Security Service

Get access token - to be used as Bearer token header for all other API requests.

post

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Query parameters

newPasswordstringOptional

used when a user is trying to change her password. This will be the new password.

forgotPasswordbooleanOptional

A user forgot her password. She needs to present her e-mail address in the userId and set this to true

requirementsbooleanOptional

A user forgot her password. She needs to present her e-mail address in the userId and set this to true

resendMFACodebooleanOptional

completeMFAChallengebooleanOptional

Body

application/json

anyOptional

or

Responses

200

successful operation

application/json

Responseone of

or

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

post

/oauth2

HTTPcURLJavaScriptPython

POST /api/v1/oauth2 HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 53

{
  "userId": "support@example.com",
  "password": "support"
}

{
  "access_token": "text",
  "refresh_token": "text",
  "token_type": "text",
  "expires_in": 1,
  "idle_timeout": 1,
  "username": "text",
  "created": 1,
  "userMustChangePassword": true,
  "errorCode": 1,
  "aclTemplate": {
    "aclTemplate": {
      "Read": true,
      "ReadWrite": true,
      "ReadWriteCreate": true,
      "Delete": true,
      "PortalLogin": true
    }
  }
}

Revoke a token.

delete

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Path parameters

tokenstringRequired

Responses

204

successful operation

application/json

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

delete

/oauth2/{token}

HTTPcURLJavaScriptPython

DELETE /api/v1/oauth2/{token} HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

No content

Retrieve the system layout.

get

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Responses

200

successful operation

application/json

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

get

/systemEndpoints

HTTPcURLJavaScriptPython

GET /api/v1/systemEndpoints HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "endpoints": [
    {
      "type": "text",
      "id": 1,
      "vendor": "text",
      "uri": "https://example.com",
      "authenticationType": "text"
    }
  ]
}

Retrieve a list of existing users as well as some information about them.

get

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Query parameters

offsetinteger · int64Optional

limitinteger · int64Optional

filterstringOptional

Selecting this option means the newest record will be returned. Use limit to select how many.

idOnlybooleanOptional

Return only the ids.

selectstringOptional

Return only the ids.

Example: id1,id2,id3,id4,id5

Responses

200Success

No content

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

get

/users

HTTPcURLJavaScriptPython

GET /api/v1/users HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

No content

Retrieve the information for a single user.

get

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Path parameters

idstring · uuidRequired

Responses

200Success

No content

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

get

/user/{id}

HTTPcURLJavaScriptPython

GET /api/v1/user/{id} HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

No content

Create a single user.

post

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Path parameters

idinteger · int64Required

Query parameters

email_verificationbooleanOptional

Body

application/json

idstring · uuidOptional

namestringOptional

descriptionstringOptional

avatarstring · uriOptional

emailstring · emailOptional

validatedbooleanOptional

validationEmailstring · emailOptional

validationDateinteger · int64Optional

createdinteger · int64Optional

validationURIstringOptional

changePasswordbooleanOptional

lastLogininteger · int64Optional

currentLoginURIstringOptional

lastPasswordChangeinteger · int64Optional

lastEmailCheckinteger · int64Optional

currentPasswordstringOptional

lastPasswordsstring[]Optional

waitingForEmailCheckbooleanOptional

locationstring · uuidOptional

ownerstring · uuidOptional

suspendedbooleanOptional

blackListedbooleanOptional

localestringOptional

userRolestring · enumOptionalPossible values:

oauthTypestring · enumOptionalPossible values:

oauthUserInfostringOptional

securityPolicystringOptional

securityPolicyChangeinteger · int64Optional

Responses

200Success

No content

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

post

/user/{id}

HTTPcURLJavaScriptPython

POST /api/v1/user/{id} HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 869

