Lazer Docs
API Reference

API Reference

REST API for Chrome extension integration

API Reference

The Lazer Extension API is a REST API that enables the Chrome extension to sync captured assets to your Lazer workspace. It provides endpoints for listing projects and scenes, submitting captured assets, and managing user profile preferences.

Overview

The Extension API is designed for:

  • Chrome extension authentication and authorization
  • Project and scene listing for context selection
  • Asset ingestion from third-party AI platforms
  • User profile and preferences management

All endpoints are prefixed with /api/extension/ and require authentication via Bearer token.

Base URL

The base URL depends on your Lazer deployment:

  • Development: http://localhost:3000
  • Production: https://lazer.yourdomain.com

Authentication

All endpoints require a valid API token passed as a Bearer token in the Authorization header:

Authorization: Bearer lzr_1234567890abcdef...

See the Authentication guide for details on generating and managing tokens.

Endpoints

Projects

  • GET /api/extension/projects - List user's projects

Scenes

  • GET /api/extension/scenes?projectId={id} - List scenes for a project

Scene Assets

  • GET /api/extension/scene-assets?sceneId={id} - List asset versions for a scene

Platforms

  • GET /api/extension/platforms - List all AI platforms

Ingest

  • POST /api/extension/ingest - Create a new asset version

Profile

  • GET /api/extension/profile - Get user profile and preferences
  • PUT /api/extension/profile - Update user preferences

Response Format

All responses use a consistent JSON structure:

Success Response

{
  "data": { ... },
  "metadata": { ... }
}

or

{
  "projects": [ ... ]
}

Error Response

{
  "error": "Error message"
}

Status Codes

CodeMeaning
200Success
201Created (for POST requests)
400Bad Request - Invalid input
401Unauthorized - Invalid or expired token
403Forbidden - Valid token but insufficient permissions
404Not Found - Resource does not exist
500Internal Server Error

CORS

The Extension API includes CORS headers to allow requests from browser extensions:

Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,PUT,OPTIONS
Access-Control-Allow-Headers: Authorization, Content-Type

OPTIONS requests are supported for preflight checks.

Rate Limiting

Currently no rate limiting is enforced. Future versions may implement:

  • 100 requests per minute per token
  • 1000 requests per hour per token
  • Burst allowance for batch operations

Versioning

The API is currently unversioned. Breaking changes will be communicated via:

  • Release notes
  • Deprecation warnings in responses
  • Migration guides

Next Steps

Resources & Prompts

MCP resources for schema access and prompts for AI workflow templates

Authentication

Token-based auth for Chrome extension API access

On this page

API ReferenceOverviewBase URLAuthenticationEndpointsProjectsScenesScene AssetsPlatformsIngestProfileResponse FormatSuccess ResponseError ResponseStatus CodesCORSRate LimitingVersioningNext Steps