_devops-rest-api-get-started.md

import RESTPrereqs from "versionContent/_partials/_prereqs-cloud-account-only.mdx";

$REST_LONG is a comprehensive RESTful API you use to manage $CLOUD_LONG resources including VPCs, $SERVICE_SHORTs, and read replicas.

This page shows you how to set up secure authentication for the $REST_LONG and create your first $SERVICE_SHORT.

Prerequisites

• Install curl.

Configure secure authentication

$REST_LONG uses HTTP Basic Authentication with access keys and secret keys. All API requests must include proper authentication headers.

1. Set up API credentials

   1. In $CONSOLE copy your project ID and store it securely using an environment variable:

   export TIGERDATA_PROJECT_ID="your-project-id"

   1. In $CONSOLE create your client credentials and store them securely using environment variables:

      export TIGERDATA_ACCESS_KEY="Public key"
      export TIGERDATA_SECRET_KEY="Secret key"

2. Configure the API endpoint

   Set the base URL in your environment:

   export API_BASE_URL="https://console.cloud.timescale.com/public/api/v1"

3. Test your authenticated connection to $REST_LONG by listing the $SERVICE_SHORTs in the current $PROJECT_LONG

   curl -X GET "${API_BASE_URL}/projects/${TIGERDATA_PROJECT_ID}/services" \
     -u "${TIGERDATA_ACCESS_KEY}:${TIGERDATA_SECRET_KEY}" \
     -H "Content-Type: application/json"

   This call returns something like:

   • No $SERVICE_SHORTs:

     []%
     

   • One or more $SERVICE_SHORTs:

     [{"service_id":"tgrservice","project_id":"tgrproject","name":"tiger-eon",
     "region_code":"us-east-1","service_type":"TIMESCALEDB",
     "created":"2025-10-20T12:21:28.216172Z","paused":false,"status":"READY",
     "resources":[{"id":"104977","spec":{"cpu_millis":500,"memory_gbs":2,"volume_type":""}}],
     "metadata":{"environment":"DEV"},
     "endpoint":{"host":"tgrservice.tgrproject.tsdb.cloud.timescale.com","port":11111}}]
     

Create your first $SERVICE_LONG

Create a new $SERVICE_SHORT using the $REST_LONG:

1. Create a $SERVICE_SHORT using the POST endpoint

   curl -X POST "${API_BASE_URL}/projects/${TIGERDATA_PROJECT_ID}/services" \
     -u "${TIGERDATA_ACCESS_KEY}:${TIGERDATA_SECRET_KEY}" \
     -H "Content-Type: application/json" \
     -d '{
        "name": "my-first-service",  
        "addons": ["time-series"],  
        "region_code": "us-east-1",  
        "replica_count": 1,  
        "cpu_millis": "1000",
        "memory_gbs": "4"
        }'

   $CLOUD_LONG creates a Development environment for you. That is, no delete protection, high-availability, spooling or read replication. You see something like:

    {"service_id":"tgrservice","project_id":"tgrproject","name":"my-first-service",
    "region_code":"us-east-1","service_type":"TIMESCALEDB",
    "created":"2025-10-20T22:29:33.052075713Z","paused":false,"status":"QUEUED",
    "resources":[{"id":"105120","spec":{"cpu_millis":1000,"memory_gbs":4,"volume_type":""}}],
    "metadata":{"environment":"PROD"},
    "endpoint":{"host":"tgrservice.tgrproject.tsdb.cloud.timescale.com","port":00001},
    "initial_password":"notTellingYou",
    "ha_replicas":{"sync_replica_count":0,"replica_count":1}}
   

2. Save service_id from the response to a variable:

   # Extract service_id from the JSON response
   export SERVICE_ID="service_id-from-response"

3. Check the configuration for the $SERVICE_SHORT

  curl -X GET "${API_BASE_URL}/projects/${TIGERDATA_PROJECT_ID}/services/${SERVICE_ID}" \
    -u "${TIGERDATA_ACCESS_KEY}:${TIGERDATA_SECRET_KEY}" \
    -H "Content-Type: application/json"

You see something like:

  {"service_id":"tgrservice","project_id":"tgrproject","name":"my-first-service",
  "region_code":"us-east-1","service_type":"TIMESCALEDB",
  "created":"2025-10-20T22:29:33.052075Z","paused":false,"status":"READY",
  "resources":[{"id":"105120","spec":{"cpu_millis":1000,"memory_gbs":4,"volume_type":""}}],
  "metadata":{"environment":"DEV"},
  "endpoint":{"host":"tgrservice.tgrproject.tsdb.cloud.timescale.com","port":11111},
  "ha_replicas":{"sync_replica_count":0,"replica_count":1}}

And that is it, you are ready to use the $REST_LONG to manage your $SERVICE_SHORTs in $CLOUD_LONG.

Security best practices

Follow these security guidelines when working with the $REST_LONG:

• Credential management

  • Store API credentials as environment variables, not in code
  • Use credential rotation policies for production environments
  • Never commit credentials to version control systems

• Network security

  • Use HTTPS endpoints exclusively for API communication
  • Implement proper certificate validation in your HTTP clients

• Data protection

  • Use secure storage for service connection strings and passwords
  • Implement proper backup and recovery procedures for created services
  • Follow data residency requirements for your region