Skip to main content

AI-Powered Route Setup

Paste your existing API code and let KnoxCall’s AI extract the route configuration automatically.

What is AI-Powered Route Setup?

Instead of manually filling in route details, paste your existing API request code (cURL, JavaScript, Python, etc.) and KnoxCall’s AI will:
  • 🔍 Extract URL and HTTP method
  • 📋 Detect headers and content type
  • 📦 Parse request body structure
  • 🔐 Identify secrets (API keys, tokens)
  • 💡 Suggest where secrets should be injected
  • 🏷️ Recommend a route name
  • ⚡ Generate the complete route configuration
Perfect for: Migrating existing API integrations to KnoxCall without rewriting configurations manually.

Supported Languages

KnoxCall’s AI parser supports code from:
  • cURL (most common)
  • JavaScript (fetch, axios, node-fetch)
  • Python (requests, urllib, httpx)
  • PHP (cURL, Guzzle, file_get_contents)
  • Ruby (net/http, RestClient, HTTParty)
  • Go (net/http, resty)
  • Java (HttpClient, OkHttp, RestTemplate)
  • C# (HttpClient, RestSharp)
Even if your language isn’t perfectly recognized, the AI can often extract the important details.

How It Works

1. Navigate to Routes → Create Route → Automated Setup

2. Paste your API request code

3. AI analyzes the code:
   - Detects programming language
   - Extracts URL, method, headers, body
   - Identifies secrets (API keys, tokens)
   - Suggests secret injection locations

4. Review detected configuration:
   - Route name suggestion
   - URL and method
   - Headers and body
   - Detected secrets (optional to save)

5. Customize if needed → Create route

Step-by-Step Guide

Step 1: Open Create Route Modal

  1. Navigate to Routes
  2. Click Create Route button
  3. Choose Automated Setup

Step 2: Paste Your Code

Copy your existing API request code and paste it: Example 1: cURL Command 
curl -X POST "https://api.stripe.com/v1/charges" \
  -H "Authorization: Bearer sk_live_abc123xyz789def456" \
  -H "Content-Type: application/x-www-form-urlencoded" \
  -d "amount=1000&currency=usd"
Example 2: JavaScript (fetch) 
const stripeApiKey = "sk_live_abc123xyz789def456";

fetch("https://api.stripe.com/v1/charges", {
  method: "POST",
  headers: {
    "Authorization": `Bearer ${stripeApiKey}`,
    "Content-Type": "application/json"
  },
  body: JSON.stringify({
    amount: 1000,
    currency: "usd",
    source: "tok_visa"
  })
});
Example 3: Python (requests) 
import requests

api_key = "sk_live_abc123xyz789def456"
headers = {
    "Authorization": f"Bearer {api_key}",
    "Content-Type": "application/json"
}
payload = {
    "amount": 1000,
    "currency": "usd"
}

response = requests.post(
    "https://api.stripe.com/v1/charges",
    headers=headers,
    json=payload
)
Example 4: PHP (cURL) 
$apiKey = "sk_live_abc123xyz789def456";
$ch = curl_init("https://api.stripe.com/v1/charges");
curl_setopt($ch, CURLOPT_HTTPHEADER, [
    "Authorization: Bearer " . $apiKey,
    "Content-Type: application/json"
]);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, json_encode([
    "amount" => 1000,
    "currency" => "usd"
]));
$response = curl_exec($ch);

Step 3: Click “Parse & Continue”

AI begins analyzing your code. You’ll see progress messages: 
🔍 Analyzing code structure...
📝 Detecting programming language...
🌐 Extracting API endpoint...
📊 Parsing request headers...
🔐 Detecting secrets and credentials...
📦 Analyzing request body...
💡 Generating configuration suggestions...
✅ Analysis complete!
This takes 3-5 seconds.

Step 4: Review Detected Configuration

AI shows what it extracted:

Route Name

Suggested: stripe-charges
Based on URL path and detected service You can edit this before creating the route.

