Introduction
This documentation aims to provide all the information you need to work with our API.
Authenticating requests
To authenticate requests, include an Authorization header with the value "Bearer {ACCESS_TOKEN}".
All authenticated endpoints are marked with a requires authentication badge in the documentation below.
Token based authentication
You can retrieve your access token by calling api/login endpoint.
Access tokens are valid 7 days, then expire. You can obtain new access token with expiring access token by calling /api/token/refresh. You can only refresh still valid tokens, otherwise new request to api/login will be required.
Cookie based authentication
You can also authenticate using cookie-based sessions. Before calling any other endpoints you have to obtain XSRF cookie by hitting /sanctum/csrf-cookie endpoint.
In return you receive XSRF-TOKEN cookie, which content you have to attach to each request as X-XSRF-TOKEN header.
Then call /login endpoint. When your authenticated session is created, call any endpoint using X-XSRF-TOKEN header.
Multi-Factor Authorization (MFA)
User can protect its account setting up the MFA as email or one-time passwords (OTP).
If mfa_enabled is set to 1 and mfa_method is set to any of email or otp values,
user will have to use preferred method as second factor on login.
If mfa_method is email, API will automatically send MFA code to user's email inbox.
Most of API endpoints are secured with additional layer and cannot be properly called without this second-factor authorization done.
Instead of endpoint response API will reply with message "MFA is required for this request." and HTTP code 401 Unauthorized.
That means user did not successfully authorized itself with second-factor.
Multi-Factor Authorization (MFA) - Remember Session
The user has the option to remember their device, which means they won't have to enter the MFA code for 30 days.
If using a Token based authentication, you need to add a header named X-MFA-Session-Token with the value {mfa_token} obtained from the /verify endpoint.
Appendix A. Laravel validation rules
List of validation codes returned for Laravel's built-in validation rules:
1, true, "yes" or "on".other field equals to value. Accepted values are the same as in MUST_BE_ACCEPTED.dns_get_record PHP function.date.date.date.date.min and max.min and max KB.min and max.min and max elements.true, false, 1, 0, "1" and "0".{field}_confirmation.strtotime PHP function.date.other.digits digits.min and max digits.value.value.value KB.value.value elements.value.value KB.value.value elements.values list.other field values.value.value KB.value.value elements.value.value KB.value.value elements.value.value KB.value.value elements.Note that the rule uses file extensions, but Laravel internally verifies the actual MIME type using the file's contents.
value.value KB.value.value elements.value.values list. This is the opposite of MUST_BE_IN rule.Field is considered empty if its value is null, an empty string, an empty array or a file input with no file uploaded.
other field is equal to value.other field is equal to value.values are present and not empty.values are present and not empty.values are not present or empty.values are not present or empty.other field is equal to value.other field is equal to value.other field can't be present at the same time.other field.size.size KB.size.size elements.value.timezone_identifiers_list PHP function.More detailed information about validation rules can be found in Laravel documentation.
Appendix B. Custom validation rules
List of custom validation rules messages:
maxmax.max_sizemax_size KB./api/timezones endpoint.content_typeRULES:URL_EXISTS_RULE:NOT_FOUND
If
content_type was specified, the rule also verifies the returned Content-Type header. If it doesn't match, the error code will include EXPECTED_CONTENT_TYPE:content_type.Otherwise, it only checks the status code and returns
NOT_FOUND if it's not 200.Fails if HTTP code is not 200 or the Content-Type doesn't match the expected value (if specified).
Acadle
Endpoints related to Acadle integration
Acadle SSO
requires authentication
Creates the SSO authorization link. The link expires after 60 seconds, but can be re-generated without any limits.
Example request:
curl --request POST \
"http://localhost:8000/api/acadle/sso" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/sso"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"sso_url": "https://adp.acadle.com/sso/authenticate/callback?ssoToken=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE3MzczNzU3OTksImV4cCI6MTczNzM3NTg1OSwiZmlyc3RuYW1lIjoiVG9tIiwibGFzdG5hbWUiOiJTbWl0aCIsImVtYWlsIjoidGVzdEBleGFtcGxlLmNvbSIsInVzZXJuYW1lIjpudWxsLCJ0aW1lem9uZSI6IlVUQyJ9.VzE2q6V53bdYJM7aB6CWWxDqcxF4gpdiEF80dD9j-5k",
"sso_expires": 1737375859
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SSO:INSUFFICIENT_PERMISSION"
}
Example response (403, Survey required):
{
"message": "Completing the survey is required to proceed to Acadle",
"code": "ACADLE:SSO:SURVEY_REQUIRED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Check Acadle survey status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"survey_sent": false,
"survey_id": null
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get Acadle survey data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 300,
"cpo_number": "8330",
"country": "Poland",
"medical_training": "biomedical_engineer",
"myo_exp_zeus": "0",
"has_demo_hand_access": 0,
"wants_demo_hand": 0,
"myo_exp_covvi": 1,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 1,
"myo_exp_taska": 0,
"myo_exp_vincent": 0,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Voluptas reprehenderit sit quasi beatae atque.",
"partial_hand_protheses": "4",
"below_elbow_protheses_single_action": "0",
"below_elbow_protheses_multi_action": "1",
"above_elbow_protheses": "3",
"shoulder_protheses": "4",
"zeus_components_description": "Sapiente sit porro asperiores voluptatem.",
"contact_name": "Brando",
"contact_surname": "Kemmer",
"company_name": "Koch-Conroy",
"street": "5204 Stefan Plaza Suite 336",
"city": "Cartwrightside",
"postal_code": "84557",
"email": "jimmie.bahringer@okon.org",
"phone": "240.990.7913",
"phone_country": "ua",
"device_side": "R",
"created_at": "2026-07-08T15:48:37.000000Z",
"updated_at": "2026-07-08T15:48:37.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_RESULTS:INSUFFICIENT_PERMISSION"
}
Example response (404, Survey not found):
{
"message": "Survey not found",
"code": "ACADLE:SURVEY_RESULTS:SURVEY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get Acadle survey data (SuperAdmin)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"id": 2,
"user_id": 301,
"cpo_number": "579",
"country": "United States of America",
"medical_training": "physiotherapist",
"myo_exp_zeus": "1",
"has_demo_hand_access": 1,
"wants_demo_hand": 0,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 1,
"myo_exp_ottobock": 0,
"myo_exp_steeper": 0,
"myo_exp_taska": 1,
"myo_exp_vincent": 0,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Tenetur quidem enim voluptas inventore et.",
"partial_hand_protheses": "1",
"below_elbow_protheses_single_action": "4",
"below_elbow_protheses_multi_action": "3",
"above_elbow_protheses": "3",
"shoulder_protheses": "3",
"zeus_components_description": "Eum amet est odio eum.",
"contact_name": "Jaren",
"contact_surname": "Howell",
"company_name": "Graham LLC",
"street": "8989 Hosea Point",
"city": "New Harmonfort",
"postal_code": "31575",
"email": "rahsaan84@wisozk.com",
"phone": "+12298335220",
"phone_country": "cy",
"device_side": "R",
"created_at": "2026-07-08T15:48:38.000000Z",
"updated_at": "2026-07-08T15:48:38.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:USER_NOT_FOUND"
}
Example response (404, Survey not found):
{
"message": "Survey not found",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:SURVEY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
List all Acadle surveys (SuperAdmin)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/surveys?search=john" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/surveys"
);
const params = {
"search": "john",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"user_id": 302,
"cpo_number": "494",
"country": "Morocco",
"medical_training": "physiotherapist",
"myo_exp_zeus": "1",
"has_demo_hand_access": 0,
"wants_demo_hand": 1,
"myo_exp_covvi": 1,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 0,
"myo_exp_taska": 1,
"myo_exp_vincent": 0,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Totam enim qui et nihil culpa esse consequatur itaque.",
"partial_hand_protheses": "2",
"below_elbow_protheses_single_action": "1",
"below_elbow_protheses_multi_action": "3",
"above_elbow_protheses": "1",
"shoulder_protheses": "1",
"zeus_components_description": "Ut vero animi ut libero.",
"contact_name": "Brenda",
"contact_surname": "Heathcote",
"company_name": "Shields PLC",
"street": "18493 Daryl Springs",
"city": "West Jovanyberg",
"postal_code": "60808-7690",
"email": "ehamill@nitzsche.com",
"phone": "+1 (508) 269-7884",
"phone_country": "gn",
"device_side": "R",
"created_at": "2026-07-08T15:48:39.000000Z",
"updated_at": "2026-07-08T15:48:39.000000Z"
},
{
"id": 4,
"user_id": 303,
"cpo_number": "4399691",
"country": "Sweden",
"medical_training": "clinician",
"myo_exp_zeus": "1",
"has_demo_hand_access": 1,
"wants_demo_hand": 1,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 1,
"myo_exp_taska": 1,
"myo_exp_vincent": 0,
"myo_exp_pattern_recognition": 0,
"myo_exp_other": "Corporis ut architecto et ut ex voluptatem.",
"partial_hand_protheses": "3",
"below_elbow_protheses_single_action": "2",
"below_elbow_protheses_multi_action": "2",
"above_elbow_protheses": "4",
"shoulder_protheses": "5",
"zeus_components_description": "Ut aliquid id id natus itaque.",
"contact_name": "Anibal",
"contact_surname": "Kuhic",
"company_name": "Gleason PLC",
"street": "4902 Hyatt Plain",
"city": "Fannietown",
"postal_code": "37479",
"email": "kfunk@bartoletti.com",
"phone": "520-762-9069",
"phone_country": "er",
"device_side": "R",
"created_at": "2026-07-08T15:48:40.000000Z",
"updated_at": "2026-07-08T15:48:40.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEYS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Send Acadle survey
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/acadle/survey" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"cpo_number\": 9,
\"country\": \"United States Virgin Islands\",
\"medical_training\": \"physiotherapist\",
\"myo_exp_zeus\": false,
\"myo_exp_covvi\": false,
\"myo_exp_fillauer\": false,
\"myo_exp_ossur\": false,
\"myo_exp_ottobock\": false,
\"myo_exp_steeper\": false,
\"myo_exp_taska\": false,
\"myo_exp_vincent\": false,
\"myo_exp_pattern_recognition\": false,
\"myo_exp_other\": \"Id qui quasi voluptas libero nostrum architecto repudiandae at.\",
\"has_demo_hand_access\": false,
\"wants_demo_hand\": false,
\"partial_hand_protheses\": \"1-5\",
\"below_elbow_protheses_single_action\": \"1-5\",
\"below_elbow_protheses_multi_action\": \"5-10\",
\"above_elbow_protheses\": \"50+\",
\"shoulder_protheses\": \"1-5\",
\"zeus_components_description\": \"Repellendus quae occaecati et illum.\",
\"contact_name\": \"Jerrod\",
\"company_name\": \"Rosenbaum, Considine and Turcotte\",
\"street\": \"584 Meta Skyway\",
\"city\": \"Port Mauriciofort\",
\"postal_code\": \"57397\",
\"email\": \"krajcik.myrtle@torphy.com\",
\"phone\": \"1-732-767-8159\",
\"phone_country\": \"DO\",
\"device_side\": \"L\"
}"
const url = new URL(
"http://localhost:8000/api/acadle/survey"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"cpo_number": 9,
"country": "United States Virgin Islands",
"medical_training": "physiotherapist",
"myo_exp_zeus": false,
"myo_exp_covvi": false,
"myo_exp_fillauer": false,
"myo_exp_ossur": false,
"myo_exp_ottobock": false,
"myo_exp_steeper": false,
"myo_exp_taska": false,
"myo_exp_vincent": false,
"myo_exp_pattern_recognition": false,
"myo_exp_other": "Id qui quasi voluptas libero nostrum architecto repudiandae at.",
"has_demo_hand_access": false,
"wants_demo_hand": false,
"partial_hand_protheses": "1-5",
"below_elbow_protheses_single_action": "1-5",
"below_elbow_protheses_multi_action": "5-10",
"above_elbow_protheses": "50+",
"shoulder_protheses": "1-5",
"zeus_components_description": "Repellendus quae occaecati et illum.",
"contact_name": "Jerrod",
"company_name": "Rosenbaum, Considine and Turcotte",
"street": "584 Meta Skyway",
"city": "Port Mauriciofort",
"postal_code": "57397",
"email": "krajcik.myrtle@torphy.com",
"phone": "1-732-767-8159",
"phone_country": "DO",
"device_side": "L"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"user_id": 304,
"cpo_number": "9820",
"country": "Marshall Islands",
"medical_training": "biomedical_engineer",
"myo_exp_zeus": "0",
"has_demo_hand_access": 0,
"wants_demo_hand": 0,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 0,
"myo_exp_ossur": 1,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 1,
"myo_exp_taska": 0,
"myo_exp_vincent": 0,
"myo_exp_pattern_recognition": 0,
"myo_exp_other": "Ducimus autem ut ipsam et eos hic.",
"partial_hand_protheses": "0",
"below_elbow_protheses_single_action": "5",
"below_elbow_protheses_multi_action": "2",
"above_elbow_protheses": "5",
"shoulder_protheses": "2",
"zeus_components_description": "Sit repellendus dicta autem rerum aut pariatur.",
"contact_name": "Piper",
"contact_surname": "Kohler",
"company_name": "Roberts Group",
"street": "4548 Era Well",
"city": "East Nehamouth",
"postal_code": "31464",
"email": "chet.cole@effertz.org",
"phone": "+1-832-751-1287",
"phone_country": "ca",
"device_side": "L",
"created_at": "2026-07-08T15:48:40.000000Z",
"updated_at": "2026-07-08T15:48:40.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_SEND:INSUFFICIENT_PERMISSION"
}
Example response (403, Survey already sent):
{
"message": "Survey already sent",
"code": "ACADLE:SURVEY_SEND:SURVEY_ALREADY_SENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Activation codes
API endpoints for activation codes
Get activation codes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"code": "SN7NJQ",
"created_by": 41,
"used_by": 42,
"used_at": null,
"active": 1,
"created_at": "2026-07-08T15:46:35.000000Z",
"updated_at": "2026-07-08T15:46:35.000000Z"
},
{
"id": 2,
"code": "CC89XL",
"created_by": 43,
"used_by": 44,
"used_at": null,
"active": 1,
"created_at": "2026-07-08T15:46:36.000000Z",
"updated_at": "2026-07-08T15:46:36.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get active activation codes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes/active" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/active"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"code": "7NFKQP",
"created_by": 45,
"used_by": 46,
"used_at": null,
"active": 0,
"created_at": "2026-07-08T15:46:37.000000Z",
"updated_at": "2026-07-08T15:46:37.000000Z"
},
{
"id": 4,
"code": "88UL3H",
"created_by": 47,
"used_by": 48,
"used_at": null,
"active": 0,
"created_at": "2026-07-08T15:46:38.000000Z",
"updated_at": "2026-07-08T15:46:38.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:ACTIVE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Find activation code
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes/find/voluptas" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/find/voluptas"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 5,
"code": "M6N9KW",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 1,
"created_at": "2026-07-08T15:46:38.000000Z",
"updated_at": "2026-07-08T15:46:38.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:FIND:INSUFFICIENT_PERMISSION"
}
Example response (404, Activation code not found):
{
"message": "Activation code not found",
"code": "ACTIVATION_CODE:FIND:CODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Create activation code
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/activation-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 6,
"code": "YRGMVC",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 0,
"created_at": "2026-07-08T15:46:38.000000Z",
"updated_at": "2026-07-08T15:46:38.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Server error):
{
"message": "Server error: activation code not created",
"code": "ACTIVATION_CODE:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Create activation code (multi-region)
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/activation-codes/14" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/14"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 7,
"code": "FVNFV4",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 1,
"created_at": "2026-07-08T15:46:38.000000Z",
"updated_at": "2026-07-08T15:46:38.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Deactivate activation code
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/activation-codes/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202):
{
"id": 8,
"code": "BUYMDL",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 0,
"created_at": "2026-07-08T15:46:38.000000Z",
"updated_at": "2026-07-08T15:46:38.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:DEACTIVATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Activation code is not active):
{
"message": "Cannot deactivate: code is not active",
"code": "ACTIVATION_CODE:DEACTIVATE:CODE_NOT_ACTIVE"
}
Example response (404, Activation code not found):
{
"message": "Activation code not found",
"code": "ACTIVATION_CODE:DEACTIVATE:CODE_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: activation code not deactivated",
"code": "ACTIVATION_CODE:DEACTIVATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Authentication
API endpoints for managing authentication
Login user
Example request:
curl --request POST \
"http://localhost:8000/api/login" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/api/login"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Example response (403, Too many attempts):
{
"message": "Login: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (422, Invalid credentials):
{
"message": "The given data was invalid.",
"errors": {
"email": [
"Given credentials not found"
]
},
"code": "AUTH:LOGIN:INVALID_CREDENTIALS"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Register user
Example request:
curl --request POST \
"http://localhost:8000/api/register" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"region\": \"us\",
\"name\": \"Tom Smith\",
\"email\": \"name@domain.com\",
\"password\": \"Test123!\",
\"phone\": \"641-325-1153\",
\"phone_country\": \"US\",
\"language\": \"en\",
\"clinic_name\": \"Parker-Walker\",
\"clinic_location\": \"Batztown\",
\"address1\": \"823 Heaney Valleys Apt. 240\",
\"address2\": \"Craigville, DE 92388-3661\",
\"mfa_enabled\": true,
\"mfa_method\": \"email\",
\"activation_code\": \"1A2B3C\"
}"
const url = new URL(
"http://localhost:8000/api/register"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"region": "us",
"name": "Tom Smith",
"email": "name@domain.com",
"password": "Test123!",
"phone": "641-325-1153",
"phone_country": "US",
"language": "en",
"clinic_name": "Parker-Walker",
"clinic_location": "Batztown",
"address1": "823 Heaney Valleys Apt. 240",
"address2": "Craigville, DE 92388-3661",
"mfa_enabled": true,
"mfa_method": "email",
"activation_code": "1A2B3C"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 2,
"mrn": "823ZLHZH1783525573",
"name": "Cali Goldner II",
"email": "1783525573isabelle41@example.org",
"language": "en",
"phone": "(925) 994-7968",
"phone_country": "GL",
"phone_verified_at": null,
"address1": "362 Nolan Ridges",
"address2": "South Ezekiel, MD 27271",
"postal_code": "87996-4991",
"city": "Roberts-DuBuque",
"country": "US",
"clinic_name": "Nolanland",
"clinic_location": "71227 Leonora Garden Apt. 581\nOdessatown, AL 51339",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:13.000000Z",
"updated_at": "2026-07-08T15:46:13.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 3,
"name": "ClinicAdmin"
}
]
}
Example response (403, Too many attempts):
{
"message": "Register: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "AUTH:REGISTER:EMAIL_IN_USE"
}
Example response (403, Activation code is incorrect):
{
"message": "Activation code is incorrect",
"code": "AUTH:REGISTER:INCORRECT_CODE"
}
Example response (500, Server error):
{
"message": "Server error: user not created",
"code": "AUTH:REGISTER:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Register mobile user
Example request:
curl --request POST \
"http://localhost:8000/api/mobile/register" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"region\": \"us\",
\"name\": \"Tom Smith\",
\"email\": \"name@domain.com\",
\"password\": \"Test123!\",
\"language\": \"en\",
\"terms_accepted\": true
}"
const url = new URL(
"http://localhost:8000/api/mobile/register"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"region": "us",
"name": "Tom Smith",
"email": "name@domain.com",
"password": "Test123!",
"language": "en",
"terms_accepted": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"mrn": "AKH8UMYU1783525574",
"name": "Prof. Tina Moore IV",
"email": "1783525574leanna27@example.org",
"language": "en",
"phone": "1-520-383-6129",
"phone_country": "PN",
"phone_verified_at": null,
"address1": "5028 Rowe Knoll",
"address2": "Audraview, SC 84784",
"postal_code": "37924",
"city": "Johnston-Bergstrom",
"country": "IN",
"clinic_name": "East Orlando",
"clinic_location": "7570 Kozey Shoal\nGarfieldchester, FL 16396",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:14.000000Z",
"updated_at": "2026-07-08T15:46:14.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 3,
"name": "ClinicAdmin"
}
]
}
Example response (403, Too many attempts):
{
"message": "Register: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "AUTH:MOBILE_REGISTER:EMAIL_IN_USE"
}
Example response (500, Server error):
{
"message": "Server error: user not created",
"code": "AUTH:MOBILE_REGISTER:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Request password reset
Request sending password reset email message with token that allows to change the password
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"code": "passwords.sent",
"message": "Reset password link successfully sent"
}
Example response (400, Throttled request):
{
"code": "passwords.throttled",
"message": "You have requested password reset recently"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Verify password reset token
Check if token is valid before using it to reset password
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset/verify" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019\",
\"email\": \"test@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset/verify"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019",
"email": "test@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Valid token",
"code": "AUTH:PASSWORD_RESET_VERIFY:VALID_TOKEN"
}
Example response (400, Invalid token):
{
"message": "Invalid token",
"code": "AUTH:PASSWORD_RESET_VERIFY:INVALID_TOKEN"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Change password with token
Change user password using password reset token sent to email address
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset/change" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019\",
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset/change"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019",
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"code": "passwords.reset",
"message": "Password changed successfully"
}
Example response (400, Invalid token):
{
"code": "passwords.token",
"message": "Invalid token"
}
Example response (404, User not found):
{
"code": "passwords.user",
"message": "User not found"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Logout current device
requires authentication
Logout and delete current access token
Example request:
curl --request POST \
"http://localhost:8000/api/logout" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/logout"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
[]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Logout everywhere
requires authentication
Logout and delete all access tokens owned by account
Example request:
curl --request POST \
"http://localhost:8000/api/logout/everywhere" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/logout/everywhere"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
[]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Refresh access token
requires authentication
Refresh the new access token from the expiring token
Example request:
curl --request POST \
"http://localhost:8000/api/token/refresh" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/token/refresh"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Check MFA status
requires authentication
Check any of available MFA methods. Supported methods: email, sms, otp.
