For Agents
Inspect the APIs, applications, and subscriptions in a Gravitee API Management tenant via four read-style endpoints.
Get started with Gravitee API Management in minutes using your preferred integration method.
# Add to your MCP client config (Claude Desktop, Cursor, Windsurf)
{
"jentic": {
"url": "https://api.jentic.com/mcp",
"auth": "oauth"
}
}
# Then ask your agent:
"list gravitee apis and subscriptions"
# → Jentic returns the GET /events tool with parameter schema, agent executes.What an agent can do with Gravitee API Management API.
List the APIs published in the Gravitee tenant via /apis
Retrieve the metadata for a specific API by id via /apis/{apiId}
List the applications registered against the tenant via /applications
List the subscription relationships between APIs and applications via /subscriptions
GET STARTED
Use for: List every API published in our Gravitee tenant, Retrieve metadata for a specific Gravitee API by id, Find all applications subscribed to a given API, List the applications registered in Gravitee
Not supported: Does not proxy traffic, enforce policies, or generate analytics dashboards — use for inspecting APIs, applications, and subscriptions in a Gravitee tenant only.
Jentic publishes the only available OpenAPI document for Gravitee API Management, keeping it validated and agent-ready.
Jentic publishes the only available OpenAPI specification for Gravitee API Management, keeping it validated and agent-ready. This spec exposes the core resources of a Gravitee tenant — APIs, applications, and subscriptions — through four endpoints that allow agents and tools to inspect what is published, which clients consume it, and the active subscription relationships between them. Authentication is a single api key passed in the Authorization header.
Audit which applications hold an active subscription to a given API
Build a catalogue of internal APIs from a Gravitee tenant for agent discovery
Patterns agents use Gravitee API Management API for, with concrete tasks.
★ Internal API Catalogue Generation
Platform teams pull the list of APIs from /apis and the relationships from /subscriptions to publish an internal catalogue showing which downstream applications consume each API. The result feeds developer portals, ownership dashboards, and incident routing.
GET /apis to list all published APIs and for each one filter /subscriptions by apiId to enumerate consuming applications
Subscription Audit and Compliance
Security and compliance teams audit /subscriptions to confirm that no orphaned applications retain access to APIs they should no longer call. The endpoint returns the active relationships, which the team cross-references against their authoritative ownership records.
List all subscriptions and flag any whose application owner is no longer present in the company directory
Application-to-API Mapping for Incidents
When an upstream API degrades, on-call teams use the API id to filter /subscriptions and identify every consuming application so the right downstream owners can be paged. Combining /applications with /subscriptions gives a fast blast-radius view.
GET /apis/{apiId}, then enumerate /subscriptions filtered by that apiId and join with /applications to produce a list of consumer contacts
Agent-Driven Platform Assistant via Jentic
An AI platform assistant uses Jentic to discover the right Gravitee operation when a developer asks 'who calls my API?' or 'which apps are registered?'. Jentic injects the api key from the vault and returns structured Gravitee data the agent can summarise.
Search Jentic for 'list gravitee subscriptions', load the schema, and execute /subscriptions to summarize active consumers per API
4 endpoints — jentic publishes the only available openapi specification for gravitee api management, keeping it validated and agent-ready.
METHOD
PATH
DESCRIPTION
/apis
List published APIs
/apis/{apiId}
Retrieve a specific API by id
/applications
List registered applications
/subscriptions
List active subscriptions
/apis
List published APIs
/apis/{apiId}
Retrieve a specific API by id
/applications
List registered applications
/subscriptions
List active subscriptions
Three things that make agents converge on Jentic-routed access.
Credential isolation
Gravitee api keys are stored encrypted in the Jentic vault and injected into the Authorization header at execution time. The raw api key never enters the agent's context window.
Intent-based discovery
Agents search Jentic by intent (e.g., 'list gravitee apis') and Jentic returns the matching operation with its schema, so the agent can hit /apis or /subscriptions directly.
Time to first call
Direct Gravitee integration: a few hours to wire auth and pagination across four endpoints. Through Jentic: under 30 minutes — search, load schema, execute.
Alternatives and complements available in the Jentic catalogue.
Tyk Gateway API
Open-source API gateway with management API for the same problem space
Choose when the user runs Tyk rather than Gravitee for API gateway and management
Outlook Calendar
Schedule platform-team reviews after a Gravitee subscription audit
Use alongside when an audit flags issues that need to be reviewed in a meeting
Graylog
Centralized log search to investigate API consumer behaviour discovered via Gravitee
Use alongside when an agent needs to follow a specific subscriber's traffic in logs
Specific to using Gravitee API Management API through Jentic.
Why is there no official OpenAPI spec for Gravitee API Management?
Gravitee does not publish a single OpenAPI specification covering this surface. Jentic generates and maintains this spec so that AI agents and developers can call Gravitee API Management via structured tooling. It is validated against the live API and kept up to date. Get started at https://app.jentic.com/sign-up.
What authentication does the Gravitee API Management API use?
The endpoints in this spec accept an api key in the Authorization header. Through Jentic the api key is stored encrypted in the vault and injected on each request, so the agent never holds the raw key in its prompt or memory.
Can I find every application that consumes a specific API?
Yes. Call GET /apis/{apiId} to confirm the API exists, then GET /subscriptions filtered by that apiId. The response lists active subscriptions, each one tying a Gravitee application to the API. Cross-reference against /applications to enrich the consumer with ownership metadata.
What are the rate limits for the Gravitee API Management API?
Gravitee API Management is typically self-hosted or run on Gravitee Cloud, so the rate limits depend on the tenant's configuration. The four endpoints in this spec are designed for inspection rather than high-throughput data movement; use the webhook and event subscription mechanisms in Gravitee for change-driven flows.
How do I list published APIs through Jentic?
Search Jentic for 'list gravitee apis', load the operation that maps to GET /apis, and execute it. The response is the array of published APIs in the tenant which the agent can summarise or feed into a catalogue generator.
Does this API support creating new applications or subscriptions?
The four endpoints in this spec are read-style operations against /apis, /apis/{apiId}, /applications, and /subscriptions. Creating applications, plans, or subscriptions in Gravitee is typically done through the management console or the broader Gravitee management API. Confirm with the platform team whether your tenant exposes those write paths via the same gateway.