Target URL

https://api.stripe.com/v1/charges

HTTP Method

POST

Headers

{
  "Content-Type": "application/json"
}
Non-secret headers are shown here

Request Body

{
  "amount": 1000,
  "currency": "usd",
  "source": "tok_visa"
}
Formatted and ready for injection configuration

Step 5: Review Detected Secrets (Optional)

If AI found secrets in your code: Detected: sk_live_abc123xyz789def456
PropertyValue
Original VariablestripeApiKey
Suggested Namestripe-api-key
TypeBearer Token
AI SuggestionInject in Header: Authorization: Bearer {{secret:stripe-api-key}}
Options:
  • ☑️ Create this secret (checked by default)
  • 📝 Edit secret name (click to customize)
  • 👁️ Show/hide value (for verification)
Secret values are visible during setup! Make sure nobody is watching your screen. After clicking “Create Route”, the value is encrypted and never shown again.

AI Insertion Suggestions

For each secret, AI recommends: 🤖 AI Suggestion:
  • Location: Header (or Body)
  • Header Name: Authorization (if header)
  • JSON Path: credentials.token (if body)
  • Description: “Stripe API authentication token”
You don’t need to manually configure this - KnoxCall will apply it automatically!

Step 6: Select Clients (Optional)

Choose which client IP addresses can use this route:
  • Production Server (52.123.45.67)
  • Office Network (192.168.1.0/24)
  • My Development Machine (203.45.67.89)
Or skip and assign clients later.

Step 7: Create Route

Click Create Route KnoxCall will:
  1. Create the route with extracted configuration
  2. Save detected secrets (if selected)
  3. Configure header/body injection per AI suggestions
  4. Assign selected clients
  5. Enable the route
Done! 🎉

Advanced Features

Multi-Route Detection

If you paste code with multiple API calls, AI detects them all: Example: Multiple endpoints in one script 
// Create customer
fetch("https://api.stripe.com/v1/customers", {
  method: "POST",
  headers: { "Authorization": `Bearer ${stripeKey}` },
  body: JSON.stringify({ email: "[email protected]" })
});

// Create charge
fetch("https://api.stripe.com/v1/charges", {
  method: "POST",
  headers: { "Authorization": `Bearer ${stripeKey}` },
  body: JSON.stringify({ amount: 1000, currency: "usd" })
});
AI Result: 2 routes detected
  1. stripe-customers → POST to /v1/customers
  2. stripe-charges → POST to /v1/charges
Shared secrets detected:
  • stripe-api-key (used by both routes)
You can:
  • ✅ Select which routes to create
  • ✅ Create shared secrets once (available to all routes)
  • ✅ Create all routes in batch
Batch route creation automatically creates all detected routes with one click. Perfect for migrating entire integrations!

Secret Reuse

If a secret already exists in KnoxCall: 
✓ Secret "stripe-api-key" already exists
AI won’t create a duplicate. It will use the existing secret in the route configuration.

Fallback to Manual Parsing

If AI can’t extract all details (e.g., URL is a variable): 
⚠️ Could not detect URL
You’ll be prompted to enter missing details manually before creating the route. AI still provides:
  • Headers
  • Body structure
  • Secrets detection
You just fill in the URL.

Language Detection Confidence

AI shows confidence level: 
🔍 Detected: JavaScript (High Confidence)
High confidence:
  • Standard library usage (fetch, requests, curl)
  • Clear syntax
  • Complete request structure
Medium confidence:
  • Custom HTTP library
  • Partial code snippet
  • Unusual formatting
Low confidence:
  • Ambiguous code
  • Multiple languages mixed
  • Very short snippet
Even at low confidence, AI usually extracts useful details!

Example Use Cases

Use Case 1: Migrate cURL to KnoxCall

Scenario: You have a cURL command from API documentation Code: 
curl -X POST "https://api.sendgrid.com/v3/mail/send" \
  -H "Authorization: Bearer SG.abc123xyz789" \
  -H "Content-Type: application/json" \
  -d '{
    "personalizations": [{"to": [{"email": "[email protected]"}]}],
    "from": {"email": "[email protected]"},
    "subject": "Test Email",
    "content": [{"type": "text/plain", "value": "Hello!"}]
  }'
AI Extracts:
  • Route name: sendgrid-mail-send
  • URL: https://api.sendgrid.com/v3/mail/send
  • Method: POST
  • Secret: sendgrid-api-keySG.abc123xyz789
  • Injection: Authorization: Bearer {{secret:sendgrid-api-key}}
Result: Route ready to use immediately!

