Solution · API monitoring
A 200 is not enough. Validate the body.
Every API tells you it is healthy. Most tell the truth. Engager probes the canonical health endpoint, parses the JSON response, and confirms the field you actually rely on is present and equal to the value you expect.
Body validation
Pick a field. Pick a value. Engager does the rest.
Configure once per host: the path, the field path inside the JSON, and the expected value. Engager validates that the field exists and matches on every probe.
A 200 with the wrong status field opens an incident. A 503 closes it the moment the field returns to expected.
{
"host": "api.rookhq.com",
"path": "/health",
"expectedField": "status",
"expectedValue": "ok"
}Six regions
A regional outage is an outage. A global outage is a fire drill.
Probes fire from six regions in parallel. The dashboard shows the per region success matrix so a regional issue stays visible even when global uptime looks fine.
The status report flags any host where one region disagrees with the others, even when the majority is healthy.
Six regions
Disagreement is signal
Beyond the 200
Six probes layered into one round trip.
Status code
The first guard. Anything outside the configured success range opens an incident.
Body parse
JSON validated, required field path resolved, expected value compared.
TLS chain
Cert expiry, protocol version, cipher strength on every probe.
DNS truth
A and CNAME records compared to last known. Drift surfaces immediately.
Latency budget
P95 and P99 trended per host. Anomalies flagged against rolling baseline.
Headers
Required security headers present, CORS sane, cookies marked Secure and HttpOnly.
API specific
Public endpoints, internal endpoints, vendor endpoints.
Public endpoints
Customer facing API, CDN edges, marketing site backends. Probed from six regions, alerts to the on call channel.
Internal endpoints
Background workers exposing /health behind VPC. Engager probes via a tunnelled probe agent on the same network.
Vendor endpoints
Stripe, Paddle, Resend, Telegram, Github, Cloudflare. Watchdog re validates the credential, not just the route.