MobiusFlow Website

Authorization

API Authorization calls

The authorization controller is used to login to the API, in addition user management.

When a login call is completed, the API will return a bearer token which should be used in the auth header of all future calls. This token is set to expire 10 minutes after its generation.

A refresh token is also included in the login response, and this is used in the body of the refresh call to get new tokens with refreshed expiry times. Ensure a refresh call is made prior to any given bearer token's expiry to avoid having to login again.

Login to engine API

post
Body

Engine API Login credentials

usernamestringRequired

Username

passwordstringRequired

Password

Responses
post
/api/v1/auth/login

Refresh API tokens

post
Body

Refresh token data

refreshTokenstringRequired

Refresh token

Responses
post
/api/v1/auth/refresh

Add a new user

post
Body

New user data

usernamestringRequired

Username

passwordstring · min: 8Required

Password

Responses
post
/api/v1/auth/user

Get user ID

get
Path parameters
usernamestringRequired

Username

Responses
get
/api/v1/auth/user/{username}

Get all users

get
Responses
get
/api/v1/auth/users

Get user roles

get
Path parameters
_idstringRequired

User ID

Responses
get
/api/v1/auth/user/roles/{_id}

Set user roles

patch
Path parameters
_idstringRequired

User ID

Body

New roles information

Responses
patch
/api/v1/auth/user/roles/{_id}

Set user password

patch
Path parameters
_idstringRequired

User ID

Body

New password information

passwordstring · min: 8Required

New password

Responses
patch
/api/v1/auth/user/password/{_id}

Delete a user

delete
Path parameters
_idstringRequired
Responses
delete
/api/v1/auth/user/{_id}
PreviousMobiusFlow Engine APINextDiscover

Last updated

Was this helpful?