IKF API Surface Minimizer
Objective
Define endpoints that return ONLY what UI needs, with auth checks and least-privilege access.
Requirements
- •No service-role keys in the client.
- •Avoid SELECT * and broad reads.
- •Prefer aggregated endpoints for analytics.
- •Ensure endpoints are scoped by org_id and authenticated user.
- •Return minimal fields: ticker, horizon, signal, pred (score optional internal).
Output
- •Endpoint list for Phase 1 + Phase 2 (today heatmap, compare drawer, wishlist rows, dashboard top/bottom, analytics summaries).
- •Response schemas.
- •Security checks per endpoint.