Use Case 2: Import Production Code

Scenario: You’re proxying an existing JavaScript API integration Code: 
async function createCustomer(email) {
  const stripe = require('stripe')(process.env.STRIPE_SECRET_KEY);

  const customer = await stripe.customers.create({
    email: email,
    description: 'New customer'
  });

  return customer;
}
AI Extracts:
  • Route name: stripe-customers-create
  • URL: https://api.stripe.com/v1/customers (AI knows Stripe SDK)
  • Method: POST
  • Secret: stripe-secret-key (from environment variable)
  • Body structure: 
    {
  "email": "{{vars.email}}",
  "description": "New customer"
}
Bonus: AI suggests using {{vars.email}} for the email parameter!

Use Case 3: Reverse Engineering API Calls

Scenario: You found API request in browser DevTools Code (copied from Network tab): 
POST /api/v2/orders HTTP/1.1
Host: internal-api.company.com
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...
Content-Type: application/json

{"product_id": 123, "quantity": 5, "customer_id": 456}
AI Extracts:
  • Route name: orders-create
  • URL: https://internal-api.company.com/api/v2/orders
  • Method: POST
  • Secret: jwt-tokeneyJhbGci...
  • Body structure: {"product_id": 123, "quantity": 5, "customer_id": 456}
Perfect for setting up proxies to internal APIs!

Use Case 4: Python Script Migration

Scenario: Migrating Python script to run through KnoxCall Code: 
import requests
import os

twilio_account_sid = os.getenv("TWILIO_ACCOUNT_SID")
twilio_auth_token = os.getenv("TWILIO_AUTH_TOKEN")

url = f"https://api.twilio.com/2010-04-01/Accounts/{twilio_account_sid}/Messages.json"
auth = (twilio_account_sid, twilio_auth_token)

data = {
    "From": "+15551234567",
    "To": "+15559876543",
    "Body": "Hello from KnoxCall"
}

response = requests.post(url, auth=auth, data=data)
AI Extracts:
  • Route name: twilio-messages
  • URL: https://api.twilio.com/2010-04-01/Accounts/{{secret:twilio-account-sid}}/Messages.json
  • Method: POST
  • Secrets:
    • twilio-account-sid
    • twilio-auth-token
  • Authentication: Basic Auth (both secrets)
  • Body: Form data with From/To/Body
Note: AI even detects Basic Auth pattern!

Secret Detection Patterns

AI recognizes secrets in many forms:

Variable Assignments

const apiKey = "sk_live_abc123";
const token = "Bearer xyz789";

Environment Variables

api_key = os.getenv("STRIPE_KEY")

const key = process.env.API_KEY;

$key = $_ENV['API_KEY'];

Headers

-H "Authorization: Bearer sk_live_abc123"
-H "X-API-Key: xyz789"

URL Parameters

https://api.service.com?api_key=abc123

Basic Auth

-u username:password

auth=('username', 'password')

Hardcoded Values

fetch("https://api.example.com", {
  headers: { "Authorization": "Bearer sk_live_abc123" }
});

Customizing After AI Analysis

You can edit any detected field before creating the route:

Edit Route Name

Click the route name field and type a new name: 
AI: stripe-charges
You: production-stripe-payment-api

Edit Target URL

Update the URL if needed: 
AI: https://api.stripe.com/v1/charges
You: https://api.eu.stripe.com/v1/charges

Edit Secret Names

Click secret name to customize: 
AI: stripe-api-key
You: stripe-production-key-2025

Toggle Secret Creation

Uncheck secrets you don’t want to create:
  • ☑️ stripe-api-key (create)
  • ☐ webhook-secret (skip - I’ll add later)

Edit Headers

Add or remove headers from the detected set: 
{
  "Content-Type": "application/json",
  "X-Custom-Header": "my-value"
}

Edit Body Structure

Modify the request body before creating: 
{
  "amount": 1000,
  "currency": "usd",
  "metadata": {
    "order_id": "{{vars.order_id}}"
  }
}
Add {{vars.param}} for dynamic values!