Example request:
curl --request GET \
--get "http://localhost:8000/api/mfa/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"enabled": 1,
"method": "email",
"phone": 1,
"otp": 1
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
enabled
string
Determines if user enabled MFA
method
string
Preferred MFA method
phone
string
Determines if user has verified phone number and sms channel could be used
otp
string
Determines if user has setup OTP with authenticator application
Use recovery code
requires authentication
Use generated recovery code in order to access account in case when other MFA methods couldn't be used. This method only checks if code is valid, implement account access scenario on your own. Sent code is removed and couldn't be used anymore. If remaining_codes counter equals zero, generate a new set.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/recovery-code" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"ZZASRM6S\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/recovery-code"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "ZZASRM6S"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25",
"remaining_codes": 9
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:USE_RECOVERY_CODE:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Send MFA code
requires authentication
Send multi-factor authentication code via selected channel. Code is valid for 15 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"channel\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"channel": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Code sent",
"code": "AUTH:SEND_MFA:SENT"
}
Example response (400, Channel SMS, phone number not verified):
{
"message": "Phone number is not verified",
"code": "AUTH:SEND_MFA:PHONE_NUMBER_NOT_VERIFIED"
}
Example response (500, Channel SMS, provider problem):
{
"message": "Code sending failed",
"code": "AUTH:SEND_MFA:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Verify MFA code
requires authentication
Verify multi-factor code obtained from selected channel.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"channel\": \"email\",
\"remember_mfa_session\": true,
\"code\": \"445566\",
\"machine_key\": \"35282880-244a-4328-9435-2aaf432f3619\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"channel": "email",
"remember_mfa_session": true,
"code": "445566",
"machine_key": "35282880-244a-4328-9435-2aaf432f3619"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK, token auth):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25",
"mfa_token": "fd63e55c-2a67-44b2-95b9-a771778e9971",
"mfa_expires": "2023-04-25 21:00:00"
}
Example response (200, OK, cookie auth):
{
"message": "OK",
"mfa_token": "fd63e55c-2a67-44b2-95b9-a771778e9971",
"mfa_expires": "2023-04-25 21:00:00"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_MFA:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Verify phone number
requires authentication
Verify phone number with text message
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/phone/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"445566\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/phone/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "445566"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Phone number verified",
"code": "AUTH:VERIFY_PHONE:VERIFIED"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_PHONE:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Verify MFA OTP
requires authentication
Verify one-time password (OTP). If verification is successful, new access token with additional permissions will be generated.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/otp/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"445566\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/otp/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "445566"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK, token auth):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Example response (200, OK, cookie auth):
{
"message": "OK"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_MFA_OTP:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Change password
requires authentication
Change authenticated user password
Example request:
curl --request POST \
"http://localhost:8000/api/password/change" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"old_password\": \"oldpassword\",
\"new_password\": \"newpassword\"
}"
const url = new URL(
"http://localhost:8000/api/password/change"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"old_password": "oldpassword",
"new_password": "newpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Password changed successfully",
"code": "AUTH:PASSWORD_CHANGE:CHANGED"
}
Example response (422, Invalid old password):
{
"message": "The given data was invalid.",
"errors": {
"old_password": [
"Old password is incorrect"
]
},
"code": "AUTH:PASSWORD_CHANGE:INVALID_OLD_PASSWORD"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Set MFA status
requires authentication
Set MFA status and preferred method. Supported methods: email, sms, otp.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"enabled\": true,
\"method\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"enabled": true,
"method": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"enabled": 1,
"method": "email",
"phone": 1,
"otp": 1
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Generate recovery codes
requires authentication
Generate recovery codes for authenticated user and revoke old ones. User could use these codes in case when couldn't use any of MFA methods (e.g. lost device with OTP app or device is not accessible right now).
Example request:
curl --request GET \
--get "http://localhost:8000/api/mfa/recovery-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/recovery-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"recovery_codes": [
"A3H8PF8P",
"IZ8CGK2H",
"DTYENLLT",
"0RKEZFST",
"9MPW91BS",
"S38Z6HS6",
"UF5ATOKP",
"HSZXP8EL",
"ZZASRM6S",
"07GR4CD1"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Setup MFA OTP
requires authentication
Setup multi-factor authentication with one-time passwords (OTP). Use secret on your own or generate QR code with given url. Then user could scan QR code with authentication app (e.g. Microsoft Authenticator, Authy). If secret has been already generated, new secret will override existing one and revoke previous setup.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/otp/setup" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/otp/setup"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"secret": "VXGJ6JMIAWWDFXYDLKO3VG3RSGTS34BGMVTGQIEHMVVMJ2JBGCSNPQZDV4B6OMDIGI4UKCVCVKVMA7EASLHZEJWW4ZNKLAUTSZYN7EA",
"url": "otpauth://totp/AetherDigitalTherapy?issuer=AetherDigitalTherapy&secret=VXGJ6JMIAWWDFXYDLKO3VG3RSGTS34BGMVTGQIEHMVVMJ2JBGCSNPQZDV4B6OMDIGI4UKCVCVKVMA7EASLHZEJWW4ZNKLAUTSZYN7EA",
"recovery_codes": [
"A3H8PF8P",
"IZ8CGK2H",
"DTYENLLT",
"0RKEZFST",
"9MPW91BS",
"S38Z6HS6",
"UF5ATOKP",
"HSZXP8EL",
"ZZASRM6S",
"07GR4CD1"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Login user (SPA)
Authorize user and create cookie-based session. Hit GET /sanctum/csrf-cookie endpoint to retrieve XSRF-TOKEN cookie. Then attach X-XSRF-TOKEN HTTP header to any request to authorize. See more: Laravel Sanctum documentation
Example request:
curl --request POST \
"http://localhost:8000/login" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/login"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 333,
"mrn": "SJWNMUPA1783525734",
"name": "Dr. Grace McDermott MD",
"email": "1783525734homenick.floy@example.com",
"language": "en",
"phone": "1-347-437-1545",
"phone_country": "SJ",
"phone_verified_at": null,
"address1": "570 Kyle Hill",
"address2": "Kaseychester, MS 39740-9901",
"postal_code": "71994",
"city": "Zboncak, Gleichner and Roberts",
"country": "DK",
"clinic_name": "New Maeganburgh",
"clinic_location": "6484 Corwin Forks\nNorth Elisabeth, DC 79437-8899",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:54.000000Z",
"updated_at": "2026-07-08T15:48:54.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
Example response (403, Too many attempts):
{
"message": "Login: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (422, Invalid credentials):
{
"message": "The given data was invalid.",
"errors": {
"email": [
"Given credentials not found"
]
},
"code": "AUTH:LOGIN_COOKIE:INVALID_CREDENTIALS"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Chat
API endpoints for chat management
Authorize a user
requires authentication
This method authorizes a user using Ably service. Endpoint used only by Ably SDK
Check more details on https://ably.com/docs/auth/token
List all chat rooms
requires authentication
This method retrieves all chat rooms. Possible extend options:
- participants - user assigned to chat room
- participants.roles - roles assigned to chat participants
- owner - the clinician assigned to patient
- patient - the patient for whom the chat was created
- messages - the messages related to chat room
- messages.author - the author of message/li>
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/rooms" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/rooms"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"owner": null,
"patient_id": null,
"encryption_key": "zTuDh9sSsfjLNAz02fao7FA4nFaDK1pNsHPgxGrKIwI=",
"name": "reiciendis",
"friendly_name": "reiciendis",
"created_at": "2026-07-08T15:48:33.000000Z",
"deleted_at": null,
"updated_at": "2026-07-08T15:48:33.000000Z"
},
{
"id": 2,
"owner": null,
"patient_id": null,
"encryption_key": "dNVOjTr1BwiZ4bl4Nqq8YqC7HraKf3ukcmkpS/SyxS8=",
"name": "aut",
"friendly_name": "aut",
"created_at": "2026-07-08T15:48:33.000000Z",
"deleted_at": null,
"updated_at": "2026-07-08T15:48:33.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list chat room",
"code": "CHAT:LIST_ROOMS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Retrieve a chat room
requires authentication
This method retrieves a single chat room identified by roomId. Possible extend options:
- participants - user assigned to chat room
- owner - the clinician assigned to patient
- patient - the patient for whom the chat was created
- messages - the messages related to chat room
- messages.author - the author of message/li>
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/earum" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/earum"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"owner": null,
"patient_id": null,
"encryption_key": "hf2LJonDXRztEhcXTyEIQ20+bN9V69ITj47x6//hsPs=",
"name": "quisquam",
"friendly_name": "quisquam",
"created_at": "2026-07-08T15:48:33.000000Z",
"deleted_at": null,
"updated_at": "2026-07-08T15:48:33.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room",
"code": "CHAT:GET_ROOM:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:GET_ROOM:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
Create a new chat room
requires authentication
This method creates a new chat room using the authenticated user's ID, a name for the room, and a list of participants.
The list of participants should contain the IDs of the users who will be participants in the room.
Example request:
curl --request POST \
"http://localhost:8000/api/chat/room" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"owner\": 1,
\"name\": \"my-chat\",
\"patient_id\": 1,
\"participants\": [
\"1\"
]
}"
const url = new URL(
"http://localhost:8000/api/chat/room"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"owner": 1,
"name": "my-chat",
"patient_id": 1,
"participants": [
"1"
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"owner": null,
"patient_id": null,
"encryption_key": "+Rp3wkrOKtuPkUIU5bAWarZUYwSVgjRKVNZIK/vcC/4=",
"name": "quos",
"friendly_name": "quos",
"created_at": "2026-07-08T15:48:33.000000Z",
"deleted_at": null,
"updated_at": "2026-07-08T15:48:33.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room",
"code": "CHAT:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
Update an existing chat room
requires authentication
This method updates an existing chat room using the authenticated user's ID, a new name for the room, and a list of participants.
The list of participants should contain the IDs of the users who will be participants in the room.
Example request:
curl --request PUT \
"http://localhost:8000/api/chat/room/quia" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"owner\": 1,
\"name\": \"my-chat\",
\"participants\": [
\"1\"
],
\"participants_del\": [
\"1\"
]
}"
const url = new URL(
"http://localhost:8000/api/chat/room/quia"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"owner": 1,
"name": "my-chat",
"participants": [
"1"
],
"participants_del": [
"1"
]
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"owner": null,
"patient_id": null,
"encryption_key": "KbCH28zG+3g6vdFRM1/qKQmBKp0UfmpC1ewgQZzVFzA=",
"name": "accusantium",
"friendly_name": "accusantium",
"created_at": "2026-07-08T15:48:33.000000Z",
"deleted_at": null,
"updated_at": "2026-07-08T15:48:33.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update chat room",
"code": "CHAT:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:UPDATE:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
Chat room archives
requires authentication
Get archived messages for room Possible extend options:
- author - this field represent user who send message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/quidem/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/quidem/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view archived messages",
"code": "CHAT:GET_ARCHIVES:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:GET_ARCHIVES:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Unread messages
requires authentication
Get unread messaged for chat room. Possible extend options:
- author - this field represent user who send message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/messages/unread?room=20" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/messages/unread"
);
const params = {
"room": "20",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view unread messages list",
"code": "CHAT:UNREAD_MESSAGES:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Delete chat message
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/chat/messages/13?msgId=sed" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/messages/13"
);
const params = {
"msgId": "sed",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete message",
"code": "CHAT:DELETE_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Chat message not found",
"code": "CHAT:DELETE_MESSAGE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get tickets list for chat room
requires authentication
Possible extend options:
- sender - the user who created ticket
- recipient - the user who was ticket recipient
- messages - message allocated to ticket
- messages.attachments - list of attachments assigned to message and ticket
- messages.sender - the user who wrote the message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/tickets/temporibus?status=aut&sender=16&recipient=10" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/tickets/temporibus"
);
const params = {
"status": "aut",
"sender": "16",
"recipient": "10",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 87,
"sender_id": 292,
"recipient_id": 293,
"device_id": null,
"meeting_date": "2026-07-08 15:48:34",
"meeting_type": "online_meeting",
"contact_email": "breitenberg.esmeralda@lind.com",
"status": "new",
"created_at": "2026-07-08T15:48:34.000000Z",
"updated_at": "2026-07-08T15:48:34.000000Z",
"sender": {
"id": 292,
"mrn": "TCFFGVZP1783525713",
"name": "Prof. Burley Howell MD",
"email": "1783525713gerlach.tyrell@example.com",
"language": "en",
"phone": "+18708242625",
"phone_country": "BI",
"phone_verified_at": null,
"address1": "263 Hane Shoals",
"address2": "Port Art, NE 61059",
"postal_code": "22132",
"city": "Leffler Inc",
"country": "LT",
"clinic_name": "Raymundostad",
"clinic_location": "9649 Celestine Road\nHuelsville, MS 53722",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:33.000000Z",
"updated_at": "2026-07-08T15:48:33.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 293,
"mrn": "LT2YTBS41783525714",
"name": "Vergie Crooks",
"email": "1783525714swolf@example.org",
"language": "en",
"phone": "+1-351-969-3708",
"phone_country": "UG",
"phone_verified_at": null,
"address1": "8984 Bode Harbor Suite 785",
"address2": "Adellaburgh, DE 97302",
"postal_code": "57341-3189",
"city": "Larkin PLC",
"country": "PL",
"clinic_name": "Port Cedrickberg",
"clinic_location": "591 Nolan Hills\nLake Herbertmouth, NM 59031-3951",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:34.000000Z",
"updated_at": "2026-07-08T15:48:34.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": []
},
{
"id": 88,
"sender_id": 294,
"recipient_id": 295,
"device_id": null,
"meeting_date": "2026-07-08 15:48:34",
"meeting_type": "online_meeting",
"contact_email": "dickinson.caleb@feil.com",
"status": "new",
"created_at": "2026-07-08T15:48:35.000000Z",
"updated_at": "2026-07-08T15:48:35.000000Z",
"sender": {
"id": 294,
"mrn": "8FJS39CJ1783525714",
"name": "Elmira Hartmann",
"email": "1783525714zmcclure@example.org",
"language": "en",
"phone": "1-463-584-2724",
"phone_country": "RE",
"phone_verified_at": null,
"address1": "6313 Kunde Inlet Apt. 418",
"address2": "Port Yesenia, KS 93406-6830",
"postal_code": "54067",
"city": "Marks PLC",
"country": "NO",
"clinic_name": "Beattyview",
"clinic_location": "865 Abbott Loop\nTorphymouth, RI 76671",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:34.000000Z",
"updated_at": "2026-07-08T15:48:34.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 295,
"mrn": "5PUKUC7B1783525714",
"name": "Tobin Hermiston",
"email": "1783525714shudson@example.net",
"language": "en",
"phone": "+17437875764",
"phone_country": "SS",
"phone_verified_at": null,
"address1": "3429 Barrett Tunnel",
"address2": "New Eda, OR 01124-8171",
"postal_code": "08208-7762",
"city": "Hamill LLC",
"country": "HR",
"clinic_name": "Wendyshire",
"clinic_location": "98495 Audra Camp Suite 834\nLehnerstad, LA 06372-8275",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:35.000000Z",
"updated_at": "2026-07-08T15:48:35.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": []
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room tickets",
"code": "CHAT:LIST_TICKETS:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:LIST_TICKETS:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List of available patients for chat
requires authentication
Possible extend options:
- clinician - clinician assigned to this user
- devices - products assigned to user
- roles - user roles
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/available-patients" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/available-patients"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 296,
"mrn": "57XL33EL1783525715",
"name": "Missouri Baumbach",
"email": "1783525715taya.bayer@example.org",
"language": "en",
"phone": "1-678-417-8094",
"phone_country": "SZ",
"phone_verified_at": null,
"address1": "7647 Nikolaus Mission",
"address2": "North Orval, NC 40181-6671",
"postal_code": "04143",
"city": "Streich Inc",
"country": "US",
"clinic_name": "Ullrichshire",
"clinic_location": "24768 Leslie Key Suite 568\nCristobalton, TN 33668-4319",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:35.000000Z",
"updated_at": "2026-07-08T15:48:35.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"devices": [
{
"id": 146,
"serial": "015fe305-3bce-3325-b902-c772df145430",
"bluetooth_id": "f2aa259d-b861-370e-938b-ba5aae70551c",
"company_id": null,
"model_id": null,
"amputee_id": 296,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:48:35.000000Z",
"updated_at": "2026-07-08T15:48:35.000000Z"
}
],
"roles": [
{
"id": 2,
"name": "CommunityAdmin"
}
]
},
{
"id": 297,
"mrn": "FAFHLYN41783525715",
"name": "Miss Lelah Goldner",
"email": "1783525715reba.koelpin@example.com",
"language": "en",
"phone": "484-402-8775",
"phone_country": "FO",
"phone_verified_at": null,
"address1": "254 Kenyon Spring Suite 227",
"address2": "West Rollin, TX 41280",
"postal_code": "37494",
"city": "Beatty-Runte",
"country": "US",
"clinic_name": "Patiencechester",
"clinic_location": "5745 Wolff Grove\nGilesport, ME 23418-8880",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:35.000000Z",
"updated_at": "2026-07-08T15:48:35.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"devices": [
{
"id": 147,
"serial": "ea3dd391-d31d-391e-b860-ab6c4b2c7b77",
"bluetooth_id": "d1de9f2f-45c4-3995-b3a5-4cba87e6252b",
"company_id": null,
"model_id": null,
"amputee_id": 297,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:48:36.000000Z",
"updated_at": "2026-07-08T15:48:36.000000Z"
}
],
"roles": [
{
"id": 4,
"name": "Clinician"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list available patients",
"code": "CHAT:LIST_PATIENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List of available participants for chat
requires authentication
Possible extend options:
- roles - user roles
- permissions - user permissions
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/1/available-participants" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/1/available-participants"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 298,
"mrn": "ZZHJ7VJ61783525716",
"name": "Prof. Justus Gulgowski DVM",
"email": "1783525716owen05@example.org",
"language": "en",
"phone": "+14254790856",
"phone_country": "TL",
"phone_verified_at": null,
"address1": "7347 Zaria Port",
"address2": "East Thomasview, MA 55753-3022",
"postal_code": "45188",
"city": "Runte-Walker",
"country": "SI",
"clinic_name": "East Jayburgh",
"clinic_location": "366 Harvey Route Suite 833\nZiememouth, NH 26180-6083",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:36.000000Z",
"updated_at": "2026-07-08T15:48:36.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "ClinicianSupport"
}
]
},
{
"id": 299,
"mrn": "C3LYUMAT1783525716",
"name": "Savanna Bechtelar",
"email": "1783525716drolfson@example.net",
"language": "en",
"phone": "+1-435-535-6645",
"phone_country": "LC",
"phone_verified_at": null,
"address1": "33690 Weber Hill Apt. 238",
"address2": "Reganland, OR 09401",
"postal_code": "21142",
"city": "Hauck-Nienow",
"country": "FR",
"clinic_name": "South Stone",
"clinic_location": "24465 Lilly Trail\nKlockoborough, LA 59504",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:36.000000Z",
"updated_at": "2026-07-08T15:48:36.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 3,
"name": "ClinicAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list available participants",
"code": "CHAT:LIST_PARTICIPANTS:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:LIST_PARTICIPANTS:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Community
Endpoints related to community videos
List community videos
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/community/videos" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/community/videos"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": 330,
"vimeo_id": "830310340",
"vimeo_url": "https://vimeo.com/830310340",
"description": "ut-natus-alias-rerum-suscipit-et",
"language": "en",
"active": 0,
"created_at": "2026-07-08T15:48:53.000000Z",
"updated_at": "2026-07-08T15:48:53.000000Z"
},
{
"id": 2,
"user_id": 331,
"vimeo_id": "824731114",
"vimeo_url": "https://vimeo.com/824731114",
"description": "sunt-velit-similique-deserunt-iure",
"language": "en",
"active": 0,
"created_at": "2026-07-08T15:48:54.000000Z",
"updated_at": "2026-07-08T15:48:54.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view community videos",
"code": "COMMUNITY_VIDEOS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get community video
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/community/videos/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/community/videos/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"user_id": 332,
"vimeo_id": "296798053",
"vimeo_url": "https://vimeo.com/296798053",
"description": "ut-consequuntur-optio-id-esse-nostrum-veritatis-laudantium",
"language": "en",
"active": 0,
"created_at": "2026-07-08T15:48:54.000000Z",
"updated_at": "2026-07-08T15:48:54.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view community videos",
"code": "COMMUNITY_VIDEOS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Video not found):
{
"message": "Community video not found",
"code": "COMMUNITY_VIDEOS:GET:VIDEO_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
React to community video
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/community/videos/1/react" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/community/videos/1/react"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, Current reaction state):
{
"status": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to react to community videos",
"code": "COMMUNITY_VIDEOS:REACT:INSUFFICIENT_PERMISSION"
}
Example response (404, Video not found):
{
"message": "Community video not found",
"code": "COMMUNITY_VIDEOS:REACT:VIDEO_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Config
API endpoints for device config management
Get device config
requires authentication
Definitions:
- config - current config entries
- config history entry - set of changes in config, updated during the session
- config history change - single change made to config (part of config history entry)
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config?_format=necessitatibus" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config"
);
const params = {
"_format": "necessitatibus",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (200):
[
{
"id": 1,
"device_id": 19,
"mode_id": 1,
"key": "pariatur",
"value": "et",
"created_at": "2026-07-08T15:46:39.000000Z",
"updated_at": "2026-07-08T15:46:39.000000Z",
"mode": {
"id": 1,
"device_id": 20,
"slot": null,
"name": "Quia eum officiis nihil numquam.",
"active": 1,
"created_at": "2026-07-08T15:46:39.000000Z",
"updated_at": "2026-07-08T15:46:39.000000Z"
}
},
{
"id": 2,
"device_id": 21,
"mode_id": 2,
"key": "exercitationem",
"value": "vel",
"created_at": "2026-07-08T15:46:39.000000Z",
"updated_at": "2026-07-08T15:46:39.000000Z",
"mode": {
"id": 2,
"device_id": 22,
"slot": null,
"name": "Laborum dolor minima qui magnam praesentium magnam fugiat.",
"active": 1,
"created_at": "2026-07-08T15:46:39.000000Z",
"updated_at": "2026-07-08T15:46:39.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:GET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config entry ID.
device_id
integer
Associated device ID.
mode_id
integer
Associated config mode ID.
key
string
Config key.
value
string
Config value.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
mode
object
Associated config mode.
Update device config
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote session 2022-05-30\",
\"common\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\",
\"updateNote\": true,
\"modes\": [
{
\"id\": 1,
\"config\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/device/1/config"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote session 2022-05-30",
"common": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]",
"updateNote": true,
"modes": [
{
"id": 1,
"config": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]"
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:UPDATE:DEVICE_NOT_FOUND"
}
Example response (422, Invalid config):
{
"message": "Config has some problems and cannot be saved.",
"errors": {
"modes": {
"mode_3": "Config mode 3 does not belong to device 12."
},
"values": {
"common.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"common.gripsPositions.1.initial": "Invalid value [200,\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values.",
"mode_1.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"mode_1.gripsPositions.0.initial": "Invalid value [\"200\",\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values."
}
},
"code": "CONFIG:UPDATE:INVALID_CONFIG"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get device config history
requires authentication
For amputees only restore points are returned.
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/history?restore_point=1&factory_reset_point=1&date_from=1642003200&date_to=1642003200" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"restore_point\": true,
\"factory_reset_point\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/history"
);
const params = {
"restore_point": "1",
"factory_reset_point": "1",
"date_from": "1642003200",
"date_to": "1642003200",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"restore_point": true,
"factory_reset_point": true
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": null,
"device_id": 23,
"index": null,
"name": "Quisquam ullam dolor aspernatur ut quis itaque.",
"config": "{\"common\":{\"fingerStrength\":[1,200],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[28,3,14,34,9],\"limit\":[95,9,50,53,81]},\"1\":{\"initial\":[12,72,34,8,6],\"limit\":[49,72,58,48,44]},\"2\":{\"initial\":[17,43,51,11,58],\"limit\":[93,70,52,61,76]},\"3\":{\"initial\":[40,30,70,38,29],\"limit\":[92,38,94,57,55]},\"4\":{\"initial\":[21,33,8,7,10],\"limit\":[46,49,64,24,88]},\"5\":{\"initial\":[14,54,39,29,47],\"limit\":[68,75,51,52,75]},\"6\":{\"initial\":[35,30,3,36,36],\"limit\":[55,57,59,82,59]},\"7\":{\"initial\":[34,5,7,24,27],\"limit\":[73,11,93,85,34]},\"8\":{\"initial\":[45,66,12,70,41],\"limit\":[82,68,80,79,58]},\"9\":{\"initial\":[10,35,1,14,7],\"limit\":[23,38,80,83,34]},\"10\":{\"initial\":[40,22,25,42,27],\"limit\":[69,85,66,54,71]},\"11\":{\"initial\":[8,46,20,32,60],\"limit\":[71,84,73,74,69]},\"12\":{\"initial\":[29,78,89,46,30],\"limit\":[55,94,95,67,43]},\"13\":{\"initial\":[15,58,32,56,17],\"limit\":[25,60,73,93,84]}},\"inputSite\":[0]},\"modes\":[{\"id\":3,\"name\":\"Aut suscipit neque rerum tempora incidunt dicta.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[100,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[70,70,70,20,0,20,50,0,50,30],\"gripPairsConfig\":[12,9,2,5,4,1,8,7],\"gripSequentialConfig\":[255,8,11,255,5,255,255,255,4,6,3,2],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,1500],\"pulseTimings\":[940,940,970,260],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":4,\"name\":\"Sit autem laborum saepe voluptatem culpa quia.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[100,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[0,20,40,10,20,20,100,90,30,40],\"gripPairsConfig\":[5,3,10,4,9,12,11,1],\"gripSequentialConfig\":[255,8,2,4,1,7,9,10,255,255,255,13],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2000],\"pulseTimings\":[960,600,530,920],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":5,\"name\":\"Ut doloremque sit eos rerum nisi.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[500,300],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[60,0,60,20,100,0,80,100,100,90],\"gripPairsConfig\":[7,1,3,10,12,6,9,11],\"gripSequentialConfig\":[13,4,9,8,255,5,3,2,255,1,12,255],\"gripSwitchingMode\":[1],\"holdOpen\":[2000,2000],\"pulseTimings\":[460,980,120,740],\"softGrip\":[1],\"speedControlStrategy\":[0]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 50,
"firmware_version_id": null,
"created_at": "2026-07-08T15:46:40.000000Z",
"updated_at": "2026-07-08T15:46:40.000000Z",
"author": {
"id": 50,
"mrn": "5BZYYAEP1783525599",
"name": "Freeda Bogisich",
"email": "1783525599jayda46@example.net",
"language": "en",
"phone": "(442) 898-0261",
"phone_country": "BA",
"phone_verified_at": null,
"address1": "412 Albin Row Suite 116",
"address2": "Croninfort, NE 77420",
"postal_code": "08769-0190",
"city": "Botsford-Bogan",
"country": "CZ",
"clinic_name": "Auerport",
"clinic_location": "7826 Elroy Summit Suite 029\nRonnyview, SC 47497-0637",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:39.000000Z",
"updated_at": "2026-07-08T15:46:39.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"entries": [
{
"id": 1,
"config_history_id": 1,
"config_id": 3,
"old_value": "labore",
"new_value": "ut",
"created_at": "2026-07-08T15:46:40.000000Z",
"updated_at": "2026-07-08T15:46:40.000000Z",
"config_entry": {
"id": 3,
"device_id": 31,
"mode_id": null,
"key": "quaerat",
"value": "pariatur",
"created_at": "2026-07-08T15:46:40.000000Z",
"updated_at": "2026-07-08T15:46:40.000000Z"
}
}
]
},
{
"id": 3,
"user_id": null,
"device_id": 32,
"index": null,
"name": "Eveniet fugiat minima cupiditate quo aliquam et praesentium.",
"config": "{\"common\":{\"fingerStrength\":[1,200],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[56,85,38,7,12],\"limit\":[86,89,59,67,34]},\"1\":{\"initial\":[45,60,3,39,10],\"limit\":[93,60,80,49,75]},\"2\":{\"initial\":[40,11,10,34,19],\"limit\":[47,46,61,64,40]},\"3\":{\"initial\":[27,10,62,1,20],\"limit\":[28,19,66,82,47]},\"4\":{\"initial\":[2,17,7,23,57],\"limit\":[70,67,48,52,61]},\"5\":{\"initial\":[1,18,27,19,17],\"limit\":[59,93,35,37,66]},\"6\":{\"initial\":[56,27,25,68,18],\"limit\":[59,78,77,93,29]},\"7\":{\"initial\":[59,73,19,62,29],\"limit\":[90,84,27,91,59]},\"8\":{\"initial\":[50,70,35,50,13],\"limit\":[75,79,61,74,49]},\"9\":{\"initial\":[15,42,45,10,81],\"limit\":[63,56,94,24,85]},\"10\":{\"initial\":[18,56,8,83,18],\"limit\":[20,74,24,89,19]},\"11\":{\"initial\":[5,4,23,23,2],\"limit\":[50,32,59,40,14]},\"12\":{\"initial\":[65,40,32,17,4],\"limit\":[77,67,86,47,50]},\"13\":{\"initial\":[44,7,51,32,22],\"limit\":[75,24,70,37,36]}},\"inputSite\":[1]},\"modes\":[{\"id\":9,\"name\":\"Accusantium unde vero ducimus sunt repudiandae qui dolor.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[300,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[30,80,40,100,30,70,80,0,20,70],\"gripPairsConfig\":[8,3,13,10,11,2,6,7],\"gripSequentialConfig\":[5,8,6,13,4,255,7,1,12,2,3,9],\"gripSwitchingMode\":[2],\"holdOpen\":[2000,2500],\"pulseTimings\":[800,90,20,710],\"softGrip\":[1],\"speedControlStrategy\":[0]}},{\"id\":10,\"name\":\"Dignissimos qui non non iusto sequi voluptatibus nihil.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[60,0,60,70,50,0,10,80,50,70],\"gripPairsConfig\":[13,8,6,11,4,10,2,9],\"gripSequentialConfig\":[10,255,9,11,6,5,13,8,1,12,2,3],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2500],\"pulseTimings\":[970,640,960,320],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":11,\"name\":\"Iste facilis aut eos vel eius officia rerum.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[200,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[70,0,10,20,50,50,40,100,30,90],\"gripPairsConfig\":[4,3,12,5,9,6,2,13],\"gripSequentialConfig\":[6,8,4,12,3,5,1,9,2,10,7,13],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2000],\"pulseTimings\":[430,860,790,900],\"softGrip\":[0],\"speedControlStrategy\":[1]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 53,
"firmware_version_id": null,
"created_at": "2026-07-08T15:46:41.000000Z",
"updated_at": "2026-07-08T15:46:41.000000Z",
"author": {
"id": 53,
"mrn": "ZGJB9ATJ1783525600",
"name": "Alize Price",
"email": "1783525600spinka.lonie@example.com",
"language": "en",
"phone": "708.679.2781",
"phone_country": "KI",
"phone_verified_at": null,
"address1": "573 Nikolas Keys Apt. 760",
"address2": "Buckridgehaven, MO 80311",
"postal_code": "85505-0516",
"city": "Rempel, Kiehn and Hahn",
"country": "IE",
"clinic_name": "Port Melodyton",
"clinic_location": "142 Chase Gateway Suite 878\nLuigichester, ME 77529",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:41.000000Z",
"updated_at": "2026-07-08T15:46:41.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"entries": [
{
"id": 2,
"config_history_id": 3,
"config_id": 4,
"old_value": "aperiam",
"new_value": "corporis",
"created_at": "2026-07-08T15:46:41.000000Z",
"updated_at": "2026-07-08T15:46:41.000000Z",
"config_entry": {
"id": 4,
"device_id": 40,
"mode_id": null,
"key": "libero",
"value": "rem",
"created_at": "2026-07-08T15:46:41.000000Z",
"updated_at": "2026-07-08T15:46:41.000000Z"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:HISTORY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Config history entry ID.
device_id
integer
Associated device ID.
index
integer
Config history index.
name
string
Config snapshot name.
config
string
Serialized config data.
restore_point
boolean
Whether this entry is a restore point.
factory_reset_point
boolean
Whether this entry is a factory reset point.
changed_by
integer
ID of the user who made the change.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made the change.
entries
object[]
Individual config history entries.
notes
object[]
Notes attached to this history entry.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get device config history entry
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/history/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/history/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 5,
"user_id": null,
"device_id": 41,
"index": null,
"name": "Non expedita aliquam eum.",
"config": "{\"common\":{\"fingerStrength\":[1,200],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[17,62,22,13,14],\"limit\":[52,74,32,27,48]},\"1\":{\"initial\":[4,18,34,18,7],\"limit\":[84,77,67,56,15]},\"2\":{\"initial\":[36,27,21,30,35],\"limit\":[38,31,75,82,69]},\"3\":{\"initial\":[14,35,74,26,52],\"limit\":[61,76,82,83,87]},\"4\":{\"initial\":[4,45,36,72,7],\"limit\":[82,69,79,76,43]},\"5\":{\"initial\":[40,22,9,65,52],\"limit\":[81,29,25,68,66]},\"6\":{\"initial\":[52,71,12,43,11],\"limit\":[76,82,29,77,75]},\"7\":{\"initial\":[17,77,5,17,29],\"limit\":[21,81,87,82,48]},\"8\":{\"initial\":[38,2,5,27,30],\"limit\":[73,92,46,50,33]},\"9\":{\"initial\":[54,9,55,57,10],\"limit\":[74,46,87,92,39]},\"10\":{\"initial\":[4,17,35,51,28],\"limit\":[46,71,49,65,42]},\"11\":{\"initial\":[29,49,40,24,19],\"limit\":[50,92,73,80,49]},\"12\":{\"initial\":[66,26,1,28,44],\"limit\":[88,94,60,51,67]},\"13\":{\"initial\":[5,6,21,26,3],\"limit\":[56,10,40,33,37]}},\"inputSite\":[1]},\"modes\":[{\"id\":15,\"name\":\"Repellat in voluptatum deleniti dolor qui animi sint et.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[300,300],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[10,80,60,90,50,30,0,20,0,0],\"gripPairsConfig\":[7,13,5,9,12,1,4,10],\"gripSequentialConfig\":[9,11,13,255,255,255,255,255,2,4,8,255],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,1500],\"pulseTimings\":[970,400,180,890],\"softGrip\":[0],\"speedControlStrategy\":[1]}},{\"id\":16,\"name\":\"Consequatur mollitia facilis corporis velit dolorem.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[100,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[10,60,0,50,0,60,60,100,20,30],\"gripPairsConfig\":[3,2,11,6,10,1,9,4],\"gripSequentialConfig\":[10,3,255,1,255,255,7,11,12,255,255,6],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2500],\"pulseTimings\":[60,480,930,890],\"softGrip\":[1],\"speedControlStrategy\":[0]}},{\"id\":17,\"name\":\"Aperiam sunt omnis voluptas.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[400,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[50,20,60,20,20,100,50,80,70,80],\"gripPairsConfig\":[11,4,7,12,3,13,1,2],\"gripSequentialConfig\":[8,5,255,255,2,4,10,11,13,1,255,7],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2000],\"pulseTimings\":[760,440,540,960],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"restore_point": 0,
"factory_reset_point": 0,
"changed_by": 55,
"firmware_version_id": null,
"created_at": "2026-07-08T15:46:42.000000Z",
"updated_at": "2026-07-08T15:46:42.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:HISTORY_ENTRY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY_ENTRY:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:HISTORY_ENTRY:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config history entry ID.
device_id
integer
Associated device ID.
index
integer
Config history index.
name
string
Config snapshot name.
config
string
Serialized config data.
restore_point
boolean
Whether this entry is a restore point.
factory_reset_point
boolean
Whether this entry is a factory reset point.
changed_by
integer
ID of the user who made the change.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made the change.
entries
object[]
Individual config history entries.
notes
object[]
Notes attached to this history entry.
Update config history
requires authentication
Returns updated config history in response.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/history/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote session 2022-05-30\",
\"restore_point\": true,
\"factory_reset_point\": false
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/history/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote session 2022-05-30",
"restore_point": true,
"factory_reset_point": false
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 6,
"user_id": null,
"device_id": 45,
"index": null,
"name": "Nisi dolor sint ratione sint.",
"config": "{\"common\":{\"fingerStrength\":[1,200],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[26,21,6,46,33],\"limit\":[33,85,60,92,69]},\"1\":{\"initial\":[23,7,56,41,57],\"limit\":[72,14,80,50,93]},\"2\":{\"initial\":[40,19,62,32,5],\"limit\":[40,61,80,55,13]},\"3\":{\"initial\":[23,8,27,16,41],\"limit\":[62,15,72,57,82]},\"4\":{\"initial\":[42,12,10,25,30],\"limit\":[67,64,36,37,91]},\"5\":{\"initial\":[18,12,10,38,72],\"limit\":[90,75,42,83,76]},\"6\":{\"initial\":[40,4,2,42,7],\"limit\":[41,91,8,47,62]},\"7\":{\"initial\":[69,76,43,6,8],\"limit\":[76,86,60,92,30]},\"8\":{\"initial\":[54,2,7,35,26],\"limit\":[73,49,26,52,55]},\"9\":{\"initial\":[36,19,11,3,12],\"limit\":[70,21,47,26,59]},\"10\":{\"initial\":[7,33,63,56,41],\"limit\":[49,43,93,58,81]},\"11\":{\"initial\":[32,30,70,8,20],\"limit\":[41,88,87,10,75]},\"12\":{\"initial\":[35,57,36,19,22],\"limit\":[40,91,57,57,71]},\"13\":{\"initial\":[44,6,52,26,58],\"limit\":[65,45,91,37,86]}},\"inputSite\":[1]},\"modes\":[{\"id\":18,\"name\":\"Aut quas temporibus ea voluptatem architecto voluptatem.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[300,200],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[30,0,30,30,100,0,60,60,100,20],\"gripPairsConfig\":[10,6,3,4,8,2,9,1],\"gripSequentialConfig\":[1,255,12,5,2,4,255,255,255,255,9,255],\"gripSwitchingMode\":[3],\"holdOpen\":[2000,2000],\"pulseTimings\":[30,540,980,930],\"softGrip\":[1],\"speedControlStrategy\":[0]}},{\"id\":19,\"name\":\"Dolorum impedit dolorum minima inventore ducimus.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[200,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[20,10,40,0,0,0,40,100,90,30],\"gripPairsConfig\":[2,1,12,3,7,13,5,6],\"gripSequentialConfig\":[255,5,11,255,255,9,12,8,3,255,6,2],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2000],\"pulseTimings\":[170,170,250,410],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":20,\"name\":\"Tenetur odio qui et aliquam.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[200,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[80,60,0,40,90,60,0,60,50,50],\"gripPairsConfig\":[12,1,8,13,2,11,6,4],\"gripSequentialConfig\":[4,1,7,9,6,5,13,255,10,255,255,11],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2500],\"pulseTimings\":[670,540,510,10],\"softGrip\":[1],\"speedControlStrategy\":[0]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 56,
"firmware_version_id": null,
"created_at": "2026-07-08T15:46:42.000000Z",
"updated_at": "2026-07-08T15:46:42.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:HISTORY_UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Factory reset point already exists):
{
"message": "Factory reset point does not exist",
"code": "CONFIG:HISTORY_UPDATE:FACTORY_RESET_POINT_ALREADY_EXISTS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY_UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:HISTORY_UPDATE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config history entry ID.
device_id
integer
Associated device ID.
index
integer
Config history index.
name
string
Config snapshot name.
config
string
Serialized config data.
restore_point
boolean
Whether this entry is a restore point.
factory_reset_point
boolean
Whether this entry is a factory reset point.
changed_by
integer
ID of the user who made the change.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made the change.
entries
object[]
Individual config history entries.
notes
object[]
Notes attached to this history entry.
Undo single config history change
requires authentication
Returns updated config in response.
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/config/history/undo/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/history/undo/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:UNDO:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:UNDO:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:UNDO:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Restore config history entry
requires authentication
Restores config from given config history entry (all changes). Sends support ticket if patient is assigned to device, returns config instead.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/restore/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/restore/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, Patient not assigned, returns config):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (202):
{
"id": 1,
"sender_id": 57,
"recipient_id": 58,
"device_id": null,
"meeting_date": "2026-07-08 15:46:43",
"meeting_type": "online_meeting",
"contact_email": "tierra45@roob.info",
"status": "new",
"created_at": "2026-07-08T15:46:43.000000Z",
"updated_at": "2026-07-08T15:46:43.000000Z",
"sender": {
"id": 57,
"mrn": "U3TUNP2D1783525602",
"name": "Idella Toy",
"email": "1783525602ogerhold@example.org",
"language": "en",
"phone": "+12725673892",
"phone_country": "MX",
"phone_verified_at": null,
"address1": "75058 Heath Stream Apt. 159",
"address2": "Reichelmouth, FL 82663",
"postal_code": "57865",
"city": "Crooks, Windler and Dickinson",
"country": "HU",
"clinic_name": "Goyetteberg",
"clinic_location": "25933 Stark Shores\nRitchiefort, CT 60505-4766",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:42.000000Z",
"updated_at": "2026-07-08T15:46:42.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 58,
"mrn": "WBNBP8QH1783525603",
"name": "Alisa Koch DVM",
"email": "1783525603parker.dominic@example.org",
"language": "en",
"phone": "+1-380-673-9079",
"phone_country": "FK",
"phone_verified_at": null,
"address1": "5019 Carroll Forge Suite 066",
"address2": "Darianachester, VT 63977-0657",
"postal_code": "73066-9459",
"city": "Walsh, Crona and Ortiz",
"country": "IT",
"clinic_name": "South Deonte",
"clinic_location": "55969 Labadie Rapid Suite 909\nTatyanashire, MD 79848-2695",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:43.000000Z",
"updated_at": "2026-07-08T15:46:43.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 59,
"title": "Prof.",
"content": "Voluptatem hic eum pariatur odit libero.",
"is_read": false,
"created_at": "2026-07-08T15:46:44.000000Z",
"updated_at": "2026-07-08T15:46:44.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:RESTORE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:RESTORE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:RESTORE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Restore to factory reset point
requires authentication
Restores config from the device's factory reset point. Sends a support ticket if the patient is assigned to the device. Returns the array that contains:
config- The factory reset config. It might be updated with current config entries when the restored config does not contain a key or its value is false, but the key is available in the current config, has a non-false value, and is required by the config schema.not_modified- The part of the current config that contains keys which were ignored (because they’re on the ignore list, such as custom grips settings), or were not updated with values from the factory reset config (because the values are the same in both configs, or missing in the factory reset config but present and non-false in the current config). These are included in theconfigto ensure their values remain unchanged and are not replaced with defaults.ticket- Support ticket entity, if patient is assigned, null otherwise.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/restore-factory-reset" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/restore-factory-reset"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"config": {
"common": {
"inputSite": [
1
],
"generalHandSettings": false,
"batteryBeep": [
1,
0
],
"emgGains": false,
"autoGrasp": false
},
"modes": [
{
"id": 1,
"name": "Mode 0",
"slot": 0,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
},
{
"id": 1530,
"name": "Mode 1",
"slot": 1,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
},
{
"id": 1531,
"name": "Mode 2",
"slot": 2,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
}
]
},
"not_modified": {
"common": {
"inputSite": [
1
],
"batteryBeep": [
1,
0
],
"generalHandSettings": [
1,
2,
3,
4
]
},
"modes": [
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
},
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
},
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
}
]
},
"ticket": {
"id": 1,
"sender_id": 1,
"recipient_id": 2,
"device_id": 1,
"meeting_date": "2025-07-22T15:00:00.000000Z",
"meeting_type": "none",
"contact_email": null,
"status": "new",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z",
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 1,
"title": "New config update",
"content": "",
"is_read": false,
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z",
"attachments": [
{
"id": 6629,
"ticket_id": 12973,
"ticket_message_id": 6517,
"type": "json",
"title": "Current config",
"attachment": "{\"common\":{},\"modes\":[{\"id\":1,\"name\":\"Mode 0\",\"slot\":0,\"config\":{}},{\"id\":2,\"name\":\"Mode 1\",\"slot\":1,\"config\":{}},{\"id\":3,\"name\":\"Mode 2\",\"slot\":2,\"config\":{}}]}",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z"
},
{
"id": 6630,
"ticket_id": 12973,
"ticket_message_id": 6517,
"type": "json",
"title": "New config",
"attachment": "{\"common\":{},\"modes\":[{\"id\":1,\"name\":\"Mode 0\",\"slot\":0,\"config\":{}},{\"id\":2,\"name\":\"Mode 1\",\"slot\":1,\"config\":{}},{\"id\":3,\"name\":\"Mode 2\",\"slot\":2,\"config\":{}}]}",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z"
}
]
}
]
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:RESTORE_FACTORY_RESET:INSUFFICIENT_PERMISSION"
}
Example response (403, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:RESTORE_FACTORY_RESET:NO_RESTORE_POINT"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:RESTORE_FACTORY_RESET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Send test config
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"description\": \"Fixed problem with grips.\",
\"p2p_session\": 1,
\"updateConfig\": false,
\"common\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\",
\"modes\": [
{
\"id\": 1,
\"config\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"description": "Fixed problem with grips.",
"p2p_session": 1,
"updateConfig": false,
"common": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]",
"modes": [
{
"id": 1,
"config": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]"
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 7,
"sender_id": 68,
"recipient_id": 69,
"device_id": null,
"meeting_date": "2026-07-08 15:46:48",
"meeting_type": "online_meeting",
"contact_email": "vstreich@wyman.org",
"status": "new",
"created_at": "2026-07-08T15:46:48.000000Z",
"updated_at": "2026-07-08T15:46:48.000000Z",
"sender": {
"id": 68,
"mrn": "PUN4EW8E1783525607",
"name": "Titus Schumm DDS",
"email": "1783525607febert@example.org",
"language": "en",
"phone": "731-376-7397",
"phone_country": "AZ",
"phone_verified_at": null,
"address1": "349 Kassandra Club",
"address2": "New Antwon, NV 44477-1669",
"postal_code": "76362",
"city": "Boehm Inc",
"country": "RO",
"clinic_name": "New Salliechester",
"clinic_location": "777 Huel Causeway Apt. 796\nNaomistad, IN 53271",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:47.000000Z",
"updated_at": "2026-07-08T15:46:47.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 69,
"mrn": "9A4KLVNE1783525608",
"name": "Dorothy Schuster",
"email": "1783525608walter.dennis@example.com",
"language": "en",
"phone": "727-450-3106",
"phone_country": "FK",
"phone_verified_at": null,
"address1": "281 McGlynn Skyway Suite 290",
"address2": "West Lucioville, CA 71984-0729",
"postal_code": "27131-8497",
"city": "Bradtke-Smith",
"country": "RO",
"clinic_name": "Altamouth",
"clinic_location": "690 Bauch Tunnel\nFayville, NH 60958",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:48.000000Z",
"updated_at": "2026-07-08T15:46:48.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 4,
"ticket_id": 7,
"sender_id": 70,
"title": "Mrs.",
"content": "Itaque ea dolorem molestias commodi.",
"is_read": false,
"created_at": "2026-07-08T15:46:50.000000Z",
"updated_at": "2026-07-08T15:46:50.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:SEND:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:SEND:DEVICE_NOT_FOUND"
}
Example response (422, Device does not have an amputee assigned):
{
"message": "Device does not have an amputee assigned",
"code": "CONFIG:SEND:NO_PATIENT"
}
Example response (422, Invalid P2P session):
{
"message": "Invalid P2P session",
"code": "CONFIG:SEND:INVALID_P2P_SESSION"
}
Example response (422, Invalid config):
{
"message": "Config has some problems and cannot be saved.",
"errors": {
"modes": {
"mode_3": "Config mode 3 does not belong to device 12."
},
"values": {
"common.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"common.gripsPositions.1.initial": "Invalid value [200,\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values.",
"mode_1.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"mode_1.gripsPositions.0.initial": "Invalid value [\"200\",\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values."
}
},
"code": "CONFIG:SEND:INVALID_CONFIG"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Convert config
requires authentication
Convert config JSON to match given Firmware Version. Keys are moved between common config and modes.
