Plugins

Plugin management (Admin role required)

📄️ List all available plugins

List all available plugins

📄️ Get plugin details

Get plugin details

📄️ Delete a community plugin from disk

Disables the plugin, calls its uninstall() lifecycle hook, deletes the community directory, and clears every plugin.{id}.* config key. Refuses to touch core plugins.

📄️ Enable a plugin

Enable a plugin

📄️ Disable a plugin

Disable a plugin

📄️ Update plugin settings

Update plugin settings

📄️ Test plugin connection with provided settings

Password fields may be omitted — the plugin falls back to its saved value.

📄️ Reset all settings for a plugin

Reset all settings for a plugin

📄️ List community plugins approved for URL install

Returns the entries from src/plugins/approved-plugins.json. Only plugins in this list can be installed by URL.

📄️ Install a community plugin from an approved download URL

Downloads the zip, verifies its SHA-256 against approved-plugins.json, validates the archive, and extracts it into src/plugins/community/{id}. The plugin is NOT enabled automatically — admins must review and click Enable.

📄️ Install a community plugin from an arbitrary URL (unverified)

Installs a plugin from a URL that is NOT on the approved list. The admin must supply the expected SHA-256 themselves. The plugin is flagged as unverified and the admin UI shows a warning banner before it can be enabled. Intended for plugin developers testing their own builds and for admins running experimental plugins.

📄️ Clear a plugin's quarantine flag

Removes the quarantine flag from a plugin so it can be enabled again. Use after the underlying issue (crash, revoked registry entry, etc.) has been resolved.

📄️ Re-fetch the remote approved-plugin registry

Pulls the latest approved-plugins.json from the remote source and updates the session cache. Returns the merged list immediately so the UI can refresh without a page reload.