User Management API
Endpoints to perform user and session management
Auth ¶
Session management ¶
Create sessionPOST/
Authenticate with the system, returning a session token to be used with API
Example URI
POST /
Request
Headers
Content-Type: application/jsonBody
{
"username": "admin",
"passwd": "admin"
}Response
200Headers
Content-Type: application/jsonBody
{
"jwt": "eyJhb ... pXVCJ9.eyJpc ... 3MIn0.j1iYHo ... yae88PvodY"
}Response
400Headers
Content-Type: application/jsonBody
{
"status": 400,
"message": "invalid mimetype"
}Response
400Headers
Content-Type: application/jsonBody
{
"status": 400,
"message": "missing passswd"
}Response
400Headers
Content-Type: application/jsonBody
{
"status": 400,
"message": "missing username"
}Response
400Headers
Content-Type: application/jsonBody
{
"message": "not authorized",
"status": 401
}Known users manipulation ¶
List known usersGET/user
Lists all users known to the platform
Example URI
GET /user
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"users": [
{
"created_by": "0",
"created_date": "2018-01-03 12:49:25.717374",
"email": "admin@noemail.com",
"id": "1",
"name": "Admin (superuser)",
"profile": "admin",
"service": "admin",
"username": "admin"
},
{
"created_by": "1",
"created_date": "2018-01-04 13:09:03.568749",
"email": "test@noemail.com",
"id": "2",
"name": "test",
"profile": "user",
"service": "test",
"username": "test"
}
]
}Response
401Headers
Content-Type: application/jsonBody
{
"message": "Unauthorized"
}Register a new userPOST/user
Creates a new user, assigning it a service.
Service is the token that associates the user with the set of devices and flows it has access to.
Example URI
POST /user
Request
Headers
Content-Type: application/json
Authorization: Bearer JWTBody
{
"username": "test",
"service": "test",
"email": "test@noemail.com",
"name": "test",
"profile": "user"
}Response
200Headers
Content-Type: application/jsonBody
[
{
"user": {
"id": "2",
"name": "test",
"username": "test",
"service": "test",
"email": "test@noemail.com",
"profile": "user",
"created_date": "2018-01-04 13:09:03.568749",
"created_by": "0"
},
"groups": [
"user"
],
"could not add": [],
"message": "user created"
}
]Response
401Headers
Content-Type: application/jsonBody
{
"message": "Unauthorized"
}Individual user settings ¶
Access a user’s authorization and identification information
Get user infoGET/user/
Retrieves all information from a specific registered user
Example URI
GET /user/
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"user": {
"created_by": "0",
"created_date": "2018-01-03 12:49:25.717374",
"email": "admin@noemail.com",
"id": "1",
"name": "Admin (superuser)",
"profile": "admin",
"service": "admin",
"username": "admin"
}
}Response
401Headers
Content-Type: application/jsonBody
{
"message": "Unauthorized"
}Response
404Headers
Content-Type: application/jsonBody
{
"message": "No user found with this ID",
"status": 404
}Update user infoPUT/user/
Replaces user information. Fields or attributes that are not informed will revert to their defaults.
Example URI
PUT /user/
Request
Headers
Content-Type: application/json
Authorization: Bearer JWTBody
{
"service": "test",
"email": "test_new@noemail.com",
"name": "test",
"profile": "user"
}Response
200Headers
Content-Type: application/jsonBody
{
"message": "ok",
"status": 200
}Response
401Headers
Content-Type: application/jsonBody
{
"message": "Unauthorized"
}Response
404Headers
Content-Type: application/jsonBody
{
"message": "Unknown user id",
"status": 404
}Remove userDELETE/user/
Removes a user from the system
Example URI
DELETE /user/
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"message": "User removed",
"status": 200
}Response
401Headers
Content-Type: application/jsonBody
{
"message": "Unauthorized"
}Response
404Headers
Content-Type: application/jsonBody
{
"message": "User was not found",
"status": 200
}List tenant services ¶
List all known tenants in dojot
This is an internal call used for debugging, and for service initialization procedure. Hence only calls issued from within the platform will be accepted.