Example request:
curl --request POST \
"http://localhost:8000/api/config/convert" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"config\": \"[\\\"corrupti\\\",\\\"dolores\\\"]\",
\"firmware\": 1
}"
const url = new URL(
"http://localhost:8000/api/config/convert"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"config": "[\"corrupti\",\"dolores\"]",
"firmware": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:CONVERT:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG:CONVERT:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Config Demo
API endpoints for managing config demos
List config demos
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/demos?accepted=16" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/demos"
);
const params = {
"accepted": "16",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": null,
"device_id": 77,
"message_id": 8,
"config": "Ipsum sed ut sequi recusandae sequi.",
"is_accepted": 0,
"notes": "Repellendus est non voluptatibus voluptatem.",
"created_at": "2026-07-08T15:46:59.000000Z",
"updated_at": "2026-07-08T15:46:59.000000Z",
"message": {
"id": 8,
"ticket_id": 15,
"sender_id": 91,
"title": "Mr.",
"content": "Dignissimos optio minima recusandae laboriosam expedita quos.",
"is_read": false,
"created_at": "2026-07-08T15:46:59.000000Z",
"updated_at": "2026-07-08T15:46:59.000000Z"
}
},
{
"id": 2,
"user_id": null,
"device_id": 78,
"message_id": 10,
"config": "Ducimus molestias blanditiis recusandae possimus blanditiis.",
"is_accepted": 0,
"notes": "Aut deserunt distinctio nihil tempore dolor voluptatem hic.",
"created_at": "2026-07-08T15:47:01.000000Z",
"updated_at": "2026-07-08T15:47:01.000000Z",
"message": {
"id": 10,
"ticket_id": 18,
"sender_id": 96,
"title": "Ms.",
"content": "Reprehenderit non aut exercitationem a eius et quo.",
"is_read": false,
"created_at": "2026-07-08T15:47:01.000000Z",
"updated_at": "2026-07-08T15:47:01.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config demos",
"code": "CONFIG_DEMO:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_DEMO:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update config demo
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/config/demos/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"is_accepted\": false,
\"notes\": \"Something is still not working\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/demos/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"is_accepted": false,
"notes": "Something is still not working"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"user_id": null,
"device_id": 79,
"message_id": 11,
"config": "Aut dolores maxime nemo et aut quibusdam quod.",
"is_accepted": 0,
"notes": "Eius voluptates sint est temporibus cumque eaque.",
"created_at": "2026-07-08T15:47:03.000000Z",
"updated_at": "2026-07-08T15:47:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config demos",
"code": "CONFIG_DEMO:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_DEMO:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config demo not found):
{
"message": "Config demo not found",
"code": "CONFIG_DEMO:UPDATE:DEMO_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Config Modes
API endpoints for managing config modes
List config modes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config-modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 72,
"device_id": 108,
"slot": null,
"name": "Delectus assumenda placeat non facilis quaerat.",
"active": 0,
"created_at": "2026-07-08T15:47:08.000000Z",
"updated_at": "2026-07-08T15:47:08.000000Z",
"device": {
"id": 108,
"serial": "d07c1d6c-80db-3283-a451-5efafe109d27",
"bluetooth_id": "79b5b0f8-380c-3078-94f2-0b5cd67319e1",
"company_id": null,
"model_id": null,
"amputee_id": 109,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:47:08.000000Z",
"updated_at": "2026-07-08T15:47:08.000000Z",
"amputee": {
"id": 109,
"mrn": "JNB2PJCH1783525628",
"name": "Miles Schowalter",
"email": "1783525628sturner@example.org",
"language": "en",
"phone": "+1.731.513.9413",
"phone_country": "IR",
"phone_verified_at": null,
"address1": "66072 Jany Glens Apt. 879",
"address2": "West Rebekahtown, VT 44874",
"postal_code": "42024-4202",
"city": "Thiel LLC",
"country": "FI",
"clinic_name": "Korbinborough",
"clinic_location": "706 Fay Estate\nTurnerbury, CO 57431-6837",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:08.000000Z",
"updated_at": "2026-07-08T15:47:08.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
},
{
"id": 73,
"device_id": 110,
"slot": null,
"name": "Suscipit officia error recusandae libero quod sed dolores.",
"active": 0,
"created_at": "2026-07-08T15:47:08.000000Z",
"updated_at": "2026-07-08T15:47:08.000000Z",
"config": {}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config modes",
"code": "CONFIG_MODES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get config mode
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config-modes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 74,
"device_id": 111,
"slot": null,
"name": "Et nulla ut in distinctio rerum.",
"active": 1,
"created_at": "2026-07-08T15:47:09.000000Z",
"updated_at": "2026-07-08T15:47:09.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config modes",
"code": "CONFIG_MODES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:GET:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:GET:MODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create config mode
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config-modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"slot\": 0,
\"name\": \"Sport mode\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config-modes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"slot": 0,
"name": "Sport mode",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 75,
"device_id": 112,
"slot": null,
"name": "Accusantium temporibus impedit voluptates cupiditate qui enim.",
"active": 0,
"created_at": "2026-07-08T15:47:09.000000Z",
"updated_at": "2026-07-08T15:47:09.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create config modes",
"code": "CONFIG_MODES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:CREATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update config mode
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/config-modes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"slot\": 0,
\"name\": \"Sport mode\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"slot": 0,
"name": "Sport mode",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 76,
"device_id": 113,
"slot": null,
"name": "Et sit ipsum et repudiandae corrupti.",
"active": 1,
"created_at": "2026-07-08T15:47:09.000000Z",
"updated_at": "2026-07-08T15:47:09.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config mode",
"code": "CONFIG_MODES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:UPDATE:MODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Copy device config from template
requires authentication
Copy config template into selected config mode. Sends support ticket if patient is assigned to device, returns config instead.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config-modes/1/from-template/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1/from-template/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, Patient not assigned, returns config):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (202):
{
"id": 21,
"sender_id": 111,
"recipient_id": 112,
"device_id": null,
"meeting_date": "2026-07-08 15:47:09",
"meeting_type": "online_meeting",
"contact_email": "ryder.king@gmail.com",
"status": "new",
"created_at": "2026-07-08T15:47:10.000000Z",
"updated_at": "2026-07-08T15:47:10.000000Z",
"sender": {
"id": 111,
"mrn": "7HXAAYU41783525629",
"name": "Sheldon Hand",
"email": "1783525629tkiehn@example.com",
"language": "en",
"phone": "+1.215.805.6584",
"phone_country": "RE",
"phone_verified_at": null,
"address1": "467 Roberto Rapids Suite 332",
"address2": "Lake Gavinmouth, SD 89169-0237",
"postal_code": "40077",
"city": "Davis, Connelly and Wyman",
"country": "NO",
"clinic_name": "Schmelerport",
"clinic_location": "10859 River Green\nWest Lyda, VA 24018-9932",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:09.000000Z",
"updated_at": "2026-07-08T15:47:09.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 112,
"mrn": "UD3S7ZWH1783525629",
"name": "Roselyn O'Conner",
"email": "1783525629lindgren.katarina@example.com",
"language": "en",
"phone": "(352) 429-6068",
"phone_country": "CF",
"phone_verified_at": null,
"address1": "30765 Conn Valleys Suite 670",
"address2": "McGlynnborough, KS 83203",
"postal_code": "35000-7874",
"city": "Gutkowski-Jones",
"country": "UA",
"clinic_name": "Port Nellemouth",
"clinic_location": "122 Vladimir Via Suite 661\nEast Shayneville, OR 57474-4673",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:09.000000Z",
"updated_at": "2026-07-08T15:47:09.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 12,
"ticket_id": 21,
"sender_id": 113,
"title": "Prof.",
"content": "Alias officia fuga et expedita.",
"is_read": false,
"created_at": "2026-07-08T15:47:11.000000Z",
"updated_at": "2026-07-08T15:47:11.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config mode",
"code": "CONFIG_MODES:COPY_TEMPLATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:MODE_NOT_FOUND"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Config Notes
API endpoints for config history notes
Get config entry notes list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/1/notes?user=1&type=public" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes"
);
const params = {
"user": "1",
"type": "public",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"config_history_id": 7,
"user_id": 80,
"note": "Molestias totam omnis molestiae maiores.",
"type": "public",
"created_at": "2026-07-08T15:46:53.000000Z",
"updated_at": "2026-07-08T15:46:53.000000Z",
"author": {
"id": 80,
"mrn": "RG5JFVJG1783525613",
"name": "Alfred Lemke",
"email": "1783525613schmitt.kendrick@example.com",
"language": "en",
"phone": "+1.223.985.9369",
"phone_country": "UA",
"phone_verified_at": null,
"address1": "15500 Fabiola Isle",
"address2": "Emersonhaven, MD 33003",
"postal_code": "33010",
"city": "Mraz, Flatley and Kovacek",
"country": "IE",
"clinic_name": "Stammbury",
"clinic_location": "5424 Mayer Harbors\nPort Hortense, MA 16480",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:53.000000Z",
"updated_at": "2026-07-08T15:46:53.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"config_history_id": 8,
"user_id": 82,
"note": "Magni necessitatibus distinctio omnis officiis.",
"type": "public",
"created_at": "2026-07-08T15:46:54.000000Z",
"updated_at": "2026-07-08T15:46:54.000000Z",
"author": {
"id": 82,
"mrn": "SL9PXJRF1783525614",
"name": "Lucienne Flatley",
"email": "1783525614zcrona@example.org",
"language": "en",
"phone": "508.826.6373",
"phone_country": "AX",
"phone_verified_at": null,
"address1": "1979 Witting Station",
"address2": "North Jarrod, IL 28085",
"postal_code": "06064",
"city": "Bergstrom Ltd",
"country": "RO",
"clinic_name": "Jacobsmouth",
"clinic_location": "3850 Gabrielle Walks\nMarianneville, IL 80089-2978",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:54.000000Z",
"updated_at": "2026-07-08T15:46:54.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config notes",
"code": "CONFIG_NOTES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:LIST:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:LIST:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Note ID.
config_history_id
integer
Associated config history entry ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
type
string
Note visibility.
Must be one of:publicprivate
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get config entry note
requires authentication
Returns single config history entry note in response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"config_history_id": 9,
"user_id": 84,
"note": "Recusandae officiis et rerum et fugit mollitia asperiores qui.",
"type": "public",
"created_at": "2026-07-08T15:46:55.000000Z",
"updated_at": "2026-07-08T15:46:55.000000Z",
"author": {
"id": 84,
"mrn": "CWQZXW7K1783525615",
"name": "Scotty Muller",
"email": "1783525615dreichel@example.net",
"language": "en",
"phone": "252.732.8988",
"phone_country": "IO",
"phone_verified_at": null,
"address1": "43091 Dach Tunnel",
"address2": "Ruthview, SC 22323-8289",
"postal_code": "56842",
"city": "Gutkowski, Mann and Kunde",
"country": "PL",
"clinic_name": "Port Rosalynshire",
"clinic_location": "52892 Yadira Plains\nPaigefurt, NM 89119",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:55.000000Z",
"updated_at": "2026-07-08T15:46:55.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config notes",
"code": "CONFIG_NOTES:GET_ENTRY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:GET_ENTRY:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:GET_ENTRY:HISTORY_ENTRY_NOT_FOUND"
}
Example response (404, Config history note not found):
{
"message": "Config history note not found",
"code": "CONFIG_NOTES:GET_ENTRY:HISTORY_NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Note ID.
config_history_id
integer
Associated config history entry ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
type
string
Note visibility.
Must be one of:publicprivate
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Create config entry note
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/1/notes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"note\": \"Modi omnis illum ipsam sit ab iusto.\",
\"type\": \"public\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"note": "Modi omnis illum ipsam sit ab iusto.",
"type": "public"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 4,
"config_history_id": 10,
"user_id": 86,
"note": "Modi vel officia debitis voluptas odio quibusdam voluptatem est.",
"type": "public",
"created_at": "2026-07-08T15:46:56.000000Z",
"updated_at": "2026-07-08T15:46:56.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add config notes",
"code": "CONFIG_NOTES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:CREATE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:CREATE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Note ID.
config_history_id
integer
Associated config history entry ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
type
string
Note visibility.
Must be one of:publicprivate
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Delete config note
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/config/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config history note deleted",
"code": "CONFIG_NOTES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config notes",
"code": "CONFIG_NOTES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:DELETE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:DELETE:HISTORY_ENTRY_NOT_FOUND"
}
Example response (404, Config history note not found):
{
"message": "Config history note not found",
"code": "CONFIG_NOTES:DELETE:HISTORY_NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Config Schema
API endpoints for config schema management
Get config schema
requires authentication
Returns list of config schema entries for given firmware version.
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/firmware/1/schema?filter=modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1/schema"
);
const params = {
"filter": "modes",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"firmware_id": 7,
"key": "mollitia",
"is_common": 1,
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
},
{
"id": 2,
"firmware_id": 9,
"key": "cupiditate",
"is_common": 0,
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view config schema",
"code": "CONFIG_SCHEMA:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:GET:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config schema ID.
firmware_id
integer
Associated firmware version ID.
key
string
Config schema key.
is_common
boolean
Whether this key is shared across all modes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
firmware
object
Associated firmware version.
Add config schema
requires authentication
Add one or many config schema entries. Each entry is one key in config. Body of this request is simple array of objects:
[
{"key": "key_name", "is_common": 1},
{"key": "another_name", "is_common": 0},
...
]
Example request:
curl --request POST \
"http://localhost:8000/api/versions/firmware/culpa/schema" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "[
{
\"key\": \"gripsPosition.0.initial\",
\"is_common\": 1
}
]"
const url = new URL(
"http://localhost:8000/api/versions/firmware/culpa/schema"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = [
{
"key": "gripsPosition.0.initial",
"is_common": 1
}
];
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"firmware_id": 11,
"key": "velit",
"is_common": 1,
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
},
{
"id": 4,
"firmware_id": 13,
"key": "alias",
"is_common": 1,
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage config schema",
"code": "CONFIG_SCHEMA:ADD:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:ADD:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config schema ID.
firmware_id
integer
Associated firmware version ID.
key
string
Config schema key.
is_common
boolean
Whether this key is shared across all modes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
firmware
object
Associated firmware version.
Delete config schema
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/firmware/1/schema/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1/schema/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config schema entry deleted",
"code": "CONFIG_SCHEMA:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage config schema",
"code": "CONFIG_SCHEMA:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:DELETE:FIRMWARE_NOT_FOUND"
}
Example response (404, Config schema entry not found):
{
"message": "Config schema entry not found",
"code": "CONFIG_SCHEMA:DELETE:SCHEMA_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Config Templates
API endpoints for managing config templates
Get config templates list
requires authentication
Entries where author is present are private and owned by its author. Entries where author is null should be considered as global templates prepared by Aether team.
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates?search=sport&author=1&scope=me" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates"
);
const params = {
"search": "sport",
"author": "1",
"scope": "me",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Facere recusandae minima dolor est optio quo.",
"description": "A minus ipsum quidem voluptatem id exercitationem dolor.",
"author_id": 100,
"company_id": null,
"config": "{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,400],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[20,90,10,20,60,70,50,90,50,40],\"gripPairsConfig\":[3,2,5,6,10,11,9,8],\"gripSequentialConfig\":[2,8,1,255,255,3,10,11,255,255,12,255],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,1500],\"pulseTimings\":[850,710,910,450],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-07-08T15:47:03.000000Z",
"updated_at": "2026-07-08T15:47:03.000000Z",
"author": {
"id": 100,
"mrn": "MMTAUU6Y1783525623",
"name": "Stevie Miller DVM",
"email": "1783525623kunde.gertrude@example.net",
"language": "en",
"phone": "+14705185108",
"phone_country": "PY",
"phone_verified_at": null,
"address1": "2101 Wendy Run Apt. 107",
"address2": "Port Vincenzaland, NV 28451",
"postal_code": "01299",
"city": "Watsica, Kautzer and Orn",
"country": "UA",
"clinic_name": "Lindview",
"clinic_location": "8644 Leannon Cliffs Apt. 370\nNorth Crystalview, CO 76611-2132",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:03.000000Z",
"updated_at": "2026-07-08T15:47:03.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"name": "Officiis pariatur unde id veritatis sed nihil possimus.",
"description": "Facere sint sit labore cum laudantium.",
"author_id": 101,
"company_id": null,
"config": "{\"autoGrasp\":[1,0],\"coContractionTimings\":[200,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[40,0,50,80,30,10,0,10,10,40],\"gripPairsConfig\":[6,7,9,11,13,3,4,12],\"gripSequentialConfig\":[255,13,255,2,4,6,9,12,255,7,255,8],\"gripSwitchingMode\":[1],\"holdOpen\":[2000,2500],\"pulseTimings\":[370,340,40,690],\"softGrip\":[1],\"speedControlStrategy\":[0]}",
"created_at": "2026-07-08T15:47:04.000000Z",
"updated_at": "2026-07-08T15:47:04.000000Z",
"author": {
"id": 101,
"mrn": "ZANAXCMG1783525623",
"name": "Leola Boyle",
"email": "1783525623eterry@example.org",
"language": "en",
"phone": "+1 (973) 304-6668",
"phone_country": "ER",
"phone_verified_at": null,
"address1": "50987 Giovanny Crest",
"address2": "Olsonbury, ID 79255",
"postal_code": "21802-2513",
"city": "Mosciski, Fay and Collier",
"country": "NO",
"clinic_name": "East Lucindafort",
"clinic_location": "5662 Pacocha Drives Suite 603\nErnserville, AZ 56145-6394",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:03.000000Z",
"updated_at": "2026-07-08T15:47:03.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config templates",
"code": "CONFIG_TEMPLATES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get config template
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"name": "Recusandae sint iste illo.",
"description": "Nemo consequatur ipsum illo et necessitatibus.",
"author_id": 102,
"company_id": null,
"config": "{\"autoGrasp\":[0,0],\"coContractionTimings\":[400,400],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[40,70,60,60,90,70,100,0,0,20],\"gripPairsConfig\":[8,5,4,11,3,10,13,7],\"gripSequentialConfig\":[10,3,13,1,2,11,5,12,9,255,8,6],\"gripSwitchingMode\":[3],\"holdOpen\":[2000,2500],\"pulseTimings\":[980,570,340,80],\"softGrip\":[0],\"speedControlStrategy\":[1]}",
"created_at": "2026-07-08T15:47:04.000000Z",
"updated_at": "2026-07-08T15:47:04.000000Z",
"author": {
"id": 102,
"mrn": "FEJNJNL81783525624",
"name": "Thaddeus Trantow",
"email": "1783525624hermann.nova@example.org",
"language": "en",
"phone": "1-352-252-4083",
"phone_country": "GL",
"phone_verified_at": null,
"address1": "914 Jast Ports",
"address2": "North Chanelleborough, VA 82432-2819",
"postal_code": "30883",
"city": "Farrell-Leannon",
"country": "LV",
"clinic_name": "Beerland",
"clinic_location": "69955 Borer Centers\nSouth Kielside, MI 47946-4111",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:04.000000Z",
"updated_at": "2026-07-08T15:47:04.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view config template",
"code": "CONFIG_TEMPLATES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:GET:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
Create new config template
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/config/templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Default config for Aether Zeus\",
\"description\": \"Description of the config template.\",
\"owner\": \"company\",
\"author\": 1,
\"config\": \"{\\\"param_1\\\": [100, 200], \\\"param_2\\\": [100, 200, 300]}\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Default config for Aether Zeus",
"description": "Description of the config template.",
"owner": "company",
"author": 1,
"config": "{\"param_1\": [100, 200], \"param_2\": [100, 200, 300]}"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "Corrupti eos modi rerum quis numquam beatae occaecati.",
"description": "Est saepe recusandae alias consequatur molestias nulla consequuntur dolor.",
"author_id": 103,
"company_id": null,
"config": "{\"autoGrasp\":[0,0],\"coContractionTimings\":[100,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[40,40,20,90,70,20,30,10,0,20],\"gripPairsConfig\":[13,6,2,9,12,4,3,8],\"gripSequentialConfig\":[3,255,255,10,13,1,255,11,5,12,255,255],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,1500],\"pulseTimings\":[340,430,90,850],\"softGrip\":[1],\"speedControlStrategy\":[1]}",
"created_at": "2026-07-08T15:47:05.000000Z",
"updated_at": "2026-07-08T15:47:05.000000Z",
"author": {
"id": 103,
"mrn": "C63QQ9CE1783525624",
"name": "Braeden Shanahan DVM",
"email": "1783525624wilfrid69@example.org",
"language": "en",
"phone": "(430) 363-7016",
"phone_country": "GN",
"phone_verified_at": null,
"address1": "315 Hill Valleys",
"address2": "West Oliverchester, TX 29437-8362",
"postal_code": "91170-6195",
"city": "Koss, Schulist and Wilderman",
"country": "SE",
"clinic_name": "Murphyland",
"clinic_location": "7550 King Landing Apt. 659\nWest Marcelletown, TX 06132-9275",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:04.000000Z",
"updated_at": "2026-07-08T15:47:04.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create config template",
"code": "CONFIG_TEMPLATES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
Update config template
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Default config for Aether Zeus\",
\"description\": \"Description of the config template.\",
\"owner\": \"company\",
\"author\": 1,
\"config\": \"{\\\"param_1\\\": [100, 200], \\\"param_2\\\": [100, 200, 300]}\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Default config for Aether Zeus",
"description": "Description of the config template.",
"owner": "company",
"author": 1,
"config": "{\"param_1\": [100, 200], \"param_2\": [100, 200, 300]}"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"name": "Iusto modi recusandae velit ut.",
"description": "Nobis aliquam ipsa facilis atque.",
"author_id": 104,
"company_id": null,
"config": "{\"autoGrasp\":[0,100],\"coContractionTimings\":[400,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[70,0,0,50,0,90,70,80,60,60],\"gripPairsConfig\":[6,12,3,4,13,1,5,8],\"gripSequentialConfig\":[5,255,11,2,1,13,4,255,255,10,3,8],\"gripSwitchingMode\":[1],\"holdOpen\":[2000,2500],\"pulseTimings\":[380,600,140,570],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-07-08T15:47:05.000000Z",
"updated_at": "2026-07-08T15:47:05.000000Z",
"author": {
"id": 104,
"mrn": "YG5GXV4P1783525625",
"name": "Mrs. Rosalinda Rohan",
"email": "1783525625jgusikowski@example.org",
"language": "en",
"phone": "1-831-982-8776",
"phone_country": "LY",
"phone_verified_at": null,
"address1": "134 Shanahan Forks Suite 960",
"address2": "Daxland, MT 14512",
"postal_code": "82505-7255",
"city": "Rau-Hermann",
"country": "SI",
"clinic_name": "Lake Mittie",
"clinic_location": "181 Kenny Parkways\nSouth Maxime, CT 03556",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:05.000000Z",
"updated_at": "2026-07-08T15:47:05.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config template",
"code": "CONFIG_TEMPLATES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:UPDATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
Delete config template
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config template deleted",
"code": "CONFIG_TEMPLATES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config template",
"code": "CONFIG_TEMPLATES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:DELETE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Config Templates Notes
API endpoints for config templates notes
Get config templates notes list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1/notes?user=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes"
);
const params = {
"user": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"template_id": 6,
"user_id": 105,
"note": "Vero suscipit asperiores doloremque omnis repellat.",
"created_at": "2026-07-08T15:47:06.000000Z",
"updated_at": "2026-07-08T15:47:06.000000Z",
"author": {
"id": 105,
"mrn": "VVNT69MS1783525625",
"name": "Gretchen Turner",
"email": "1783525625orie33@example.org",
"language": "en",
"phone": "+1.904.688.8042",
"phone_country": "US",
"phone_verified_at": null,
"address1": "3775 Francisco Branch",
"address2": "Kihnmouth, CT 94363",
"postal_code": "41531-0143",
"city": "Monahan PLC",
"country": "UA",
"clinic_name": "Port Imelda",
"clinic_location": "97671 Brenden Garden Apt. 788\nBaileytown, MT 09767",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:06.000000Z",
"updated_at": "2026-07-08T15:47:06.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"template_id": 7,
"user_id": 106,
"note": "Veniam voluptates sequi neque ipsam tenetur.",
"created_at": "2026-07-08T15:47:06.000000Z",
"updated_at": "2026-07-08T15:47:06.000000Z",
"author": {
"id": 106,
"mrn": "R2MCUPZC1783525626",
"name": "Prof. Jonathon Dietrich",
"email": "1783525626oswaldo30@example.net",
"language": "en",
"phone": "(463) 451-7856",
"phone_country": "MF",
"phone_verified_at": null,
"address1": "32966 Kenny Highway Suite 205",
"address2": "Wildermanton, DC 00842-8915",
"postal_code": "92715",
"city": "Keeling Inc",
"country": "FI",
"clinic_name": "East Aliza",
"clinic_location": "88712 Bartell Loop Suite 130\nSouth Creola, OH 99498-5717",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:06.000000Z",
"updated_at": "2026-07-08T15:47:06.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:LIST:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Note ID.
