docs(api): adds swagger (#183)

Author: jmgilman

foundry/api/.env.example

@@ -1,5 +1,5 @@
 # Server configuration
-export HTTP_PORT=8080
+export HTTP_PORT=5050
 export SERVER_TIMEOUT=30s
 
 # Database configuration

foundry/api/.justfile

@@ -0,0 +1,14 @@
+up:
+    docker compose up -d auth auth-jwt api postgres
+
+down:
+    rm -rf .secret && docker compose down
+
+docker:
+    earthly --config "" +docker
+
+login:
+    (cd ../../cli && go run cmd/main.go -vvv --api-url "http://localhost:5050" api login "$(cat ../foundry/api/.secret/jwt.txt)")
+
+swagger:
+    earthly --config "" +swagger

foundry/api/Earthfile

@@ -23,7 +23,7 @@ src:
 
     CACHE --persist --sharing shared /go
 
-    COPY --dir client cmd internal pkg .
+    COPY --dir client cmd docs internal pkg .
     RUN go generate ./...
 
     SAVE ARTIFACT . src
@@ -112,4 +112,18 @@ jwt:
     RUN mkdir -p /jwt
     RUN ./bin/foundry-api auth generate -a -k ./certs/private.pem > /jwt/token.txt
 
-    SAVE ARTIFACT /jwt jwt
+    SAVE ARTIFACT /jwt jwt
+
+swagger:
+    FROM +src
+
+    RUN go install github.com/swaggo/swag/cmd/swag@latest
+    RUN swag init -g cmd/api/main.go -o docs
+
+    SAVE ARTIFACT docs docs AS LOCAL docs
+
+check-swagger:
+    FROM +swagger
+
+    COPY --dir docs /docs
+    RUN diff -r docs ../docs

foundry/api/README.md

@@ -1,5 +1,130 @@
-# Foundry
+# Catalyst Foundry API
 
-Foundry provides the middleware for routing deployments from forge to a GitOps repository.
+This is the API server for the Catalyst Foundry system, providing endpoints for managing releases and deployments.
 
-Note that this service is currently incomplete and is a work in progress.
+## API Documentation
+
+The API documentation is generated using Swagger/OpenAPI and is available in two formats:
+
+1. **Interactive Swagger UI**: Available at `/swagger/index.html` when the server is running
+2. **OpenAPI JSON**: Available at `/swagger/doc.json` when the server is running
+
+## Getting Started
+
+### Prerequisites
+
+- Go 1.24.2 or later
+- PostgreSQL database
+- Kubernetes cluster (optional, for deployment features)
+
+### Installation
+
+1. Install dependencies:
+   ```bash
+   make deps
+   ```
+
+2. Install Swagger tools (one-time setup):
+   ```bash
+   make swagger-init
+   ```
+
+3. Generate API documentation:
+   ```bash
+   make swagger-gen
+   ```
+
+4. Build and run the API:
+   ```bash
+   make run
+   ```
+
+### Development
+
+For development with auto-generated documentation:
+
+```bash
+make dev
+```
+
+This will generate the documentation and start the server.
+
+## API Endpoints
+
+### Health Check
+- `GET /healthz` - Check API health status
+
+### GitHub Actions Authentication
+- `POST /gha/validate` - Validate GitHub Actions OIDC token
+- `POST /gha/auth` - Create GHA authentication configuration
+- `GET /gha/auth` - List GHA authentication configurations
+- `GET /gha/auth/:id` - Get specific GHA authentication configuration
+- `GET /gha/auth/repository/:repository` - Get GHA auth by repository
+- `PUT /gha/auth/:id` - Update GHA authentication configuration
+- `DELETE /gha/auth/:id` - Delete GHA authentication configuration
+
+### Releases
+- `POST /release` - Create a new release
+- `GET /release/:id` - Get a specific release
+- `PUT /release/:id` - Update a release
+- `GET /releases` - List all releases
+
+### Release Aliases
+- `GET /release/alias/:name` - Get release by alias
+- `POST /release/alias/:name` - Create an alias for a release
+- `DELETE /release/alias/:name` - Delete an alias
+- `GET /release/:id/aliases` - List aliases for a release
+
+### Deployments
+- `POST /release/:id/deploy` - Create a deployment for a release
+- `GET /release/:id/deploy/:deployId` - Get a specific deployment
+- `PUT /release/:id/deploy/:deployId` - Update a deployment
+- `GET /release/:id/deployments` - List deployments for a release
+- `GET /release/:id/deploy/latest` - Get the latest deployment
+
+### Deployment Events
+- `POST /release/:id/deploy/:deployId/events` - Add an event to a deployment
+- `GET /release/:id/deploy/:deployId/events` - Get events for a deployment
+
+## Authentication
+
+The API uses JWT tokens for authentication. Most endpoints require authentication with the following permissions:
+
+- `PermReleaseRead` - Read access to releases
+- `PermReleaseWrite` - Write access to releases
+- `PermDeploymentRead` - Read access to deployments
+- `PermDeploymentWrite` - Write access to deployments
+- `PermDeploymentEventRead` - Read access to deployment events
+- `PermDeploymentEventWrite` - Write access to deployment events
+- `PermGHAAuthRead` - Read access to GHA authentication
+- `PermGHAAuthWrite` - Write access to GHA authentication
+
+## Configuration
+
+The API can be configured using environment variables or command-line flags. See the main application help for details:
+
+```bash
+./bin/foundry-api --help
+```
+
+## Documentation Generation
+
+To regenerate the API documentation after making changes:
+
+```bash
+make swagger-gen
+```
+
+This will update the `docs/` directory with the latest API documentation.
+
+## Testing
+
+Run the tests:
+
+```bash
+go test ./...
+```
+
+## License
+
+This project is licensed under the Apache License 2.0.

foundry/api/cmd/api/main.go

@@ -25,10 +25,32 @@ import (
 	"github.com/input-output-hk/catalyst-forge/foundry/api/pkg/k8s/mocks"
 	"gorm.io/driver/postgres"
 	"gorm.io/gorm"
+
+	_ "github.com/input-output-hk/catalyst-forge/foundry/api/docs"
 )
 
 var version = "dev"
 
+// @title           Catalyst Foundry API
+// @version         1.0
+// @description     API for managing releases and deployments in the Catalyst Foundry system.
+// @termsOfService  http://swagger.io/terms/
+
+// @contact.name   API Support
+// @contact.url    http://www.swagger.io/support
+// @contact.email  [email protected]
+
+// @license.name  Apache 2.0
+// @license.url   http://www.apache.org/licenses/LICENSE-2.0.html
+
+// @host      localhost:5050
+// @BasePath  /
+
+// @securityDefinitions.apikey BearerAuth
+// @in header
+// @name Authorization
+// @description Type "Bearer" followed by a space and JWT token.
+
 var mockK8sClient = mocks.ClientMock{
 	CreateDeploymentFunc: func(ctx context.Context, deployment *models.ReleaseDeployment) error {
 		return nil

foundry/api/docker-compose.yml

@@ -40,6 +40,7 @@ services:
       LOG_FORMAT: text
     ports:
       - "5050:5050"
+      - "8080:8080"
     volumes:
       - ./.secret:/data
     healthcheck: