RBI FREE-AI API Reference
This reference documents the RBI routes that are actually registered and used in the current enterprise build.
Authentication
All RBI module routes require:
X-Org-ID
Route Families
| Family | Routes |
|---|---|
| Registry | GET/POST /api/v1/rbi/ai-systems, GET /summary, GET/PUT/DELETE /{id} |
| Validations | GET/POST /api/v1/rbi/validations, GET/PUT /{id} |
| Incidents | GET/POST /api/v1/rbi/incidents, GET/PUT /{id}, POST /{id}/resolve |
| Kill switches | GET/POST /api/v1/rbi/killswitches, GET /{id}, POST /{id}/deactivate |
| Reports | GET/POST /api/v1/rbi/reports, GET/PUT /{id}, POST /{id}/submit |
| Audit exports | GET/POST /api/v1/rbi/audit-exports, GET/DELETE /{id}, POST /{id}/process, GET /{id}/download |
| Templates | GET /api/v1/rbi/policies/templates, GET /api/v1/rbi/policies/templates/{id}, GET /api/v1/rbi/policies/categories |
| Dashboard | GET /api/v1/rbi/dashboard |
Registry API
Create system
POST /api/v1/rbi/ai-systems
Verified request fields include:
system_idsystem_namesystem_versiondescriptionrisk_categorymodel_typemodel_provideruse_caseuse_case_descriptiondata_sourcessensitive_data_categoriesdata_residencyowner_idowner_nameowner_departmentowner_emailvalidation_frequency_daystagsmetadata
Example:
{
"system_id": "credit-scoring-v2",
"system_name": "Credit Scoring Model v2",
"risk_category": "high",
"owner_department": "Risk",
"owner_email": "[email protected]",
"validation_frequency_days": 90
}
List systems
GET /api/v1/rbi/ai-systems?risk_category=high&limit=20&offset=0
Supported filters:
risk_categorydeployment_statusboard_approval_statusowner_departmentvalidation_overduelimitoffset
Summary
GET /api/v1/rbi/ai-systems/summary
Get, update, delete
GET /api/v1/rbi/ai-systems/{id}
PUT /api/v1/rbi/ai-systems/{id}
DELETE /api/v1/rbi/ai-systems/{id}
Validation API
Create validation
POST /api/v1/rbi/validations
The create request supports richer fields than earlier docs implied, including:
- validator identity and organization
- validation date and review windows
- dataset description and characteristics
- methodology and test scenarios
- findings
accuracy_metricsbias_assessment- stress-test results
- remediation deadlines
- report file path and checksum
Minimal example:
{
"system_id": "credit-scoring-v2",
"validation_type": "independent",
"validator_type": "third_party",
"validator_name": "External Audit LLP",
"recommendation": "approve_with_conditions",
"remediation_required": true
}
List, get, update
GET /api/v1/rbi/validations
GET /api/v1/rbi/validations/{id}
PUT /api/v1/rbi/validations/{id}
Incident API
Create incident
POST /api/v1/rbi/incidents
Verified incident request fields include:
system_idincident_typeseveritydetected_atdetected_bydetection_detailstitledescriptionroot_cause- affected customer and transaction counts
financial_impact_inrimmediate_action_takenremediation_actions- board and RBI notification booleans
- evidence files, tags, and metadata
Resolve incident
POST /api/v1/rbi/incidents/{id}/resolve
List, get, update
GET /api/v1/rbi/incidents
GET /api/v1/rbi/incidents/{id}
PUT /api/v1/rbi/incidents/{id}
Kill Switch API
Create kill switch
POST /api/v1/rbi/killswitches
Supported request fields:
scopesystem_idtarget_identifierfallback_behaviorfallback_configtrigger_conditiontrigger_threshold
Deactivate
POST /api/v1/rbi/killswitches/{id}/deactivate
Deactivate request fields:
actor_idactor_emailactor_roleactor_ipreason
List and get
GET /api/v1/rbi/killswitches
GET /api/v1/rbi/killswitches/{id}
Board Report API
Generate report
POST /api/v1/rbi/reports
Supported request fields:
report_typereport_period_startreport_period_endreport_quartergenerated_bygenerated_by_email
Submit
POST /api/v1/rbi/reports/{id}/submit
Supported request fields:
submitted_bysubmitted_by_email
List, get, update
GET /api/v1/rbi/reports
GET /api/v1/rbi/reports/{id}
PUT /api/v1/rbi/reports/{id}
Audit Export API
Create export
POST /api/v1/rbi/audit-exports
Supported request fields:
export_typeformatstart_dateend_datesystem_idsrisk_categoriesinclude_archivedrequested_byrequested_by_emailpurpose
Process and download
POST /api/v1/rbi/audit-exports/{id}/process
GET /api/v1/rbi/audit-exports/{id}/download
List, get, delete
GET /api/v1/rbi/audit-exports
GET /api/v1/rbi/audit-exports/{id}
DELETE /api/v1/rbi/audit-exports/{id}
Template And Dashboard Endpoints
GET /api/v1/rbi/policies/templates
GET /api/v1/rbi/policies/templates/{id}
GET /api/v1/rbi/policies/categories
GET /api/v1/rbi/dashboard
The dashboard currently returns module/component health rather than a rich analytics dashboard, so treat it as an operational status surface.
