Usage
This section covers day-to-day interaction patterns for users who need to read, write, pin, and synchronize state.
It focuses on the currently deployed general interface shape.
Graphical Interface
Section titled “Graphical Interface”The general compose network exposes three primary web clients and one filesystem-oriented service: Explorer (/explorer/), Workbench (/workbench/), Gateway (/docs plus /api/v1/...), and File System (WebDAV at /webdav/).
Together they cover the full operator/developer loop: inspect data, make changes, verify outcomes, mount journal state into ordinary file tools, and convert successful workflows into repeatable API calls.
Explorer
Section titled “Explorer”The Explorer is the state-navigation and content-management interface. It now has three explicit modes:
Ledger- the default landing mode
- route-based browsing of committed state across bridges and snapshots
Stage- local editable staged state
- file and directory oriented editing actions
Admin- visible only to interface admins
- bridge registration and local bridge endpoint sharing
- public window-size edits and interface admin-list management
Typical Explorer workflow:
- Start in
Ledgerand synchronize to the latest committed root. - Use the route strip to browse from
Selfthrough bridges and historical snapshots. - Select a ledger file to switch between content and proof views or pin/unpin it.
- Switch to
Stagewhen you want to edit local staged files and directories. - Use stage actions to create documents/directories, upload files, edit content, and download files.
- If you are an admin, use
Adminto copy this node’s bridge endpoint, register peer bridges, tune the ledger window, or update the interface admin list.
The Explorer is best for operational tasks and data exploration because it separates committed ledger inspection from local staged editing while keeping both in one UI.
Workbench
Section titled “Workbench”The Workbench is the API-oriented query environment. Use it when you want precise control over requests, fast iteration on payload shape, and direct inspection of results.
Typical Workbench workflow:
- Start from a known request pattern (for example
get,set!,pin!, orbridge!). - Run the request in Scheme form and inspect the returned value.
- Iterate on arguments/authentication until behavior matches intent.
- Use the final request as a template for automation or service integration.
The Workbench is best for debugging and integration development because it exposes the request/response layer directly.
Gateway
Section titled “Gateway”The Gateway is the web-facing API surface for journal operations. Use it when clients should call stable, versioned HTTP routes instead of direct function-shaped interface requests.
Typical Gateway workflow:
- Start with
GET /docsto review request and response schemas. - Use
GET /api/v1/general/sizeor another stable route to validate connectivity. - Execute public general operations through
GETroutes (for examplesize,info, andtrace). - Execute restricted
generaland optionalrootoperations through authenticatedPOSTroutes. - Move validated requests into application clients or automation scripts using the same gateway contracts.
The Gateway is best for service integration because it standardizes journal calls into HTTP endpoints with explicit request validation.
File System
Section titled “File System”The File System service projects journal state through WebDAV. Use it when existing tools should interact with Synchronic Web data through ordinary file and directory operations instead of direct API calls.
Typical File System workflow:
- Mount the share and work in
/stagefor ordinary mutable file operations. - Browse
/ledger/statefor current committed content. - Browse
/ledger/<index>/statefor a specific prior committed snapshot. - Traverse
/ledger/bridge/<name>/statefor a bridged peer’s current committed state. - Use
/control/pinfor explicit pin and unpin directives on discovered ledger paths.
The File System service is best for shell tools, editors, archives, source trees, and other workflows that already expect a hierarchical filesystem.
Filesystem projection overview:
/├── stage/│ └── ...├── ledger/│ ├── state/ (defaults to current head)│ │ └── ...│ ├── <index>/ (explicit historical snapshot)│ │ ├── state/│ │ │ └── ...│ │ └── bridge/│ │ └── <name>/│ │ ├── state/│ │ └── ...│ └── bridge/│ └── <name>/ (defaults to current head)│ ├── state/│ │ └── ...│ └── bridge/│ └── ...└── control/ └── pinKey semantics:
/stageis mutable./ledger/...is readable but content-immutable.- omitting an explicit
<index>anywhere in a ledger path defaults to the current head (-1). - once you enter any
state/subtree, remaining path segments are ordinary file and directory names. /control/pinis a synthetic UTF-8 file for pin and unpin directives against discovered/ledger/...paths.