{
  "id": "123e4567-e89b-12d3-a456-426614174000",
  "name": "text",
  "description": "text",
  "avatar": "https://example.com",
  "email": "name@gmail.com",
  "validated": true,
  "validationEmail": "name@gmail.com",
  "validationDate": 1,
  "created": 1,
  "validationURI": "text",
  "changePassword": true,
  "lastLogin": 1,
  "currentLoginURI": "text",
  "lastPasswordChange": 1,
  "lastEmailCheck": 1,
  "currentPassword": "text",
  "lastPasswords": [
    "text"
  ],
  "waitingForEmailCheck": true,
  "notes": [
    {
      "created": 1,
      "createdBy": "text",
      "note": "text"
    }
  ],
  "location": "123e4567-e89b-12d3-a456-426614174000",
  "owner": "123e4567-e89b-12d3-a456-426614174000",
  "suspended": true,
  "blackListed": true,
  "locale": "text",
  "userRole": "root",
  "oauthType": "internal",
  "oauthUserInfo": "text",
  "securityPolicy": "text",
  "securityPolicyChange": 1,
  "userTypeProprietaryInfo": {
    "mobiles": [
      {
        "number": "text",
        "verified": true,
        "primary": true
      }
    ],
    "mfa": {
      "enabled": true,
      "method": "sms"
    }
  }
}

No content

Modify a single user.

put

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Path parameters

idinteger · int64Required

Query parameters

email_verificationbooleanOptional

Body

application/json

idstring · uuidOptional

namestringOptional

descriptionstringOptional

avatarstring · uriOptional

emailstring · emailOptional

validatedbooleanOptional

validationEmailstring · emailOptional

validationDateinteger · int64Optional

createdinteger · int64Optional

validationURIstringOptional

changePasswordbooleanOptional

lastLogininteger · int64Optional

currentLoginURIstringOptional

lastPasswordChangeinteger · int64Optional

lastEmailCheckinteger · int64Optional

currentPasswordstringOptional

lastPasswordsstring[]Optional

waitingForEmailCheckbooleanOptional

locationstring · uuidOptional

ownerstring · uuidOptional

suspendedbooleanOptional

blackListedbooleanOptional

localestringOptional

userRolestring · enumOptionalPossible values:

oauthTypestring · enumOptionalPossible values:

oauthUserInfostringOptional

securityPolicystringOptional

securityPolicyChangeinteger · int64Optional

Responses

200Success

No content

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

put

/user/{id}

HTTPcURLJavaScriptPython

PUT /api/v1/user/{id} HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 869

{
  "id": "123e4567-e89b-12d3-a456-426614174000",
  "name": "text",
  "description": "text",
  "avatar": "https://example.com",
  "email": "name@gmail.com",
  "validated": true,
  "validationEmail": "name@gmail.com",
  "validationDate": 1,
  "created": 1,
  "validationURI": "text",
  "changePassword": true,
  "lastLogin": 1,
  "currentLoginURI": "text",
  "lastPasswordChange": 1,
  "lastEmailCheck": 1,
  "currentPassword": "text",
  "lastPasswords": [
    "text"
  ],
  "waitingForEmailCheck": true,
  "notes": [
    {
      "created": 1,
      "createdBy": "text",
      "note": "text"
    }
  ],
  "location": "123e4567-e89b-12d3-a456-426614174000",
  "owner": "123e4567-e89b-12d3-a456-426614174000",
  "suspended": true,
  "blackListed": true,
  "locale": "text",
  "userRole": "root",
  "oauthType": "internal",
  "oauthUserInfo": "text",
  "securityPolicy": "text",
  "securityPolicyChange": 1,
  "userTypeProprietaryInfo": {
    "mobiles": [
      {
        "number": "text",
        "verified": true,
        "primary": true
      }
    ],
    "mfa": {
      "enabled": true,
      "method": "sms"
    }
  }
}

No content

Delete a single user.

delete

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Path parameters

idinteger · int64Required

Responses

204

The requested operation was performed.

application/json

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

delete

/user/{id}

HTTPcURLJavaScriptPython

DELETE /api/v1/user/{id} HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "Operation": "text",
  "Details": "text",
  "Code": 1
}

Retrieve the avatar associated with a user ID.

get

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Path parameters

idstring · uuidRequired

Responses

200

Successfully retrieved the avatar

image/jpegimage/pngimage/svg+xml

Responsestring · binary

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

get

/avatar/{id}

HTTPcURLJavaScriptPython

GET /api/v1/avatar/{id} HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

binary

Create an avatar associated with a user ID.