List tenantsGET/admin/tenants
List all tenants currently configured in dojot
Example URI
GET /admin/tenants
Response
200Headers
Content-Type: application/jsonBody
{
"tenants": [
"admin",
"test"
]
}
FORMAT: 1ACRUD Permissions and Group ¶
Permissions creation and search ¶
Create a new permissionPOST/pap/permission
Notice that regular expressions can be used on the ‘path’ and ‘method’ fields, and all slashes that serve to escape some characters (’*’, in the example) must also be escaped
Example URI
POST /pap/permission
Request
Headers
Content-Type: application/json
Authorization: Bearer JWTBody
{
"path": "/devices/info/\\*",
"method": "POST|PUT|DELETE",
"permission": "permit",
"name": "device_write_operations"
}Response
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"id": 131
}Search permissionGET/pap/permission?{path,method,permission}
Example URI
GET /pap/permission?\/devices\/info&POST&permit
URI Parameters
- path
string(optional) Example: \/devices\/infoa path string.
- method
enum(optional) Example: POSTone HTTP method.
- permission
enum(optional) Example: permit“permit” or “deny”.
Request
Headers
Content-Type: application/json
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"permissions": [
{
"id": 131,
"path": "/devices/info/\\*",
"method": "POST|PUT|DELETE",
"permission": "permit"
}
]
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No permission found with these filters"
}Permissions management ¶
Get a permissionGET/pap/permission/{id}
Example URI
GET /pap/permission/1
URI Parameters
- id
integer(required) Example: 1The permission ID
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"id": 131,
"path": "/devices/info/\\*",
"method": "POST|PUT|DELETE",
"permission": "permit"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No permission found with this ID"
}Update a permissionPUT/pap/permission/{id}
Example URI
PUT /pap/permission/1
URI Parameters
- id
integer(required) Example: 1The permission ID
Request
Headers
Content-Type: application/json
Authorization: Bearer JWTBody
{
"path": "/devices/info/\\*",
"method": "POST|PUT|DELETE",
"permission": "permit",
"name": "sample_permission"
}Response
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No permission with found this ID"
}Remove a permissionDELETE/pap/permission/{id}
Example URI
DELETE /pap/permission/1
URI Parameters
- id
integer(required) Example: 1The permission ID
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No permission found with this ID"
}Group creation ¶
Create a new groupPOST/pap/group
Example URI
POST /pap/group
Request
Headers
Content-Type: application/json
Authorization: Bearer JWTBody
{
"name": "group1",
"description": "a fine group"
}Response
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"id": 3
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "Group named group1 already exists"
}Search GroupsGET/pap/group?name={name}
Example URI
GET /pap/group?name=admin
URI Parameters
- name
string(optional) Example: admina group name, or part of a group name.
Response
200Headers
Content-Type: application/jsonBody
{
"groups": [
{
"id": 3,
"name": "admin",
"description": "Full privilege group"
}
]
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with these filters"
}Group management ¶
Get a groupGET/pap/group/{id}
Example URI
GET /pap/group/1
URI Parameters
- id
integer(required) Example: 1group ID
Response
200Headers
Content-Type: application/jsonBody
{
"id": 3,
"name": "group1",
"description": null
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with this ID"
}Update a groupPUT/pap/group/{id}
Example URI
PUT /pap/group/1
URI Parameters
- id
integer(required) Example: 1group ID
Request
Headers
Content-Type: application/json
Authorization: Bearer JWTBody
{
"name": "admin",
"description": "projectX"
}Response
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with this ID"
}Remove a groupDELETE/pap/group/{id}
Example URI
DELETE /pap/group/1
URI Parameters
- id
integer(required) Example: 1group ID
Request
Headers
Content-Type: application/json
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with this ID"
}
FORMAT: 1ARelationship management ¶
Manage relationships between users and groups ¶
Add user to groupPOST/pap/usergroup/{user_id}/{group_id}
Example URI
POST /pap/usergroup/1/101
URI Parameters
- user_id
string(required) Example: 1The user ID
- group_id
string(required) Example: 101The group ID
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No user found with this ID"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with this ID"
}Remove a user from groupDELETE/pap/usergroup/{user_id}/{group_id}
Example URI
DELETE /pap/usergroup/1/101
URI Parameters
- user_id
string(required) Example: 1The user ID
- group_id
string(required) Example: 101The group ID
