Health Check API

Shortlinker provides a health check API for monitoring service status and storage health.

Overview

Service health status
Storage backend health checks
Readiness and liveness endpoints
Uptime and response time metrics

Configuration

Route prefix can be configured via environment variables (see Configuration):

HEALTH_ROUTE_PREFIX - route prefix (optional, default: /health)

Note: Health endpoints support two authentication methods:
Bearer Token: Authorization: Bearer <HEALTH_TOKEN> (recommended for monitoring/probes, no cookies)
JWT Cookies: reuse cookies issued by Admin login (recommended for the admin panel/browser)

Authentication (Important)

Health endpoints require authentication and can be accessed via Bearer token (HEALTH_TOKEN) or JWT cookies (issued after Admin login).
Health endpoints are treated as disabled only when both api.admin_token and api.health_token are empty (returns 404 Not Found).

Option A: Bearer token (recommended for monitoring/probes)

If you configure HEALTH_TOKEN (or runtime config api.health_token), you can call health endpoints directly with an Authorization header:

bash

HEALTH_TOKEN="your_health_token"

curl -sS \
  -H "Authorization: Bearer ${HEALTH_TOKEN}" \
  http://localhost:8080/health

Option B: JWT cookies (recommended for admin panel/browser)

Login via POST /admin/v1/auth/login to obtain cookies
Call /health, /health/ready, /health/live with those cookies

Example:

bash

# 1) Login and save cookies
curl -sS -X POST \
  -H "Content-Type: application/json" \
  -c cookies.txt \
  -d '{"password":"your_admin_token"}' \
  http://localhost:8080/admin/v1/auth/login

# 2) Call health check
curl -sS -b cookies.txt \
  http://localhost:8080/health

If you didn't set ADMIN_TOKEN, the server will auto-generate one on first startup and write it to admin_token.txt (save it and delete the file).

Endpoints

Base URL: http://your-domain:port/health

All endpoints support both GET and HEAD.

GET /health - Full health check

bash

curl -sS -b cookies.txt \
  http://localhost:8080/health

Example response:

json

{
  "code": 0,
  "data": {
    "status": "healthy",
    "timestamp": "2025-06-01T12:00:00Z",
    "uptime": 3600,
    "checks": {
      "storage": {
        "status": "healthy",
        "links_count": 42,
        "backend": {
          "storage_type": "sqlite",
          "support_click": true
        }
      }
    },
    "response_time_ms": 15
  }
}

GET /health/ready - Readiness

bash

curl -sS -b cookies.txt \
  http://localhost:8080/health/ready

Returns HTTP 200 when ready (body: OK).

GET /health/live - Liveness

bash

curl -sS -b cookies.txt -I \
  http://localhost:8080/health/live

Returns HTTP 204 when alive.

Status codes

Status	Meaning
200	Healthy/Ready
204	Alive (no content)
401	Unauthorized (missing/invalid auth)
503	Unhealthy

Unauthorized body example: {"code":401,"data":{"error":"Unauthorized: Invalid or missing token"}}

Monitoring integration notes

If you use Bearer token (HEALTH_TOKEN), you can avoid JWT cookie expiration and make automated monitoring easier.

Recommended options:

Recommended: use HEALTH_TOKEN to probe /health/live or /health/ready
Fallback: probe / (returns 307, treated as success in Kubernetes) to ensure the process is up
Fallback: login + cookies + /health (for monitors that already have a login step)

Kubernetes probe example (Bearer token)

yaml

apiVersion: v1
kind: Pod
spec:
  containers:
  - name: shortlinker
    image: e1saps/shortlinker
    livenessProbe:
      httpGet:
        path: /health/live
        port: 8080
        httpHeaders:
          - name: Authorization
            value: "Bearer your_health_token"
      initialDelaySeconds: 10
      periodSeconds: 10

Kubernetes probe example (simple liveness)

yaml

apiVersion: v1
kind: Pod
spec:
  containers:
  - name: shortlinker
    image: e1saps/shortlinker
    livenessProbe:
      httpGet:
        path: /
        port: 8080
      initialDelaySeconds: 10
      periodSeconds: 10

bash

#!/bin/bash
set -euo pipefail

ADMIN_TOKEN="your_admin_token"
BASE_URL="http://localhost:8080"
COOKIE_JAR="$(mktemp)"

curl -sS -X POST \
  -H "Content-Type: application/json" \
  -c "$COOKIE_JAR" \
  -d "{\"password\":\"${ADMIN_TOKEN}\"}" \
  "${BASE_URL}/admin/v1/auth/login" >/dev/null

curl -sS -b "$COOKIE_JAR" "${BASE_URL}/health"

Security notes

Use a strong ADMIN_TOKEN
Restrict access to health endpoints to trusted networks
Use HTTPS in production and configure cookie security correctly

Health Check API ​

Overview ​

Configuration ​

Authentication (Important) ​

Option A: Bearer token (recommended for monitoring/probes) ​

Option B: JWT cookies (recommended for admin panel/browser) ​

Endpoints ​

GET /health - Full health check ​

GET /health/ready - Readiness ​

GET /health/live - Liveness ​

Status codes ​

Monitoring integration notes ​

Kubernetes probe example (Bearer token) ​

Kubernetes probe example (simple liveness) ​

Script example (login + health check) ​

Security notes ​

Health Check API

Overview

Configuration

Authentication (Important)

Option A: Bearer token (recommended for monitoring/probes)

Option B: JWT cookies (recommended for admin panel/browser)

Endpoints

GET /health - Full health check

GET /health/ready - Readiness

GET /health/live - Liveness

Status codes

Monitoring integration notes

Kubernetes probe example (Bearer token)

Kubernetes probe example (simple liveness)

Script example (login + health check)

Security notes