Troubleshooting

Issue: “Could not detect language”

Causes:
  • Very short code snippet
  • Unusual syntax
  • Multiple languages mixed
Fix:
  1. Include more context (e.g., full function, not just URL)
  2. Add comments indicating language: 
    // JavaScript
fetch("https://api.example.com")
  3. Use Manual Setup instead

Issue: “URL not detected”

Symptoms: AI couldn’t find the API endpoint Common causes: 
// URL is a variable
const url = buildApiUrl(); // AI can't resolve this
fetch(url);
Fix:
  1. Paste code where URL is defined: 
    const baseUrl = "https://api.example.com";
const url = baseUrl + "/endpoint";
fetch(url);
  2. Or enter URL manually in the form

Issue: “Secrets detected but values wrong”

Symptoms: AI detected a secret but the value is incorrect Example: 
const key = getKeyFromVault(); // AI sees "getKeyFromVault()" as value
Fix:
  1. Edit the secret value after AI analysis
  2. Or uncheck and create secret manually later

Issue: “Too many false positive secrets”

Symptoms: AI flagged non-secret values as secrets Example: 
const customerId = "cus_abc123"; // Detected as secret (not actually)
Fix:
  1. Uncheck secrets you don’t want to create
  2. Only select actual secrets (API keys, tokens)

Issue: “Request body not formatted”

Symptoms: Body appears as one long line Fix: AI auto-formats JSON. If it’s not formatted:
  1. Check if body is valid JSON
  2. Try pasting just the JSON object: 
    {
  "key": "value"
}
  3. Or manually format in the body textarea after creation

Best Practices

1. Include Full Context

Good: 
const stripeKey = "sk_live_abc123";
fetch("https://api.stripe.com/v1/charges", {
  method: "POST",
  headers: { "Authorization": `Bearer ${stripeKey}` },
  body: JSON.stringify({ amount: 1000 })
});
Complete request with variable definitions Bad: 
fetch(url, options);
Not enough context

2. Paste Real Values (During Setup)

AI needs to see actual secrets to detect them: Use: 
const key = "sk_live_abc123xyz789";
Don’t use: 
const key = "YOUR_API_KEY_HERE";
Placeholders won’t be detected as secrets Remember: You can delete the value after route creation!

3. Clean Up Comments

Remove unnecessary comments that might confuse AI: Good: 
api_key = "sk_live_abc123"
response = requests.get(url, headers={"Authorization": f"Bearer {api_key}"})
Bad: 
# TODO: Replace this with your key
api_key = "sk_live_abc123" # Don't commit this!
# This is just for testing
response = requests.get(url, headers={"Authorization": f"Bearer {api_key}"}) # Fix later

4. One API Endpoint Per Paste (Usually)

For single route creation:
  • Paste code for ONE endpoint
  • Remove unrelated code
For multi-route creation:
  • Paste multiple endpoints if they’re related
  • AI will detect and offer batch creation

5. Verify AI Suggestions

Always review:
  • ✓ URL is correct
  • ✓ Secrets are real secrets (not placeholder strings)
  • ✓ Headers look right
  • ✓ Body structure matches your needs
Don’t blindly accept everything! AI is smart but not perfect.

6. Test After Creation

  1. Create route with AI setup
  2. Immediately test with Route Tester
  3. Verify secrets injected correctly
  4. Check backend receives proper requests
See Testing Routes for details.

Limitations

Cannot Detect Dynamic URLs

If URL is built programmatically: 
const url = buildUrl(config.apiEndpoint, params);
AI can’t resolve this. You’ll need to manually enter the URL.

Cannot Resolve Environment Variables

If secret is in environment: 
key = os.getenv("API_KEY")
AI detects that a secret is needed but doesn’t know the actual value. You’ll need to manually create the secret.

Limited SDK Support

If using high-level SDKs: 
const stripe = new Stripe(apiKey);
await stripe.customers.create({ email });
AI might not know the exact API endpoint being called. It tries to infer but may need manual correction.

Arrays in Body Not Always Detected

Complex nested arrays: 
{
  "items": [
    {"id": 1, "nested": {"deep": {"array": [1, 2, 3]}}}
  ]
}
May not parse perfectly. Review and adjust body structure after AI analysis.

No Support for GraphQL Yet

GraphQL queries aren’t currently supported: 
query {
  user(id: 123) {
    name
    email
  }
}
Use Manual Setup for GraphQL endpoints.
  • Manual Route Setup: Traditional step-by-step route creation
  • Visual Body Editor: Drag-and-drop configuration for complex JSON
  • Route Testing: Test AI-generated routes before going live
  • Secret Management: Manage detected secrets after creation

Next Steps

Test Your Route

Test AI-generated routes

Manage Secrets

Configure detected secrets

Visual Body Editor

Refine body injection visually

Manual Setup

Create routes manually

📊 Statistics

  • Level: beginner to intermediate
  • Time: 5 minutes

🏷️ Tags

ai, automation, setup, code-parsing, migration