Programmatic API
Section titled “Programmatic API”Programmatic access is typically where teams standardize integrations across multiple services. The sections below focus on stable request patterns that are easy to lint, test, and automate.
Endpoint Catalog
Section titled “Endpoint Catalog”Use this catalog as a quick orientation map.
The /interface execution endpoint accepts Scheme or JSON runtime calls via content negotiation, while the conversion endpoints are for debugging and payload authoring.
| Endpoint | Description |
|---|---|
POST /interface | Executes Scheme requests or JSON requests depending on Content-Type. |
POST /interface/scheme-to-json | Converts Scheme expressions into JSON payload representations. |
POST /interface/json-to-scheme | Converts JSON payloads back into Scheme forms for debugging and validation. |
Ledger Path Syntax
Section titled “Ledger Path Syntax”Public ledger/interface paths use flat token lists. In Scheme, write paths as lists such as (*state* alice notes) or (-1 *state* alice notes). In JSON, use the equivalent flat arrays, for example ["*state*", "alice", "notes"] or [-1, "*state*", "alice", "notes"].
When an indexed/committed operation needs a history index and no explicit index is present, the current head (-1) is used. Nested list paths are an internal ledger representation and are not accepted as public API input.
Authentication and Authorization
Section titled “Authentication and Authorization”Authentication
Section titled “Authentication”Restricted operations require an authentication field that identifies the caller and carries the interface secret.
Two caller identities are recognized:
- Named user (e.g.
alice): a registered user. The gateway injects this automatically when you are logged in via Kratos. When calling the interface directly, you supply it yourself with your username and the interface secret. - Root journal caller: omit
identityin the authentication block. This is used by journal automation and has no path restrictions.
When calling through the gateway (/api/v1/...), you do not construct the authentication block — the gateway handles it from your session or API token. When calling the interface directly (/interface), you supply it manually:
(authentication ((identity alice) (credentials "interface-secret")))"authentication": { "identity": "alice", "credentials": {"*type/string*": "interface-secret"}}User namespaces and write rules
Section titled “User namespaces and write rules”Each user’s writable space is (*state* <username> ...). A user may only write to paths whose first segment after *state* matches their own username:
(*state* alice notes) ← alice can write; bob cannot(*state* bob notes) ← bob can write; alice cannotReads are more permissive — any authenticated user can read another user’s paths unless the path contains *private*:
(*state* alice notes) ← any authenticated user can read(*state* alice *private* journal) ← only alice (or root/admin) can readAuthorization tiers
Section titled “Authorization tiers”| Tier | Identity | Privileges |
|---|---|---|
| Root | omitted identity | All operations on all paths. |
| Admin | Named user in the admin list | All operations on all paths. |
| User | Named user not in the admin list | Namespace and visibility rules above apply. |
Operations requiring admin or root: bridge!, *secret*, *admins-get*, *admins-set*, *window-set*. Regular users receive a permissions-error on these.
Request Envelope
Section titled “Request Envelope”Most JSON integrations can standardize on this envelope and only vary function and arguments.
That keeps client implementations simple and makes troubleshooting easier across services.
| Field | Type | Required | Notes |
|---|---|---|---|
function | symbol/string | Yes | API function name |
arguments | object / association list | Usually | Keyword-style fields for ledger calls |
authentication | alist / object | Restricted calls | ((identity alice) (credentials "secret")) for named users, or ((credentials "secret")) for the root journal caller |
Note:
In Scheme form, API queries are association lists. In JSON form, they are objects with equivalent fields.
