# Noya Agent API Reference Noya exposes **three separate surfaces**: | API | Base URL | Auth | Purpose | | --- | --- | --- | --- | | Agent API | `https://agent-api.noya.ai` | `x-api-key: noya_` | Conversational multi-agent system — messaging, threads, chat completions, user/agent summaries, OpenClaw handoff | | Data API | `https://data-endpoints.noya.ai` | None | Public structured-data endpoints — CoinGecko, CoinGlass, DeFiLlama, Moralis, GeckoTerminal, CryptoNews, alternative.me, Noya Tokens catalog, Noya Polymarket intelligence, Kaito social intelligence | | Docs | `https://mcp.noya.ai` | None | Full docs as plain markdown — `/llms.txt` for index, `/llms.mdx/docs/{path}/content.md` for full page content. Read before guessing tool parameters or response shapes | This reference documents the **Agent API**. For the Data API paths and bodies, see the "Data Endpoints (no API key)" section of `SKILL.md`. For docs lookup, see the "Read the Docs" step at the top of the Core Workflow in `SKILL.md`. All Agent API endpoints below require authentication via the `x-api-key` header (except where noted). --- ## Authentication | Header | Value | Description | | --------- | ------------ | ------------------------------ | | x-api-key | `noya_` | API key generated from the app | API keys are created with a duration: `thirty_days`, `ninety_days`, or `one_year`. Expired or revoked keys return `401`. --- ## POST /api/messages/stream Send a message to the Noya agent and receive a streamed response. ### Request **Content-Type:** `application/json` ```json { "message": "What is the price of ETH?", "threadId": "unique-thread-id" } ``` | Field | Type | Required | Description | | -------- | ------ | -------- | ------------------------------------------------- | | message | string | Yes | User message text | | threadId | string | Yes | UUID v4 thread identifier. Creates thread if new. | ### Response **Content-Type:** `text/plain; charset=utf-8` **Transfer-Encoding:** `chunked` The response is a text stream. Each chunk is a JSON object followed by `--breakpoint--\n`. Keep-alive pings (`keep-alive\n\n`) are sent every second. ### Chunk Types #### message ```json { "type": "message", "threadId": "t1", "messageId": "msg-uuid", "message": "The current price of ETH is..." } ``` #### tool ```json { "type": "tool", "threadId": "t1", "messageId": "msg-uuid", "content": { "type": "token_price", "data": { ... } } } ``` Non-visible tool results have `content.type` set to `"non_visible"`. #### progress ```json { "type": "progress", "threadId": "t1", "current": 1, "total": 3, "message": "Analyzing token metrics..." } ``` #### interrupt Sent when the agent needs user confirmation before proceeding. ```json { "type": "interrupt", "threadId": "t1", "content": { "type": "interrupt", "question": "Do you want to proceed with this swap?", "options": ["Yes", "No"] } } ``` To respond to an interrupt, send another message to the same thread with the user's answer. #### reasonForExecution ```json { "type": "reasonForExecution", "threadId": "t1", "message": "Looking up current market data for ETH" } ``` #### executionSteps ```json { "type": "executionSteps", "threadId": "t1", "steps": ["Fetching price data", "Analyzing trends", "Generating summary"] } ``` #### error ```json { "type": "error", "message": "I couldn't find your wallet address. Please try reloading the page." } ``` ### Error Responses | Status | Condition | | ------ | --------------------------- | | 400 | Missing message or threadId | | 401 | Unauthorized | --- ## GET /api/threads List all conversation threads for the authenticated user. ### Response `200 OK` ```json { "success": true, "data": { "threads": [ { "id": "abc123", "name": "ETH Analysis", "userId": "user-id", "created_at": "2026-02-16T00:00:00.000Z", "updated_at": "2026-02-16T12:00:00.000Z" } ] } } ``` ### Error Responses | Status | Condition | | ------ | ------------ | | 401 | Unauthorized | | 500 | Server error | --- ## GET /api/threads/:threadId/messages Get all messages from a specific thread. The threadId in the URL is the user-facing ID (the server internally prefixes it with the user ID). ### Response `200 OK` ```json { "success": true, "data": { "messages": [ { "id": ["HumanMessage"], "kwargs": { "id": "msg-uuid", "content": "What is ETH price?" } }, { "id": ["AIMessage"], "kwargs": { "id": "msg-uuid", "content": "ETH is currently trading at..." } } ] } } ``` Messages follow LangChain message format. Types include `HumanMessage`, `AIMessage`, `ToolMessage`, and `InterruptMessage`. ### Error Responses | Status | Condition | | ------ | ------------ | | 401 | Unauthorized | | 500 | Server error | --- ## DELETE /api/threads/:threadId Delete a conversation thread. ### Response `200 OK` ```json { "success": true, "message": "Thread deleted successfully" } ``` ### Error Responses | Status | Condition | | ------ | ---------------- | | 401 | Unauthorized | | 404 | Thread not found | | 500 | Server error | --- ## GET /api/user/summary Returns a comprehensive, agent-ready snapshot of everything relevant to the authenticated user. All data sources are fetched concurrently; if any single source fails its section will contain an `{ "error": "..." }` object rather than blocking the entire response. ### Response `200 OK` ```json { "success": true, "data": { "generatedAt": "2026-02-21T10:00:00.000Z", "user": { "id": "did:privy:...", "walletAddress": "0xabc..." }, "holdings": { "totalTokensValueUSD": 4200.50, "totalAppsValueUSD": 800.00, "totalNetWorthUSD": 5000.50, "tokens": [ { "token": { "symbol": "ETH", "balance": "1.25", "balanceUSD": 3500.00 } } ], "apps": [ { "name": "Aave", "balanceUSD": 800.00 } ] }, "dcaStrategies": { "total": 3, "active": 2, "inactive": 0, "errored": 0, "completed": 1, "strategies": [ { "id": "uuid", "status": "active", "chainId": 1, "sourceToken": "0xUSDC...", "sourceTokenSymbol": "USDC", "targetToken": "0xWETH...", "targetTokenSymbol": "WETH", "amountPerPeriod": "50", "frequency": "weekly", "nextExecutionDate": "2026-02-28T00:00:00.000Z", "endDate": null, "durationType": "until_depletion", "fixedOrdersCount": null, "totalExecutions": 4, "successfulExecutions": 4, "totalSpent": "200", "totalReceived": "0.057", "averagePrice": "3508.77", "averagePriceUSD": "3508.77", "slippageTolerance": "0.5", "createdAt": "2026-01-01T00:00:00.000Z" } ] }, "polymarket": { "openPositions": { "total": 2, "totalCurrentValueUSD": 150.00, "totalUnrealizedPnlUSD": 25.50, "positions": [ { "title": "Will ETH exceed $5000 by March 2026?", "outcome": "Yes", "marketSlug": "eth-5000-march-2026", "eventSlug": "eth-price-march-2026", "size": "200", "avgPrice": "0.60", "currentPrice": "0.75", "currentValue": "150.00", "initialValue": "120.00", "unrealizedPnl": "30.00", "realizedPnl": "0", "pnl": "30.00" } ] }, "closedPositions": { "total": 5, "positions": [ { "title": "Will BTC reach $100k in 2025?", "outcome": "Yes", "marketSlug": "btc-100k-2025", "eventSlug": "btc-price-2025", "size": "100", "avgPrice": "0.80", "settledPrice": "1.00", "pnl": "20.00", "closedAt": "2026-01-15T00:00:00.000Z" } ] } } } } ``` ### Error Responses | Status | Condition | | ------ | -------------------------------------- | | 400 | No embedded Ethereum wallet found | | 401 | Unauthorized | | 500 | Server error | --- ## POST /api/openclaw/system-message Inject a system message into a thread before the conversation starts. Used by OpenClaw to hand off conversation context to Noya, making the transition feel seamless for the user. ### Request **Content-Type:** `application/json` ```json { "threadId": "unique-thread-id", "content": "The user has been chatting with OpenClaw and now wants help with crypto tasks. Context from our conversation: [user schedule, preferences, etc.]. Please continue assisting them naturally." } ``` | Field | Type | Required | Description | | -------- | ------ | -------- | --------------------------------------------------------------------------- | | threadId | string | Yes | UUID v4 thread identifier. Creates/initializes the thread if it doesn't exist. | | content | string | Yes | System message content framed as a conversation handoff from OpenClaw. | ### Response `200 OK` ```json { "success": true, "filtered": false, "message": "Content was sanitized before appending" } ``` | Field | Type | Description | | -------- | ------- | -------------------------------------------------------- | | success | boolean | Whether the operation succeeded | | filtered | boolean | Whether the content was sanitized by the security filter | | message | string | Present only if content was sanitized | The content passes through a security filter. If rejected entirely, a `400` error is returned with a `reason` field. ### Error Responses | Status | Condition | | ------ | -------------------------------------------------------- | | 400 | Missing/invalid threadId or content, or content rejected | | 401 | Unauthorized | | 500 | Server error | --- ## GET /api/agents/summarize Returns all available agent types, their specialties, and the tools they have access to. ### Response `200 OK` ```json { "success": true, "data": "The available agent types are:\n - tokenAnalysis: Name: Token Analysis, Speciality: ...\n tools:\n - name: getTokenPrice\n description: ...\n ..." } ``` The `data` field is a YAML-formatted string describing all agents and their tools. --- ## API Key Management These endpoints require Privy token authentication (not API key auth). They are included for reference but are not accessible via API keys. ### POST /api/keys Create a new API key. **Request:** ```json { "name": "My integration key", "duration": "ninety_days" } ``` | Field | Type | Required | Description | | -------- | ------ | -------- | ------------------------------------------------ | | name | string | No | Label for the key (max 255 chars) | | duration | string | Yes | One of: `thirty_days`, `ninety_days`, `one_year` | **Response `201 Created`:** ```json { "success": true, "data": { "id": "uuid", "key": "noya_abc123...", "prefix": "noya_abc", "name": "My integration key", "duration": "ninety_days", "expires_at": "2026-05-17T00:00:00.000Z", "created_at": "2026-02-16T00:00:00.000Z" } } ``` The `key` field is only returned once at creation. ### GET /api/keys List all API keys for the authenticated user. Returns prefixes only, never full keys. ### DELETE /api/keys/:id Revoke an API key (soft delete). --- ## Common Error Format All error responses follow this structure: ```json { "success": false, "message": "Human-readable error description" } ``` ## Rate Limiting The `/api/messages/stream` endpoint is rate-limited to 15 requests per 5-minute window per user.