post

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Path parameters

idstring · uuidRequired

Body

image/jpegimage/pngimage/svg+xml

string · binaryOptional

Responses

200

The requested operation was performed.

application/json

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

post

/avatar/{id}

HTTPcURLJavaScriptPython

POST /api/v1/avatar/{id} HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: image/jpeg
Accept: */*
Content-Length: 8

"binary"

image/jpegimage/pngimage/svg+xml

{
  "Operation": "text",
  "Details": "text",
  "Code": 1
}

Remove an avatar associated with a user ID.

delete

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Path parameters

idstring · uuidRequired

Responses

204

The requested operation was performed.

application/json

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

delete

/avatar/{id}

HTTPcURLJavaScriptPython

DELETE /api/v1/avatar/{id} HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "Operation": "text",
  "Details": "text",
  "Code": 1
}

Send test email with the system.

post

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Body

application/json

fromstring · emailOptional

subjectstringOptional

recipientsstring · email[]Optional

textstringOptional

Responses

200

The requested operation was performed.

application/json

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

500

Error description

application/json

post

/email

HTTPcURLJavaScriptPython

POST /api/v1/email HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 88

{
  "from": "name@gmail.com",
  "subject": "text",
  "recipients": [
    "name@gmail.com"
  ],
  "text": "text"
}

{
  "Operation": "text",
  "Details": "text",
  "Code": 1
}

Send test email with the system.

post

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Query parameters

validateNumberbooleanOptional

completeValidationbooleanOptional

validationCodestringOptional

Body

application/json

fromstringOptional

tostringOptional

textstringOptional

Responses

200

The requested operation was performed.

application/json

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

500

Error description

application/json

post

/sms

HTTPcURLJavaScriptPython

POST /api/v1/sms HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 41

{
  "from": "text",
  "to": "text",
  "text": "text"
}

{
  "Operation": "text",
  "Details": "text",
  "Code": 1
}

Retrieve the list of security profiles for a specific service type.

get

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Query parameters

offsetintegerOptional

Pagination start (starts at 1. If not specified, 1 is assumed)

limitintegerOptional

Maximum number of entries to return (if absent, no limit is assumed)

filterstringOptional

Filter the results

Responses

200Success

No content

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

get

/securityProfiles

HTTPcURLJavaScriptPython

GET /api/v1/securityProfiles HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

No content

Retrieve the basic system information. This information is used between services only.

get

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Responses

200Success

No content

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

get

/systemServices

HTTPcURLJavaScriptPython

GET /api/v1/systemServices HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

No content

Allows any microservice to validate a token and get security policy for a specific user.

get

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Query parameters

tokenstringRequired

Responses

200Success

No content

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

get

/validateToken

HTTPcURLJavaScriptPython

GET /api/v1/validateToken?token=text HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

No content

Retrieve different values from the running service.

get

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Query parameters

commandstring · enumRequired

Get a value

Possible values:

Responses

200

Successful command execution

application/json

Responseone of

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

get

/system

HTTPcURLJavaScriptPython

GET /api/v1/system?command=info HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "version": "text",
  "uptime": 1,
  "start": 1,
  "os": "text",
  "processors": 1,
  "hostname": "text",
  "certificates": [
    {
      "filename": "text",
      "expires": 1
    }
  ]
}

Perform some system wide commands.

post

Authorizations

bearerAuthApiKeyAuth

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Body

application/json

anyOptional

or

or

or

or

Responses

200

Successful command execution

application/json

Responseone of

or

or

403

The requested does not have sufficient rights to perform the operation.

application/json

404

The specified resource was not found.

application/json

post

/system

HTTPcURLJavaScriptPython

POST /api/v1/system HTTP/1.1
Host: localhost:16001
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 70

{
  "command": "setloglevel",
  "subsystems": [
    {
      "tag": "text",
      "value": "text"
    }
  ]
}

{
  "taglist": [
    {
      "tag": "text",
      "value": "text"
    }
  ]
}