template_id
integer
Associated config template ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get config template note
requires authentication
Returns single config template note in response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"template_id": 8,
"user_id": 107,
"note": "Quam rerum repellendus autem molestiae voluptatum voluptatum provident est.",
"created_at": "2026-07-08T15:47:07.000000Z",
"updated_at": "2026-07-08T15:47:07.000000Z",
"author": {
"id": 107,
"mrn": "FXP5QQ4N1783525626",
"name": "Ottis Weber",
"email": "1783525626kuvalis.josefina@example.com",
"language": "en",
"phone": "+1-747-530-1747",
"phone_country": "MK",
"phone_verified_at": null,
"address1": "8063 Vivienne Lodge Apt. 407",
"address2": "Jasthaven, RI 48107-7793",
"postal_code": "91028",
"city": "Weimann-Mayert",
"country": "GB",
"clinic_name": "New Allison",
"clinic_location": "66730 Runolfsdottir Junction Apt. 180\nEdmundmouth, MS 25432-0492",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:07.000000Z",
"updated_at": "2026-07-08T15:47:07.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:GET:TEMPLATE_NOT_FOUND"
}
Example response (404, Config template note not found):
{
"message": "Config template note not found",
"code": "CONFIG_TEMPLATE_NOTES:GET:NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Note ID.
template_id
integer
Associated config template ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Create new config template note
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/config/templates/1/notes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"note\": \"Quisquam qui delectus deserunt et totam accusantium.\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates/1/notes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"note": "Quisquam qui delectus deserunt et totam accusantium."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"template_id": 9,
"user_id": 108,
"note": "Voluptatem labore voluptas magni natus est placeat consequatur.",
"created_at": "2026-07-08T15:47:07.000000Z",
"updated_at": "2026-07-08T15:47:07.000000Z",
"author": {
"id": 108,
"mrn": "VS77RUUP1783525627",
"name": "Cielo Abernathy",
"email": "1783525627keenan.moore@example.net",
"language": "en",
"phone": "+1 (956) 816-0417",
"phone_country": "TZ",
"phone_verified_at": null,
"address1": "7843 Russel Hollow",
"address2": "West Marjory, WY 58442-7672",
"postal_code": "27324",
"city": "Crona, Kshlerin and Fadel",
"country": "IE",
"clinic_name": "Makennaland",
"clinic_location": "44814 Pfeffer Stream Suite 550\nConroychester, RI 09227-8463",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:07.000000Z",
"updated_at": "2026-07-08T15:47:07.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:CREATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Note ID.
template_id
integer
Associated config template ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Delete config template note
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/config/templates/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config template note deleted",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:TEMPLATE_NOT_FOUND"
}
Example response (404, Config template note not found):
{
"message": "Config template note not found",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Custom Grips
API endpoints for custom grips management
List custom grips templates
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/custom-grips-templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/custom-grips-templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": 259,
"name": "wilma.donnelly",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-07-08T15:48:18.000000Z",
"updated_at": "2026-07-08T15:48:18.000000Z"
},
{
"id": 2,
"user_id": 260,
"name": "abbott.waldo",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-07-08T15:48:18.000000Z",
"updated_at": "2026-07-08T15:48:18.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Custom grip template ID.
user_id
integer
Owner user ID.
name
string
Template name.
initial_position
string
Initial finger positions.
limit_position
string
Limit finger positions.
active_fingers
string
Active fingers configuration.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create custom grip template
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/custom-grips-templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip Template 1\",
\"initial_position\": \"[50, 50, 50, 50, 50]\",
\"limit_position\": \"[900, 900, 900, 900, 900]\",
\"active_fingers\": \"[0, 1, 1, 1, 1]\"
}"
const url = new URL(
"http://localhost:8000/api/custom-grips-templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip Template 1",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"user_id": 261,
"name": "rlynch",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-07-08T15:48:19.000000Z",
"updated_at": "2026-07-08T15:48:19.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip template name in use):
{
"message": "Custom grip template name already in use",
"code": "CUSTOM_GRIPS_TEMPLATES:CREATE:NAME_IN_USE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Custom grip template ID.
user_id
integer
Owner user ID.
name
string
Template name.
initial_position
string
Initial finger positions.
limit_position
string
Limit finger positions.
active_fingers
string
Active fingers configuration.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete custom grip template
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/custom-grips-templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/custom-grips-templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Custom grip deleted",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Custom grip template not found):
{
"message": "Custom grip template not found",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
List custom grips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/custom-grips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/custom-grips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_id": 135,
"name": "herminio72",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-07-08T15:48:19.000000Z",
"updated_at": "2026-07-08T15:48:19.000000Z"
},
{
"id": 2,
"device_id": 136,
"name": "keyshawn37",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-07-08T15:48:19.000000Z",
"updated_at": "2026-07-08T15:48:19.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view custom grips",
"code": "CUSTOM_GRIPS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Custom grip ID.
device_id
integer
Associated device ID.
name
string
Custom grip name.
opposed
boolean
Whether the grip is opposed.
grip_number
integer
Grip slot number.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create custom grip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/custom-grips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip 1\",
\"opposed\": true,
\"grip_number\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/1/custom-grips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip 1",
"opposed": true,
"grip_number": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"device_id": 137,
"name": "emma12",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-07-08T15:48:19.000000Z",
"updated_at": "2026-07-08T15:48:19.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip name in use):
{
"message": "Custom grip name already in use",
"code": "CUSTOM_GRIPS:CREATE:NAME_IN_USE"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:CREATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Custom grip ID.
device_id
integer
Associated device ID.
name
string
Custom grip name.
opposed
boolean
Whether the grip is opposed.
grip_number
integer
Grip slot number.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update custom grip
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/custom-grips/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip 1\",
\"opposed\": true,
\"grip_number\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/1/custom-grips/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip 1",
"opposed": true,
"grip_number": 1
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"device_id": 138,
"name": "anastasia83",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-07-08T15:48:19.000000Z",
"updated_at": "2026-07-08T15:48:19.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip name in use):
{
"message": "Custom grip name already in use",
"code": "CUSTOM_GRIPS:UPDATE:NAME_IN_USE"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Custom grip not found):
{
"message": "Custom grip not found",
"code": "CUSTOM_GRIPS:UPDATE:GRIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Custom grip ID.
device_id
integer
Associated device ID.
name
string
Custom grip name.
opposed
boolean
Whether the grip is opposed.
grip_number
integer
Grip slot number.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete custom grip
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/custom-grips/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/custom-grips/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Custom grip template deleted",
"code": "CUSTOM_GRIPS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:DELETE:DEVICE_NOT_FOUND"
}
Example response (404, Custom grip not found):
{
"message": "Custom grip not found",
"code": "CUSTOM_GRIPS:DELETE:GRIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Device Models
API endpoints for device models management
Get device models list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/devices/models?active=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/devices/models"
);
const params = {
"active": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-07-08T15:46:32.000000Z",
"updated_at": "2026-07-08T15:46:32.000000Z"
},
{
"id": 4,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "right",
"active": 1,
"created_at": "2026-07-08T15:46:32.000000Z",
"updated_at": "2026-07-08T15:46:32.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list device models",
"code": "DEVICE_MODELS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create device model
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/devices/models" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Zeus hand v1\",
\"type\": \"hand\",
\"orientation\": \"left\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/devices/models"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Zeus hand v1",
"type": "hand",
"orientation": "left",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "left",
"active": 1,
"created_at": "2026-07-08T15:46:32.000000Z",
"updated_at": "2026-07-08T15:46:32.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create device model",
"code": "DEVICE_MODELS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update device model
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/devices/models/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Zeus hand v1\",
\"type\": \"hand\",
\"orientation\": \"left\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/devices/models/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Zeus hand v1",
"type": "hand",
"orientation": "left",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 6,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "left",
"active": 1,
"created_at": "2026-07-08T15:46:32.000000Z",
"updated_at": "2026-07-08T15:46:32.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device model",
"code": "DEVICE_MODELS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device model not found):
{
"message": "Device model not found",
"code": "DEVICE_MODELS:UPDATE:MODEL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Devices
API endpoints for devices management
Check serial number or bluetooth ID
Public endpoint responding with status of given device serial number or bluetooth ID. If any of these numbers can be found in database, status will be true. Otherwise, status will be false (device does not exist).
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/check/S3R1AL-NUM83R" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"serial\"
}"
const url = new URL(
"http://localhost:8000/api/device/check/S3R1AL-NUM83R"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "serial"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"status": true
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get devices list
requires authentication
Possible extend options:
- model - device model details
- amputee - end-user assigned to device
- clinicians - list of clinicians assigned to the device
- firmwareVersion - device firmware version
- pcbVersion - PCB version
Example request:
curl --request GET \
--get "http://localhost:8000/api/devices?search=S3R1AL-NUM83R&active=-1&utee=1&clinician=1&model=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/devices"
);
const params = {
"search": "S3R1AL-NUM83R",
"active": "-1",
"amputee": "1",
"clinician": "1",
"model": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 5,
"serial": "58c5f36f-aecd-3264-ba86-5f8323cd7e76",
"bluetooth_id": "e02bef13-0e46-3a98-9f7f-abf94eb0a8a8",
"company_id": null,
"model_id": 7,
"amputee_id": 38,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:33.000000Z",
"updated_at": "2026-07-08T15:46:33.000000Z",
"model": {
"id": 7,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-07-08T15:46:32.000000Z",
"updated_at": "2026-07-08T15:46:32.000000Z"
},
"amputee": {
"id": 38,
"mrn": "H7SFKRHZ1783525592",
"name": "Camilla Prohaska MD",
"email": "1783525592nickolas.hudson@example.com",
"language": "en",
"phone": "+1-820-944-4399",
"phone_country": "ID",
"phone_verified_at": null,
"address1": "68960 Prosacco Pike Suite 618",
"address2": "North Paul, MT 08118",
"postal_code": "54382",
"city": "Hill Group",
"country": "GB",
"clinic_name": "Saraistad",
"clinic_location": "79631 Abbott Roads Suite 978\nArdenmouth, KY 52998-3539",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:32.000000Z",
"updated_at": "2026-07-08T15:46:32.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 6,
"serial": "56fff588-ed3b-37ff-856f-14faf243eb2d",
"bluetooth_id": "ab1e8db9-8c1b-3c80-9d6c-3d6dc7355a91",
"company_id": null,
"model_id": 8,
"amputee_id": 39,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:33.000000Z",
"updated_at": "2026-07-08T15:46:33.000000Z",
"model": {
"id": 8,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "left",
"active": 1,
"created_at": "2026-07-08T15:46:33.000000Z",
"updated_at": "2026-07-08T15:46:33.000000Z"
},
"amputee": {
"id": 39,
"mrn": "BE4MHASP1783525593",
"name": "German Bosco",
"email": "1783525593eglover@example.com",
"language": "en",
"phone": "276.476.6390",
"phone_country": "RE",
"phone_verified_at": null,
"address1": "873 Towne Loop Suite 225",
"address2": "Lake Zakary, MO 71727",
"postal_code": "41781-1036",
"city": "Lakin, Swift and Ullrich",
"country": "IN",
"clinic_name": "Ziemannchester",
"clinic_location": "6496 Tyrese Junction\nJuniustown, RI 32723-8276",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:33.000000Z",
"updated_at": "2026-07-08T15:46:33.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list devices",
"code": "DEVICES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get device information
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 7,
"serial": "23abe700-7bc3-3fe9-9760-815f0be3a85d",
"bluetooth_id": "13996eba-7f25-3daa-a147-654a0825ad01",
"company_id": null,
"model_id": 9,
"amputee_id": 40,
"clinician_id": null,
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z",
"model": {
"id": 9,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-07-08T15:46:33.000000Z",
"updated_at": "2026-07-08T15:46:33.000000Z"
},
"amputee": {
"id": 40,
"mrn": "LZVMAVPL1783525593",
"name": "Joel Moore",
"email": "1783525593tmccullough@example.org",
"language": "en",
"phone": "352-613-6494",
"phone_country": "GU",
"phone_verified_at": null,
"address1": "998 Kohler Circles",
"address2": "Javierstad, UT 08565",
"postal_code": "96469-1616",
"city": "Nikolaus, Marks and Balistreri",
"country": "SK",
"clinic_name": "Port Furman",
"clinic_location": "923 Kenyatta Radial\nLake Emilia, WI 86950-9392",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:33.000000Z",
"updated_at": "2026-07-08T15:46:33.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"pcb_version": {
"id": 1,
"name": "7.64.85",
"hardware_id": "",
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:GET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Create new device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"serial\": \"S3R1AL-NUM83R\",
\"bluetooth_id\": \"BL0123456789\",
\"model_id\": 1,
\"amputee_id\": 1,
\"clinicians\": [
2
],
\"firmware_version_id\": 1,
\"pcb_version_id\": 1,
\"reverse_magnets\": false,
\"is_electrode\": false,
\"active\": true,
\"last_activity_at\": \"2022-08-15 12:00:00\"
}"
const url = new URL(
"http://localhost:8000/api/device"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"serial": "S3R1AL-NUM83R",
"bluetooth_id": "BL0123456789",
"model_id": 1,
"amputee_id": 1,
"clinicians": [
2
],
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": false,
"is_electrode": false,
"active": true,
"last_activity_at": "2022-08-15 12:00:00"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 8,
"serial": "ba4cce63-1f46-3280-af9e-d1e43b0ff42f",
"bluetooth_id": "e9b4a398-4446-3d41-a680-37f79eade8a1",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create device",
"code": "DEVICES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Firmware has no schema):
{
"message": "Cannot create: firmware has no schema",
"code": "DEVICES:CREATE:NO_FIRMWARE_SCHEMA"
}
Example response (500, Server error):
{
"message": "Server error: device not created",
"code": "DEVICES:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Update device
requires authentication
Amputee of device can update only these fields:
serial, bluetooth_id, firmware_version_id, pcb_version_id
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"serial\": \"S3R1AL-NUM83R\",
\"bluetooth_id\": \"BL0123456789\",
\"model_id\": 1,
\"amputee_id\": 1,
\"clinicians\": [
2
],
\"firmware_version_id\": 1,
\"pcb_version_id\": 1,
\"reverse_magnets\": false,
\"is_electrode\": false,
\"active\": true,
\"last_activity_at\": \"2022-08-15 12:00:00\"
}"
const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"serial": "S3R1AL-NUM83R",
"bluetooth_id": "BL0123456789",
"model_id": 1,
"amputee_id": 1,
"clinicians": [
2
],
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": false,
"is_electrode": false,
"active": true,
"last_activity_at": "2022-08-15 12:00:00"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 9,
"serial": "8c6d6fd1-1783-31ad-8702-a90ce09f6601",
"bluetooth_id": "c6021693-0802-378a-97cd-c975790a6450",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device",
"code": "DEVICES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Firmware has no schema):
{
"message": "Cannot update: firmware has no schema",
"code": "DEVICES:UPDATE:NO_FIRMWARE_SCHEMA"
}
Example response (403):
{
"message": "Cannot update: no clinicians left for patient relation",
"code": "DEVICES:UPDATE:NO_CLINICIANS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:UPDATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Delete device
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Device deleted",
"code": "DEVICES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete device",
"code": "DEVICES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DELETE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get device hashes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/hash" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/hash"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access device hashes",
"code": "DEVICES:GET_HASHES:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:GET_HASHES:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update device hashes
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/hash" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"hash_global\": \"123456789012345\",
\"hash_common_settings\": \"123456789012345\",
\"hash_common_grips\": \"123456789012345\",
\"hash_mode1\": \"123456789012345\",
\"hash_mode2\": \"123456789012345\",
\"hash_mode3\": \"123456789012345\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/hash"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access device hashes",
"code": "DEVICES:SET_HASHES:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:SET_HASHES:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Detach device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/detach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/detach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Device detached",
"code": "DEVICES:DETACH:DETACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to detach device",
"code": "DEVICES:DETACH:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DETACH:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Add device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/add/S3R1AL-NUM83R" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/add/S3R1AL-NUM83R"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 10,
"serial": "d4e81e67-03f1-3ae7-9f0f-16a10f302b20",
"bluetooth_id": "2cfd07a2-9575-3205-b66a-d4f4feb20a11",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to assign devices with code",
"code": "DEVICES:ASSIGN:INSUFFICIENT_PERMISSION"
}
Example response (403, User reached the temporary limit of attached devices):
{
"message": "Reached the limit of assigned devices",
"code": "DEVICES:ASSIGN:LIMIT_REACHED"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:ASSIGN:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Connect device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/connect/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/connect/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Device connected",
"code": "DEVICES:CONNECT:CONNECTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:CONNECT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:CONNECT:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Disconnect device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/disconnect/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/disconnect/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Device disconnected",
"code": "DEVICES:DISCONNECT:DISCONNECTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:DISCONNECT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DISCONNECT:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Join devices
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/join/1/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"force\": false,
\"patient\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/join/1/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"force": false,
"patient": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 11,
"serial": "2b240f41-1c87-3835-9fd6-0051c8de249c",
"bluetooth_id": "103fd7ad-b419-3e09-be02-64f704da7d55",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z",
"joined_devices": [
{
"id": 12,
"serial": "f7d077d5-434e-3421-b463-59f77041558c",
"bluetooth_id": "daa53bd5-88b9-3f79-a3bc-b13c3aec8102",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z",
"pivot": {
"electrode_id": 11,
"device_id": 12,
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
}
],
"joined_electrodes": [
{
"id": 13,
"serial": "a13d5000-1048-3c5b-8585-fdb263e35b0a",
"bluetooth_id": "96392471-710f-3ee9-9751-1b6ee4fc67b6",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z",
"pivot": {
"device_id": 11,
"electrode_id": 13,
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to join devices",
"code": "DEVICES:JOIN:INSUFFICIENT_PERMISSION"
}
Example response (403, Device 2 has a patient assigned):
{
"message": "Device 2 has a patient assigned",
"code": "DEVICES:JOIN:DEVICE2_HAS_PATIENT"
}
Example response (403, Device already has an electrode joined):
{
"message": "Device already has an electrode joined",
"code": "DEVICES:JOIN:ALREADY_JOINED"
}
Example response (403, Server error):
{
"message": "Server error",
"code": "DEVICES:JOIN:SERVER_ERROR"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:JOIN:DEVICE_NOT_FOUND"
}
Example response (404, Device 1 cannot be an electrode):
{
"message": "Device 1 cannot be an electrode",
"code": "DEVICES:JOIN:INCORRECT_DEVICE1_TYPE"
}
Example response (404, Device 2 must be an electrode):
{
"message": "Device 1 must be an electrode",
"code": "DEVICES:JOIN:INCORRECT_DEVICE2_TYPE"
}
Example response (404, Both devices have no patient assigned):
{
"message": "Both devices have no patient assigned",
"code": "DEVICES:JOIN:NO_PATIENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Detach joined devices
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/unjoin/1/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/unjoin/1/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Devices unjoined",
"code": "DEVICES:UNJOIN:UNJOINED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to join devices",
"code": "DEVICES:UNJOIN:INSUFFICIENT_PERMISSION"
}
Example response (403, OK):
{
"message": "Devices are not joined",
"code": "DEVICES:UNJOIN:NOT_JOINED"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:UNJOIN:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Create demo patient
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/dummy-patient" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/dummy-patient"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201, OK):
{
"email": "SERIAL@gmail.com",
"password": "Demo@123"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create dummy patient",
"code": "DEVICES:DUMMY_PATIENT:INSUFFICIENT_PERMISSION"
}
Example response (403, Device already has a patient):
{
"message": "Device already has a patient",
"code": "DEVICES:DUMMY_PATIENT:PATIENT_EXISTS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DUMMY_PATIENT:DEVICE_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: dummy patient not created",
"code": "DEVICES:DUMMY_PATIENT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get device internal note
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/19/internal-note" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/19/internal-note"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 1,
"device_id": 17,
"note": "Numquam quia perspiciatis sunt autem. Tempora et maiores est nisi cum provident expedita. Quae ea tenetur pariatur saepe ipsam dignissimos doloremque.",
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access internal notes",
"code": "INTERNAL_NOTE:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "INTERNAL_NOTE:GET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update device internal note
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/internal-note" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"note\": \"Device returned from clinic for inspection.\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/internal-note"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"note": "Device returned from clinic for inspection."