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No user found with this ID"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with this ID"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 400,
"message": "Can't remove user. A user must always be in one role group"
}Manage relationships between users and permissions ¶
Give a permission to a userPOST/pap/userpermissions/{user_id}/{permission_id}
Example URI
POST /pap/userpermissions/1/201
URI Parameters
- user_id
string(required) Example: 1The user ID
- permission_id
string(required) Example: 201The permission ID to be changed
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No user found with this ID"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No permission found with this ID"
}Revoke a user permissionDELETE/pap/userpermissions/{user_id}/{permission_id}
Example URI
DELETE /pap/userpermissions/1/201
URI Parameters
- user_id
string(required) Example: 1The user ID
- permission_id
string(required) Example: 201The permission ID to be changed
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No user found with this ID"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No permission found with this ID"
}Manage relationships between group and permissions ¶
Give a permission to a groupPOST/pap/grouppermissions/{group_id}/{permission_id}
Example URI
POST /pap/grouppermissions/101/201
URI Parameters
- group_id
string(required) Example: 101The group ID
- permission_id
string(required) Example: 201The permission ID to be changed
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with this ID"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No permission found with this ID"
}Revoke a group permissionDELETE/pap/grouppermissions/{group_id}/{permission_id}
Example URI
DELETE /pap/grouppermissions/101/201
URI Parameters
- group_id
string(required) Example: 101The group ID
- permission_id
string(required) Example: 201The permission ID to be changed
Request
Headers
Authorization: Bearer JWTResponse
200Headers
Content-Type: application/jsonBody
{
"status": 200,
"message": "ok"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with this ID"
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No permission found with this ID"
}
FORMAT: 1AReports ¶
User direct permissions ¶
Retrieve user direct permissionsGET/pap/user/{user}/directpermissions
Example URI
GET /pap/user/admin/directpermissions
URI Parameters
- user
string(required) Example: adminuser being requested.
Response
200Headers
Content-Type: application/jsonBody
{
"permissions": [
{
"id": 130,
"path": "/exceptional/path\\*",
"method": "POST|PUT|DELETE",
"permission": "permit"
},
{
"id": 136,
"path": "/cantaccess",
"method": "\\*",
"permission": "deny"
}
]
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No user found with tihs username or ID"
}All user permissions ¶
Retrieve all user permissionsGET/pap/user/{user}/allpermissions
Example URI
GET /pap/user/admin/allpermissions
URI Parameters
- user
string(required) Example: adminuser being requested.
Response
200Headers
Content-Type: application/jsonBody
{
"permissions": [
{
"id": 131,
"path": "/devices/info/\\*",
"method": "POST|PUT|DELETE",
"permission": "permit"
},
{
"id": 132,
"path": "/auth/user",
"method": "\\*",
"permission": "deny"
}
]
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No user found with tihs username or ID"
}User groups ¶
Retrieve all user groupsGET/pap/user/{user}/groups
Example URI
GET /pap/user/admin/groups
URI Parameters
- user
string(required) Example: adminuser being requested.
Response
200Headers
Content-Type: application/jsonBody
{
"groups": [
{
"id": 3,
"name": "group1"
},
{
"id": 4,
"name": "admin"
}
]
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No user found with tihs username or ID"
}Group permissions ¶
Retrieve all group permissionsGET/pap/group/{group}/permissions
Example URI
GET /pap/group/users/permissions
URI Parameters
- group
string(required) Example: usersuser being requested.
Response
200Headers
Content-Type: application/jsonBody
{
"permissions": [
{
"id": 131,
"path": "/devices/info/\\*",
"method": "POST|PUT|DELETE",
"permission": "permit"
},
{
"id": 132,
"path": "/auth/user",
"method": "\\*",
"permission": "deny"
}
]
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with this name or ID"
}Group users ¶
Retrieve all users from a groupGET/pap/group/{group}/users
Example URI
GET /pap/group/users/users
URI Parameters
- group
string(required) Example: usersuser being requested.
Response
200Headers
Content-Type: application/jsonBody
{
"users": [
{
"id": 3252352,
"name": "Alexandre Vasconcellos",
"email": "alex@noemai.com",
"username": "aexv",
"service": "user"
},
{
"id": 1124235532,
"name": "John Wayne",
"email": "wayne@company.com",
"username": "johnw",
"service": "user"
}
]
}Response
404Headers
Content-Type: application/jsonBody
{
"status": 404,
"message": "No group found with this name or ID"
}