Operation Examples
Section titled “Operation Examples”These examples are intentionally minimal and map directly to frequently used workflows. You can copy them into Workbench first, then move them into automation once validated.
Read (get)
Section titled “Read (get)”((function get) (arguments ((path (*state* docs article hash)) (pinned? #t) (proof? #t))) (authentication ((identity alice) (credentials "password")))){ "function": "get", "arguments": { "path": ["*state*", "docs", "article", "hash"], "pinned?": true, "proof?": true }, "authentication": { "identity": "alice", "credentials": {"*type/string*": "password"} }}Info: When to use
pinned?andproof?Use
pinned?when you want to know whether a historical path remains pinned, and useproof?when you need the proof payload itself.
Write (set!)
Section titled “Write (set!)”((function set!) (arguments ((path (*state* docs article hash)) (value "0xabc123") (expression? #t))) (authentication ((identity alice) (credentials "password")))){ "function": "set!", "arguments": { "path": ["*state*", "docs", "article", "hash"], "value": "0xabc123", "expression?": true }, "authentication": { "identity": "alice", "credentials": {"*type/string*": "password"} }}Pin (pin!)
Section titled “Pin (pin!)”((function pin!) (arguments ((path (-1 *state* docs article hash)))) (authentication ((identity alice) (credentials "password")))){ "function": "pin!", "arguments": {"path": [-1, "*state*", "docs", "article", "hash"]}, "authentication": { "identity": "alice", "credentials": {"*type/string*": "password"} }}Bridge (bridge!)
Section titled “Bridge (bridge!)”((function bridge!) (arguments ((name journal_b) (info-local ((interface "http://journal-b.example.org/api/v1/journal/interface") (policy ((publish push) (subscribe pull))) (role #f) (remote-name journal_a))))) (authentication ((credentials "password")))){ "function": "bridge!", "arguments": { "name": "journal_b", "info-local": { "interface": {"*type/string*": "http://journal-b.example.org/api/v1/journal/interface"}, "policy": {"publish": "push", "subscribe": "pull"}, "role": false, "remote-name": "journal_a" } }, "authentication": { "credentials": {"*type/string*": "password"} }}JSON/Scheme Conversion
Section titled “JSON/Scheme Conversion”The converter treats JSON and Scheme as structurally equivalent where possible.
Core Mapping
Section titled “Core Mapping”This mapping is the key mental model for moving between web client payloads and Scheme-native request forms. Once this is clear, advanced payloads become much easier to reason about.
| Scheme | JSON |
|---|---|
| symbol | string |
| list | array |
association list ((k v) ...) | object { "k": v, ... } |
| object-shaped assoc list | object |
Special Types
Section titled “Special Types”Special type wrappers are only needed where plain JSON cannot preserve Lisp/runtime semantics. If a payload seems unexpectedly interpreted, check whether a special type marker is required.
| JSON marker | Scheme value |
|---|---|
{"*type/string*": "text"} | string |
{"*type/quoted*": ...} | (quote ...) |
{"*type/byte-vector*": "deadbeef"} | byte-vector |
{"*type/vector*": [...]} | vector |
{"*type/pair*": [a, b]} | dotted pair (a . b) |
{"*type/rational*": "1/3"} | rational |
{"*type/complex*": "1+2i"} | complex |
Practical Guidance
Section titled “Practical Guidance”Use /interface/scheme-to-json to generate exact JSON for complex expressions, and use /interface/json-to-scheme when debugging client payloads or validating round-trip conversions.
For web clients, prefer object-shaped API queries (function, arguments, authentication) because they remain easier to read and diff than raw array forms, and reserve array-shaped JSON for raw root command calls.
Prefer *type/string* for literal strings in JSON payloads whenever you need to avoid ambiguity in type conversion.
A common workflow is: prototype in Scheme, convert to JSON, integrate in client code, then round-trip with json-to-scheme during debugging.
Teams that include conversion checks in their release process generally catch payload-shape regressions earlier.