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 2,
"device_id": 18,
"note": "Odit autem nisi dolores adipisci facere. Iste consequatur suscipit iste. Aut distinctio libero a commodi quas saepe dicta.",
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access internal notes",
"code": "INTERNAL_NOTE:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "INTERNAL_NOTE:UPDATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Documents
API endpoints for documents management
List documents
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents?type=web" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents"
);
const params = {
"type": "web",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Musician OR Singer",
"type": "mobile",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
},
{
"id": 2,
"name": "Sales Manager",
"type": "web",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Document ID.
name
string
Document name.
type
string
Document target platform.
Must be one of:webmobile
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
versions
object[]
Document versions.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create document
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Privacy Policy\",
\"type\": \"web\"
}"
const url = new URL(
"http://localhost:8000/api/documents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Privacy Policy",
"type": "web"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "Truck Driver",
"type": "web",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Document ID.
name
string
Document name.
type
string
Document target platform.
Must be one of:webmobile
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
versions
object[]
Document versions.
Delete document
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/documents/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Document deleted",
"code": "DOCUMENTS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Document has existing versions):
{
"message": "Cannot delete: document has existing versions (1)",
"code": "DOCUMENTS:DELETE:HAS_VERSIONS"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:DELETE:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
List document versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents/1/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"document_id": null,
"index": 5,
"file": "https://ondricka.com/delectus-molestiae-dolores-minus-commodi-aspernatur-autem-saepe-aspernatur.html",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
},
{
"id": 2,
"document_id": null,
"index": 9206,
"file": "http://blanda.org/quos-perferendis-ducimus-ratione-molestias-quidem-hic-eaque",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:LIST_VERSIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:LIST_VERSIONS:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Document version ID.
document_id
integer
Associated document ID.
index
integer
Version index number.
file
string
File path or URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
document
object
Parent document.
Create document version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents/1/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"file\": \"https:\\/\\/www.aetherbiomedical.com\\/privacy-policy\"
}"
const url = new URL(
"http://localhost:8000/api/documents/1/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"file": "https:\/\/www.aetherbiomedical.com\/privacy-policy"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"document_id": null,
"index": 815946531,
"file": "http://www.yost.info/",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:CREATE_VERSION:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:CREATE_VERSION:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Document version ID.
document_id
integer
Associated document ID.
index
integer
Version index number.
file
string
File path or URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
document
object
Parent document.
Delete document version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/documents/1/versions/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1/versions/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Document version deleted",
"code": "DOCUMENTS:DELETE_VERSION:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:DELETE_VERSION:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:DELETE_VERSION:DOCUMENT_NOT_FOUND"
}
Example response (404, Document version not found):
{
"message": "Document version not found",
"code": "DOCUMENTS:DELETE_VERSION:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get documents status
requires authentication
Any document on the list has to be accepted. Use POST /documents/accept endpoint to mark them as accepted once user agrees to that.
Empty list means that user is up-to-date with all required documents and nothing has to be accepted.
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents/status?type=web" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/status"
);
const params = {
"type": "web",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"documents": []
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view documents status",
"code": "DOCUMENTS:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Accept documents
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents/accept" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"documents\": [
1
]
}"
const url = new URL(
"http://localhost:8000/api/documents/accept"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"documents": [
1
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Accepted 1 document(s)",
"code": "DOCUMENTS:ACCEPT:ACCEPTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update documents status",
"code": "DOCUMENTS:ACCEPT:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Accept Terms of Service for patients
requires authentication
This endpoint does not save any information to the database. Its purpose is to make sure the patient will be saved in the HubSpot.
Example request:
curl --request POST \
"http://localhost:8000/api/documents/accept/tos" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/accept/tos"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Patients' \"Terms of Service\" accepted",
"code": "DOCUMENTS:ACCEPT_PATIENT_TOS:ACCEPTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to accept patients' \"Terms of Service\"",
"code": "DOCUMENTS:ACCEPT_PATIENT_TOS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Feature announcements
Endpoints related to feature announcements
List feature announcements
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feature-announcements" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feature-announcements"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "LightCyan",
"notification_title": "ea-corporis.title",
"notification_body": "ea-corporis.body",
"created_at": "2026-07-08T15:48:52.000000Z",
"updated_at": "2026-07-08T15:48:52.000000Z"
},
{
"id": 2,
"name": "LightGreen",
"notification_title": "soluta-ut-magnam.title",
"notification_body": "soluta-ut-magnam.body",
"created_at": "2026-07-08T15:48:52.000000Z",
"updated_at": "2026-07-08T15:48:52.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Create feature announcement
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feature-announcements" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Notification about 1.15 release\",
\"notification_title\": \"release_1.15.title\",
\"notification_body\": \"release_1.15.body\"
}"
const url = new URL(
"http://localhost:8000/api/feature-announcements"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Notification about 1.15 release",
"notification_title": "release_1.15.title",
"notification_body": "release_1.15.body"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "Silver",
"notification_title": "quae-quam-et.title",
"notification_body": "quae-quam-et.body",
"created_at": "2026-07-08T15:48:52.000000Z",
"updated_at": "2026-07-08T15:48:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update feature announcement
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/feature-announcements/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Notification about 1.15 release\",
\"notification_title\": \"release_1.15.title\",
\"notification_body\": \"release_1.15.body\"
}"
const url = new URL(
"http://localhost:8000/api/feature-announcements/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Notification about 1.15 release",
"notification_title": "release_1.15.title",
"notification_body": "release_1.15.body"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"name": "ForestGreen",
"notification_title": "ex-quis-eum.title",
"notification_body": "ex-quis-eum.body",
"created_at": "2026-07-08T15:48:52.000000Z",
"updated_at": "2026-07-08T15:48:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Feature announcement not found):
{
"message": "Feature announcement not found",
"code": "FEATURE_ANNOUNCEMENTS:UPDATE:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Delete feature announcement
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/feature-announcements/20" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feature-announcements/20"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Feature announcement deleted",
"code": "FEATURE_ANNOUNCEMENTS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Feature announcement not found):
{
"message": "Feature announcement not found",
"code": "FEATURE_ANNOUNCEMENTS:DELETE:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Send feature announcement
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feature-announcements/4/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feature-announcements/4/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Feature announcement sent",
"code": "FEATURE_ANNOUNCEMENTS:SEND:SENT"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:SEND:INSUFFICIENT_PERMISSION"
}
Example response (404, Feature announcement not found):
{
"message": "Feature announcement not found",
"code": "FEATURE_ANNOUNCEMENTS:SEND:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Feedback
Endpoints related to feedback collecting
Check feedback token
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA/check" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA/check"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"valid": true
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Send feedback with token
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"contextual\",
\"trigger\": \"remote_session\",
\"rate\": 5,
\"description\": \"That was amazing!\",
\"skipped\": false,
\"training_day_id\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "contextual",
"trigger": "remote_session",
"rate": 5,
"description": "That was amazing!",
"skipped": false,
"training_day_id": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 6,
"type": "periodic",
"trigger": "patient_create",
"platform": "mobile",
"rate": 4,
"description": "Consequuntur recusandae aperiam laborum sequi neque.",
"skipped": 1,
"training_day_id": null,
"created_at": "2026-07-08T15:46:16.000000Z",
"updated_at": "2026-07-08T15:46:16.000000Z"
}
Example response (403, Invalid token):
{
"message": "Invalid token",
"code": "FEEDBACK:SEND_WITH_TOKEN:INVALID_TOKEN"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Feedback ID.
user_id
integer
User who submitted the feedback.
type
string
Feedback type.
trigger
string
What triggered the feedback.
platform
string
Platform the feedback was submitted from.
rate
integer
Feedback rating.
description
string
Feedback description.
skipped
boolean
Whether the feedback was skipped.
training_day_id
integer
Associated training day ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get feedback status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": true,
"firmware_update": true,
"local_session": true,
"async_session": true,
"patient_create": false,
"clinician_invite": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to check feedback status",
"code": "FEEDBACK:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Send feedback
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feedback" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"contextual\",
\"trigger\": \"remote_session\",
\"platform\": \"web\",
\"rate\": 5,
\"description\": \"That was amazing!\",
\"skipped\": false,
\"training_day_id\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "contextual",
"trigger": "remote_session",
"platform": "web",
"rate": 5,
"description": "That was amazing!",
"skipped": false,
"training_day_id": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 2,
"user_id": 310,
"type": "on_demand",
"trigger": "firmware_update",
"platform": "mobile",
"rate": 3,
"description": "Et quo hic qui ut.",
"skipped": 0,
"training_day_id": null,
"created_at": "2026-07-08T15:48:44.000000Z",
"updated_at": "2026-07-08T15:48:44.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to send feedback",
"code": "FEEDBACK:SEND:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Feedback ID.
user_id
integer
User who submitted the feedback.
type
string
Feedback type.
trigger
string
What triggered the feedback.
platform
string
Platform the feedback was submitted from.
rate
integer
Feedback rating.
description
string
Feedback description.
skipped
boolean
Whether the feedback was skipped.
training_day_id
integer
Associated training day ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Schedule feedback notification
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/schedule" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"trigger\": \"remote_session\"
}"
const url = new URL(
"http://localhost:8000/api/feedback/schedule"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"trigger": "remote_session"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"scheduled_at": "2026-04-13 12:00:00"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to schedule feedback notification",
"code": "FEEDBACK:SCHEDULE:INSUFFICIENT_PERMISSION"
}
Example response (403, Feedback with this trigger was already scheduled today):
{
"message": "Feedback with this trigger was already scheduled today",
"code": "FEEDBACK:SCHEDULE:ALREADY_SCHEDULED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
List feedback
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 25,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"user_id": 311,
"type": "on_demand",
"trigger": "remote_session",
"platform": "web",
"rate": 2,
"description": "Possimus rerum distinctio voluptate et eligendi facilis sed.",
"skipped": 0,
"training_day_id": null,
"created_at": "2026-07-08T15:48:44.000000Z",
"updated_at": "2026-07-08T15:48:44.000000Z"
},
{
"id": 4,
"user_id": 312,
"type": "on_demand",
"trigger": "patient_create",
"platform": "web",
"rate": 2,
"description": "Aut non consequuntur deserunt voluptatibus voluptas vel occaecati.",
"skipped": 1,
"training_day_id": null,
"created_at": "2026-07-08T15:48:45.000000Z",
"updated_at": "2026-07-08T15:48:45.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list feedback",
"code": "FEEDBACK:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Feedback ID.
user_id
integer
User who submitted the feedback.
type
string
Feedback type.
trigger
string
What triggered the feedback.
platform
string
Platform the feedback was submitted from.
rate
integer
Feedback rating.
description
string
Feedback description.
skipped
boolean
Whether the feedback was skipped.
