Citadel
Documentation menu

Trust API (reference)

Citadel's federated trust surface. The per-identifier lookup is public; the bulk export is partner-keyed. Base URL: https://api.citadels.cc.

See Trust Network for the conceptual overview.

Discovery

GET /.well-known/citadel-trust.json

A machine-readable capability document: available endpoints, the score schema and bands, accepted identifier kinds, and — when signing is enabled — the public key and algorithm used to verify proofs. Start here; integrate against what it advertises.

Player lookup (public)

GET /api/v1/trust/{identifier}

{identifier} is a SteamID (Steam2 or Steam64), a Citadel ID (UUID), or a Discord user ID. No auth; rate-limited per IP.

Returns a TrustScore:

{
  "citadelId": "…",
  "steamId": "765611…",
  "score": 72,
  "confidence": 0.6,
  "band": "neutral",
  "signals": { "bans_active": 0, "submissions_pending": 0, "accuracy": null, "...": "…" },
  "reasons": ["…"],
  "computedAt": "2026-05-24T…Z"
}

Responses contain no submitter identities and no private notes — safe to surface publicly.

Signed proofs

When the instance has signing configured, the response includes a detached RS256 JWT in proof (and an x-citadel-trust-proof response header) re-stating the attestable summary (score / band / confidence / identity / timestamp). Verify it against the public key from the discovery document to confirm the data came from Citadel and wasn't altered in transit.

Bulk export (partner)

GET /api/v1/trust/export?since=<ISO|epoch-ms>&cursor=<opaque>&limit=<n>&status=active,overturned,expired
Authorization: Bearer <partner-key>

A keyset-paginated delta feed of the community ban pool, for partners mirroring Citadel's trust data. Authenticate with a partner key (Authorization: Bearer … or the x-citadel-partner-key header).

  • Tiered — the per-minute rate and max page size scale with your partner tier.
  • Keyset pagination — follow nextCursor until it's null; resume later from ?since=.
  • Mirrors tombstones (overturned / expired) so you can un-enforce a lifted ban.
  • Each page can carry a signed proof over a digest of the rows.

Partner keys are issued by Citadel staff. Contact support to request one and a tier.

Edit this page on GitHub