Tradier API

Auto-generated from openapi-snapshot.json. Do not edit by hand — changes are overwritten by scripts/docs/generate_api_reference.py.

17 endpoints in this group.

GET /api/tradier/accounts

Tradier Accounts

Responses

GET /api/tradier/callback

Tradier Callback

Exchange code for tokens and persist them.

Plan-gate runs BEFORE the token write so a tenant at their cap cannot silently consume a slot via OAuth. State is verified BEFORE either, to prevent CSRF broker-bind.

Parameters

Responses

GET /api/tradier/connect

Tradier Connect

Return the Tradier OAuth authorisation URL + CSRF state nonce.

Pentest C4: state is now a server-signed token pinned to this user + broker + tenant; /callback rejects unsigned, stale, or cross-user state to prevent CSRF broker-bind.

Responses

POST /api/tradier/disconnect

Tradier Disconnect

Responses

GET /api/tradier/options/chain

Tradier Options Chain

Parameters

Responses

GET /api/tradier/options/expirations

Tradier Options Expirations

Parameters

Responses

GET /api/tradier/options/strikes

Tradier Options Strikes

Parameters

Responses

GET /api/tradier/orders

Tradier List Orders

Parameters

Responses

POST /api/tradier/orders/equity

Tradier Place Equity Order

Request body: application/json

Responses

POST /api/tradier/orders/multileg

Tradier Place Multileg Order

Request body: application/json

Responses

POST /api/tradier/orders/option

Tradier Place Option Order

Request body: application/json

Responses

DELETE /api/tradier/orders/{order_id}

Tradier Cancel Order

Parameters

Responses

GET /api/tradier/orders/{order_id}

Tradier Get Order

Parameters

Responses

GET /api/tradier/positions

Tradier Positions

Fetch Tradier positions for the requesting tenant.

Wrapped in sync_orchestrator.sync_attempt (Phase C #648) so each request writes a row to broker_sync_log. sync_kind="manual" because this is a user-initiated read, not a scheduled sync.

The orchestrator handles broker_sync_log audit + reraises so the existing HTTPException handlers below preserve the legacy 401/502 response codes.

Parameters

Responses

GET /api/tradier/quotes

Tradier Quotes

Parameters

Responses

POST /api/tradier/refresh

Tradier Refresh

Responses

GET /api/tradier/status

Tradier Status

Return whether Tradier OAuth is wired up for the calling tenant.

Responses