in seconds:

# Get an OAuth2 access token curl -X POST https://console.ironwifi.io/api/oauth/token \ -H "Content-Type: application/x-www-form-urlencoded" \ -d "grant_type=client_credentials&client_id=YOUR_CLIENT_ID&client_secret=YOUR_CLIENT_SECRET" # List users (HAL+JSON response) curl https://console.ironwifi.io/api/users \ -H "Authorization: Bearer YOUR_ACCESS_TOKEN" \ -H "Accept: application/hal+json"
// Example response (HAL+JSON) { "_embedded": { "users": [ { "id": "usr_abc123", "username": "[email protected]", "status": "active", "created_at": "2026-01-15T10:30:00Z", "_links": { "self": { "href": "/api/users/usr_abc123" } } } ] }, "_links": { "self": { "href": "/api/users?page=1" }, "next": { "href": "/api/users?page=2" } }, "page": { "size": 20, "totalElements": 1247, "totalPages": 63 } }

API Rate Limits

Rate limits are applied per API key and vary by plan tier:

PlanRequests / MinuteRequests / DayBurst
Starter6010,00010 req/sec
Professional30050,00030 req/sec
Enterprise1,000Unlimited100 req/sec

Rate limit headers (X-RateLimit-Remaining, X-RateLimit-Reset) are included in every response. Exceeding limits returns HTTP 429 with a Retry-After header.

Key API Resources

  • Users — CRUD operations, bulk import/export, attribute management, group membership
  • Organizations — multi-tenant management, settings, branding
  • RADIUS Servers — server configuration, shared secrets, proxy settings
  • Networks — SSID configuration, VLAN assignment, authentication policies
  • Policies — conditional access rules, time-based restrictions, device filters
  • Certificates — CA management, certificate issuance, revocation, SCEP configuration
  • ITDR Incidents — threat detections, risk scores, response actions, timeline events
  • Audit Logs — administrative actions, authentication events, policy changes

Start Building Today

Get your API key in minutes. Full documentation, code examples, and sandbox environment included with every account.

Start Free Trial API Documentation