Services

SynapseX is organized as internal services behind the public API Gateway. Clients should call https://api.synapsex.ai/v1; direct service URLs are for local development and internal networking.

Core Services

Service	Port	Owns
`api-gateway`	`8080`	Public `/v1` API, auth forwarding, service routing
`auth-service`	`8001`	Login, register, token validation, API keys
`agent-registry-service`	`8002`	VM agent registration and heartbeats
`policy-service`	`8003`	Tool and environment policy decisions
`audit-service`	`8004`	Append-only audit events and exports
`ai-ops-service`	`8005`	Operational AI task runner and remediation flows
`license-service`	`8006`	License state and entitlement checks
`vm-registry-service`	`8007`	VM inventory and telemetry snapshots
`incidents-service`	`8008`	Incident records and AI analysis hooks
`secrets-service`	`8009`	Secret metadata and rotation operations
`backup-service`	`8011`	Backup jobs and restore records
`patch-service`	`8012`	Patch inventories and patch jobs
`billing-service`	`8014`	Stripe billing, usage, quotas, subscriptions
`orchestrator-service`	`8015`	Agent jobs and orchestration
`llm-router-service`	`8018`	Model routing and OpenAI-compatible chat completions

Platform Foundation Services

These services complete the platform foundation for SaaS, runtime operations, integrations, and product control-plane features.

Service	Port	Public route	Purpose
`tenant-service`	`8019`	`/v1/tenants`	Tenants, plans, limits, members, workspace scoping
`event-bus-service`	`8020`	`/v1/events`	Durable event publishing, consumption, ack/nack, dead-letter state
`workspace-service`	`8021`	`/v1/workspaces`	Workspaces, generated artifacts, diffs, run outputs
`webhook-service`	`8022`	`/v1/webhooks`	Webhook subscriptions, signed deliveries, retries, delivery history
`update-service`	`8023`	`/v1/updates`	VM agent/runtime releases, rollouts, update checks
`model-registry-service`	`8024`	`/v1/model-registry/models`	Model catalog, capabilities, provider metadata, model health
`observability-service`	`8025`	`/v1/telemetry`	Telemetry events, trace lookup, service summary
`mcp-router-service`	`8026`	`/v1/mcp/route`, `/v1/mcp/plan`, `/v1/mcp/ask`	Intent classification and intelligent selection across QCOS, SynapseX, integrations and search MCPs

Request Flow

Client / SDK / CLI / Chat / Desktop Console
  -> api.synapsex.ai/v1
  -> api-gateway
  -> auth-service for identity and API keys
  -> policy-service, tenant-service, billing-service for guardrails
  -> orchestrator-service, llm-router-service, workspace-service, MCP bridge
  -> mcp-router-service for intelligent MCP/tool selection
  -> event-bus-service, audit-service, observability-service for durable records

Local Compose

The root docker-compose.yml now includes the foundation services. For backend-only work, infra/docker/docker-compose.services.yml includes the same service set with SQLite-backed volumes.

docker compose up -d postgres api-gateway tenant-service event-bus-service workspace-service webhook-service update-service model-registry-service observability-service mcp-router-service

Design Notes

Services are intentionally internal by default; the API Gateway is the public contract.
All new services support DATABASE_URL and default to local SQLite for development.
Production should replace SQLite with PostgreSQL and place services behind private networking.
Webhook delivery uses HMAC signatures through X-SynapseX-Signature.
Event bus is durable through SQL and can later be swapped to Azure Service Bus, NATS, RabbitMQ, Kafka, or Redis Streams without changing public gateway routes.

​Services

​Core Services

​Platform Foundation Services

​Request Flow

​Local Compose