live operations.

platform health, full table catalog, cross-domain stats, feature wave history - auto-refresh every 60s.

raw json

api wave

syncing...

d1 tables

via /health/catalog

total rows

across every table

last sync

cache ttl 60s

3-tier architecture - live trust boundaries

public · shared · private

tier 1 · public

tired.events / tiredevents.com

EC2 nginx :443 · static HTML · no secrets · HSTS + CSP + 5 security headers · open to internet

tier 2 · shared

api.tired.events

Cloudflare Worker · Hono router · Cognito auth + KV rate limit · /health/* CORS-permissive · 60/min/IP

tier 3 · private

internal.tiredapi.co

VPC-only allowlist 172.31.0.0/16+localhost · /worker/* auto-injects HMAC token · 5 admin endpoints

flow: browser hits tier 1 static HTML → studio JS calls tier 2 with bearer token → admin scripts on EC2 call tier 3 proxy which forwards to tier 2 with auto-injected HMAC. no tier crosses without explicit auth.

this wave - newest event-ops domains

auto-updates from /health/wave

loading wave spotlight...

disaster recovery - r2 backups

via /health/backup-meta

loading backup status...

security posture - controls audit

via /health/security-posture

loading security posture...

domain explorer - live data per event

authenticated · routes per wave

loading domain explorer...

platform stats - cross-domain rollup

/health/stats

loading platform stats...

full table catalog

fetching /health/catalog...

feature wave timeline

last 19 waves

loading /health/feature-history...

integrations

live mode

stripe (live)connected

cognito (us-east-1)connected

cloudflare workersconnected

cloudflare d1connected

cloudflare kvconnected

cloudflare r2connected

aws ses (sandbox)limited

aws sns (sandbox)limited

resend (email backup)optional

tired mcpconnected

webauthnconnected

google oauthconnected

apple oauthconnected

quick links

/health/feature-history

/config/public

tiredapi.co

mcp.tiredapi.co