training_day_id
integer
Associated training day ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Export feedback to CSV
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/csv" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/csv"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, CSV file):
{
"file": "https://staging-us-east-2-aether-biomedical-s3-us-bucket.s3.us-east-2.amazonaws.com/feedback/feedback-1759228216.csv",
"expires": "2025-09-30 10:40:00"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to export feedback",
"code": "FEEDBACK:EXPORT_CSV:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get feedback cooldowns
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/cooldowns" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/cooldowns"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:GET_COOLDOWNS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update feedback cooldowns
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/feedback/cooldowns" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"remote_session\": 1,
\"local_session\": 1,
\"async_session\": 1,
\"patient_create\": 1,
\"clinician_invite\": 1,
\"firmware_update\": 1,
\"new_config\": 1,
\"grip_change\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback/cooldowns"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:UPDATE_COOLDOWNS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get feedback enabled
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/enabled" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/enabled"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": true,
"local_session": true,
"async_session": true,
"patient_create": true,
"clinician_invite": true,
"firmware_update": true,
"new_config": true,
"grip_change": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:GET_ENABLED:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Set feedback enabled
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/feedback/enabled" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"remote_session\": false,
\"local_session\": false,
\"async_session\": false,
\"patient_create\": false,
\"clinician_invite\": false,
\"firmware_update\": false,
\"new_config\": false,
\"grip_change\": false
}"
const url = new URL(
"http://localhost:8000/api/feedback/enabled"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"remote_session": false,
"local_session": false,
"async_session": false,
"patient_create": false,
"clinician_invite": false,
"firmware_update": false,
"new_config": false,
"grip_change": false
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"remote_session": true,
"local_session": true,
"async_session": true,
"patient_create": true,
"clinician_invite": true,
"firmware_update": true,
"new_config": true,
"grip_change": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:SET_ENABLED:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Feedback statistics
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/statistics" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/statistics"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"submitted": 100,
"skipped": 150,
"total": 250,
"average_rating": 4.76
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view feedback statistics",
"code": "FEEDBACK:STATISTICS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Finger Calibrations
API endpoints for managing finger calibration results
Get finger calibration
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/finger-calibration" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/finger-calibration"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_id": 14,
"result": "minima",
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
},
{
"id": 2,
"device_id": 15,
"result": "voluptas",
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view finger calibration data",
"code": "FINGER_CALIBRATION:VIEW:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "FINGER_CALIBRATION:VIEW:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Store finger calibration
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/finger-calibration" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"result\": \"test\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/finger-calibration"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"result": "test"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"device_id": 16,
"result": "vero",
"created_at": "2026-07-08T15:46:34.000000Z",
"updated_at": "2026-07-08T15:46:34.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create finger calibration",
"code": "FINGER_CALIBRATION:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "FINGER_CALIBRATION:CREATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
GeoData
API endpoints for geodata
Get supported timezones list
Example request:
curl --request GET \
--get "http://localhost:8000/api/timezones" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/timezones"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
"Africa/Abidjan",
"Africa/Accra",
"Africa/Addis_Ababa",
"Africa/Algiers",
"Africa/Asmara",
"Africa/Bamako",
"Africa/Bangui",
"Africa/Banjul",
"Africa/Bissau",
"Africa/Blantyre",
"Africa/Brazzaville",
"Africa/Bujumbura",
"Africa/Cairo",
"Africa/Casablanca",
"Africa/Ceuta",
"Africa/Conakry",
"Africa/Dakar",
"Africa/Dar_es_Salaam",
"Africa/Djibouti",
"Africa/Douala",
"Africa/El_Aaiun",
"Africa/Freetown",
"Africa/Gaborone",
"Africa/Harare",
"Africa/Johannesburg",
"Africa/Juba",
"Africa/Kampala",
"Africa/Khartoum",
"Africa/Kigali",
"Africa/Kinshasa",
"Africa/Lagos",
"Africa/Libreville",
"Africa/Lome",
"Africa/Luanda",
"Africa/Lubumbashi",
"Africa/Lusaka",
"Africa/Malabo",
"Africa/Maputo",
"Africa/Maseru",
"Africa/Mbabane",
"Africa/Mogadishu",
"Africa/Monrovia",
"Africa/Nairobi",
"Africa/Ndjamena",
"Africa/Niamey",
"Africa/Nouakchott",
"Africa/Ouagadougou",
"Africa/Porto-Novo",
"Africa/Sao_Tome",
"Africa/Tripoli",
"Africa/Tunis",
"Africa/Windhoek",
"America/Adak",
"America/Anchorage",
"America/Anguilla",
"America/Antigua",
"America/Araguaina",
"America/Argentina/Buenos_Aires",
"America/Argentina/Catamarca",
"America/Argentina/Cordoba",
"America/Argentina/Jujuy",
"America/Argentina/La_Rioja",
"America/Argentina/Mendoza",
"America/Argentina/Rio_Gallegos",
"America/Argentina/Salta",
"America/Argentina/San_Juan",
"America/Argentina/San_Luis",
"America/Argentina/Tucuman",
"America/Argentina/Ushuaia",
"America/Aruba",
"America/Asuncion",
"America/Atikokan",
"America/Bahia",
"America/Bahia_Banderas",
"America/Barbados",
"America/Belem",
"America/Belize",
"America/Blanc-Sablon",
"America/Boa_Vista",
"America/Bogota",
"America/Boise",
"America/Cambridge_Bay",
"America/Campo_Grande",
"America/Cancun",
"America/Caracas",
"America/Cayenne",
"America/Cayman",
"America/Chicago",
"America/Chihuahua",
"America/Costa_Rica",
"America/Creston",
"America/Cuiaba",
"America/Curacao",
"America/Danmarkshavn",
"America/Dawson",
"America/Dawson_Creek",
"America/Denver",
"America/Detroit",
"America/Dominica",
"America/Edmonton",
"America/Eirunepe",
"America/El_Salvador",
"America/Fort_Nelson",
"America/Fortaleza",
"America/Glace_Bay",
"America/Goose_Bay",
"America/Grand_Turk",
"America/Grenada",
"America/Guadeloupe",
"America/Guatemala",
"America/Guayaquil",
"America/Guyana",
"America/Halifax",
"America/Havana",
"America/Hermosillo",
"America/Indiana/Indianapolis",
"America/Indiana/Knox",
"America/Indiana/Marengo",
"America/Indiana/Petersburg",
"America/Indiana/Tell_City",
"America/Indiana/Vevay",
"America/Indiana/Vincennes",
"America/Indiana/Winamac",
"America/Inuvik",
"America/Iqaluit",
"America/Jamaica",
"America/Juneau",
"America/Kentucky/Louisville",
"America/Kentucky/Monticello",
"America/Kralendijk",
"America/La_Paz",
"America/Lima",
"America/Los_Angeles",
"America/Lower_Princes",
"America/Maceio",
"America/Managua",
"America/Manaus",
"America/Marigot",
"America/Martinique",
"America/Matamoros",
"America/Mazatlan",
"America/Menominee",
"America/Merida",
"America/Metlakatla",
"America/Mexico_City",
"America/Miquelon",
"America/Moncton",
"America/Monterrey",
"America/Montevideo",
"America/Montserrat",
"America/Nassau",
"America/New_York",
"America/Nipigon",
"America/Nome",
"America/Noronha",
"America/North_Dakota/Beulah",
"America/North_Dakota/Center",
"America/North_Dakota/New_Salem",
"America/Nuuk",
"America/Ojinaga",
"America/Panama",
"America/Pangnirtung",
"America/Paramaribo",
"America/Phoenix",
"America/Port-au-Prince",
"America/Port_of_Spain",
"America/Porto_Velho",
"America/Puerto_Rico",
"America/Punta_Arenas",
"America/Rainy_River",
"America/Rankin_Inlet",
"America/Recife",
"America/Regina",
"America/Resolute",
"America/Rio_Branco",
"America/Santarem",
"America/Santiago",
"America/Santo_Domingo",
"America/Sao_Paulo",
"America/Scoresbysund",
"America/Sitka",
"America/St_Barthelemy",
"America/St_Johns",
"America/St_Kitts",
"America/St_Lucia",
"America/St_Thomas",
"America/St_Vincent",
"America/Swift_Current",
"America/Tegucigalpa",
"America/Thule",
"America/Thunder_Bay",
"America/Tijuana",
"America/Toronto",
"America/Tortola",
"America/Vancouver",
"America/Whitehorse",
"America/Winnipeg",
"America/Yakutat",
"America/Yellowknife",
"Antarctica/Casey",
"Antarctica/Davis",
"Antarctica/DumontDUrville",
"Antarctica/Macquarie",
"Antarctica/Mawson",
"Antarctica/McMurdo",
"Antarctica/Palmer",
"Antarctica/Rothera",
"Antarctica/Syowa",
"Antarctica/Troll",
"Antarctica/Vostok",
"Arctic/Longyearbyen",
"Asia/Aden",
"Asia/Almaty",
"Asia/Amman",
"Asia/Anadyr",
"Asia/Aqtau",
"Asia/Aqtobe",
"Asia/Ashgabat",
"Asia/Atyrau",
"Asia/Baghdad",
"Asia/Bahrain",
"Asia/Baku",
"Asia/Bangkok",
"Asia/Barnaul",
"Asia/Beirut",
"Asia/Bishkek",
"Asia/Brunei",
"Asia/Chita",
"Asia/Choibalsan",
"Asia/Colombo",
"Asia/Damascus",
"Asia/Dhaka",
"Asia/Dili",
"Asia/Dubai",
"Asia/Dushanbe",
"Asia/Famagusta",
"Asia/Gaza",
"Asia/Hebron",
"Asia/Ho_Chi_Minh",
"Asia/Hong_Kong",
"Asia/Hovd",
"Asia/Irkutsk",
"Asia/Jakarta",
"Asia/Jayapura",
"Asia/Jerusalem",
"Asia/Kabul",
"Asia/Kamchatka",
"Asia/Karachi",
"Asia/Kathmandu",
"Asia/Khandyga",
"Asia/Kolkata",
"Asia/Krasnoyarsk",
"Asia/Kuala_Lumpur",
"Asia/Kuching",
"Asia/Kuwait",
"Asia/Macau",
"Asia/Magadan",
"Asia/Makassar",
"Asia/Manila",
"Asia/Muscat",
"Asia/Nicosia",
"Asia/Novokuznetsk",
"Asia/Novosibirsk",
"Asia/Omsk",
"Asia/Oral",
"Asia/Phnom_Penh",
"Asia/Pontianak",
"Asia/Pyongyang",
"Asia/Qatar",
"Asia/Qostanay",
"Asia/Qyzylorda",
"Asia/Riyadh",
"Asia/Sakhalin",
"Asia/Samarkand",
"Asia/Seoul",
"Asia/Shanghai",
"Asia/Singapore",
"Asia/Srednekolymsk",
"Asia/Taipei",
"Asia/Tashkent",
"Asia/Tbilisi",
"Asia/Tehran",
"Asia/Thimphu",
"Asia/Tokyo",
"Asia/Tomsk",
"Asia/Ulaanbaatar",
"Asia/Urumqi",
"Asia/Ust-Nera",
"Asia/Vientiane",
"Asia/Vladivostok",
"Asia/Yakutsk",
"Asia/Yangon",
"Asia/Yekaterinburg",
"Asia/Yerevan",
"Atlantic/Azores",
"Atlantic/Bermuda",
"Atlantic/Canary",
"Atlantic/Cape_Verde",
"Atlantic/Faroe",
"Atlantic/Madeira",
"Atlantic/Reykjavik",
"Atlantic/South_Georgia",
"Atlantic/St_Helena",
"Atlantic/Stanley",
"Australia/Adelaide",
"Australia/Brisbane",
"Australia/Broken_Hill",
"Australia/Darwin",
"Australia/Eucla",
"Australia/Hobart",
"Australia/Lindeman",
"Australia/Lord_Howe",
"Australia/Melbourne",
"Australia/Perth",
"Australia/Sydney",
"Europe/Amsterdam",
"Europe/Andorra",
"Europe/Astrakhan",
"Europe/Athens",
"Europe/Belgrade",
"Europe/Berlin",
"Europe/Bratislava",
"Europe/Brussels",
"Europe/Bucharest",
"Europe/Budapest",
"Europe/Busingen",
"Europe/Chisinau",
"Europe/Copenhagen",
"Europe/Dublin",
"Europe/Gibraltar",
"Europe/Guernsey",
"Europe/Helsinki",
"Europe/Isle_of_Man",
"Europe/Istanbul",
"Europe/Jersey",
"Europe/Kaliningrad",
"Europe/Kiev",
"Europe/Kirov",
"Europe/Lisbon",
"Europe/Ljubljana",
"Europe/London",
"Europe/Luxembourg",
"Europe/Madrid",
"Europe/Malta",
"Europe/Mariehamn",
"Europe/Minsk",
"Europe/Monaco",
"Europe/Moscow",
"Europe/Oslo",
"Europe/Paris",
"Europe/Podgorica",
"Europe/Prague",
"Europe/Riga",
"Europe/Rome",
"Europe/Samara",
"Europe/San_Marino",
"Europe/Sarajevo",
"Europe/Saratov",
"Europe/Simferopol",
"Europe/Skopje",
"Europe/Sofia",
"Europe/Stockholm",
"Europe/Tallinn",
"Europe/Tirane",
"Europe/Ulyanovsk",
"Europe/Uzhgorod",
"Europe/Vaduz",
"Europe/Vatican",
"Europe/Vienna",
"Europe/Vilnius",
"Europe/Volgograd",
"Europe/Warsaw",
"Europe/Zagreb",
"Europe/Zaporozhye",
"Europe/Zurich",
"Indian/Antananarivo",
"Indian/Chagos",
"Indian/Christmas",
"Indian/Cocos",
"Indian/Comoro",
"Indian/Kerguelen",
"Indian/Mahe",
"Indian/Maldives",
"Indian/Mauritius",
"Indian/Mayotte",
"Indian/Reunion",
"Pacific/Apia",
"Pacific/Auckland",
"Pacific/Bougainville",
"Pacific/Chatham",
"Pacific/Chuuk",
"Pacific/Easter",
"Pacific/Efate",
"Pacific/Fakaofo",
"Pacific/Fiji",
"Pacific/Funafuti",
"Pacific/Galapagos",
"Pacific/Gambier",
"Pacific/Guadalcanal",
"Pacific/Guam",
"Pacific/Honolulu",
"Pacific/Kanton",
"Pacific/Kiritimati",
"Pacific/Kosrae",
"Pacific/Kwajalein",
"Pacific/Majuro",
"Pacific/Marquesas",
"Pacific/Midway",
"Pacific/Nauru",
"Pacific/Niue",
"Pacific/Norfolk",
"Pacific/Noumea",
"Pacific/Pago_Pago",
"Pacific/Palau",
"Pacific/Pitcairn",
"Pacific/Pohnpei",
"Pacific/Port_Moresby",
"Pacific/Rarotonga",
"Pacific/Saipan",
"Pacific/Tahiti",
"Pacific/Tarawa",
"Pacific/Tongatapu",
"Pacific/Wake",
"Pacific/Wallis",
"UTC"
]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Goals
API endpoints for goals
The goals module consists of:
- exercises - predefined actions which should be performed by patient. Exercises can be managed only by SuperAdmin,
- goals - objectives defined for each patient which could consists of exercises, grips and grip switches,
- goal conditions - parts of the goal, single condition of type exercise, grips goal or switches goal.
List grips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/grips?model=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/grips"
);
const params = {
"model": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"number": 7204,
"name": "nisi grip",
"description": null,
"opposed": 0,
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
},
{
"id": 2,
"number": 4914,
"name": "et grip",
"description": null,
"opposed": 0,
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view grips",
"code": "GOALS:LIST_GRIPS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Grip ID.
number
integer
Grip number identifier.
name
string
Grip name.
description
string
Grip description.
opposed
boolean
Whether the grip is opposed.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
List exercises
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/exercises" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/exercises"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "exercises.Bednar Fords",
"description": "exercises.Sed quos saepe nihil.",
"icon": "😔",
"created_at": "2026-07-08T15:48:19.000000Z",
"updated_at": "2026-07-08T15:48:19.000000Z"
},
{
"id": 2,
"name": "exercises.Jasper Freeway",
"description": "exercises.Aliquid et eum ipsam accusamus itaque ut.",
"icon": "😘",
"created_at": "2026-07-08T15:48:19.000000Z",
"updated_at": "2026-07-08T15:48:19.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view exercises",
"code": "GOALS:LIST_EXERCISES:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Exercise ID.
name
string
Exercise name.
description
string
Exercise description.
icon
string
Exercise icon identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create exercise
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/exercises" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Water plants\",
\"description\": \"Use Tripod Close Grip and water your plants\",
\"icon\": \"🪴\"
}"
const url = new URL(
"http://localhost:8000/api/exercises"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Water plants",
"description": "Use Tripod Close Grip and water your plants",
"icon": "🪴"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "exercises.Mohr Isle",
"description": "exercises.Eaque at voluptas est quia pariatur fugiat id.",
"icon": "😒",
"created_at": "2026-07-08T15:48:19.000000Z",
"updated_at": "2026-07-08T15:48:19.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:CREATE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Exercise ID.
name
string
Exercise name.
description
string
Exercise description.
icon
string
Exercise icon identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update exercise
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/exercises/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Water plants\",
\"description\": \"Use Tripod Close Grip and water your plants\",
\"icon\": \"🪴\"
}"
const url = new URL(
"http://localhost:8000/api/exercises/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Water plants",
"description": "Use Tripod Close Grip and water your plants",
"icon": "🪴"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"name": "exercises.Herman Wall",
"description": "exercises.Qui dolorem nihil ut ullam beatae illum culpa.",
"icon": "😀",
"created_at": "2026-07-08T15:48:19.000000Z",
"updated_at": "2026-07-08T15:48:19.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:UPDATE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Example response (404, Exercise not found):
{
"message": "Exercise not found",
"code": "GOALS:UPDATE_EXERCISE:EXERCISE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Exercise ID.
name
string
Exercise name.
description
string
Exercise description.
icon
string
Exercise icon identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete exercise
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/exercises/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/exercises/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Exercise deleted",
"code": "GOALS:DELETE_EXERCISE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:DELETE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Example response (403, Exercise is used in goals):
{
"message": "Cannot delete: exercise is used in goals (1)",
"code": "GOALS:DELETE_EXERCISE:HAS_GOALS"
}
Example response (404, Exercise not found):
{
"message": "Exercise not found",
"code": "GOALS:DELETE_EXERCISE:EXERCISE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
List user goals
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/goals?active=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals"
);
const params = {
"active": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"amputee_id": 262,
"clinician_id": 263,
"start_date": "2025-03-29",
"end_date": "2013-12-15",
"active": 1,
"created_at": "2026-07-08T15:48:20.000000Z",
"updated_at": "2026-07-08T15:48:20.000000Z"
},
{
"id": 2,
"amputee_id": 264,
"clinician_id": 265,
"start_date": "2023-05-05",
"end_date": "2022-07-17",
"active": 0,
"created_at": "2026-07-08T15:48:21.000000Z",
"updated_at": "2026-07-08T15:48:21.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user goals",
"code": "GOALS:LIST_GOALS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:LIST_GOALS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Goal ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
start_date
string
Goal start date.
end_date
string
Goal end date.
active
boolean
Whether the goal is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create user goal
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/goals" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"start_date\": \"2023-05-12\",
\"end_date\": \"2023-05-15\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"start_date": "2023-05-12",
"end_date": "2023-05-15",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"amputee_id": 266,
"clinician_id": 267,
"start_date": "2013-10-11",
"end_date": "1988-10-03",
"active": 0,
"created_at": "2026-07-08T15:48:22.000000Z",
"updated_at": "2026-07-08T15:48:22.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:CREATE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:CREATE_GOAL:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Goal ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
start_date
string
Goal start date.
end_date
string
Goal end date.
active
boolean
Whether the goal is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update user goal
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1/goals/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"start_date\": \"2023-05-12\",
\"end_date\": \"2023-05-15\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"start_date": "2023-05-12",
"end_date": "2023-05-15",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"amputee_id": 268,
"clinician_id": 269,
"start_date": "1972-08-26",
"end_date": "1988-05-20",
"active": 1,
"created_at": "2026-07-08T15:48:23.000000Z",
"updated_at": "2026-07-08T15:48:23.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:UPDATE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot activate ongoing goal):
{
"message": "Cannot activate ongoing goal",
"code": "GOALS:UPDATE_GOAL:GOAL_IS_ONGOING"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:UPDATE_GOAL:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:UPDATE_GOAL:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Goal ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
start_date
string
Goal start date.
end_date
string
Goal end date.
active
boolean
Whether the goal is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete user goal
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/goals/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Goal deleted",
"code": "GOALS:DELETE_GOAL:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:DELETE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot delete ongoing goal):
{
"message": "Cannot delete active ongoing goal",
"code": "GOALS:DELETE_GOAL:GOAL_IS_ONGOING"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:DELETE_GOAL:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:DELETE_GOAL:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
List user goal conditions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/goals/1/conditions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"goal_id": 5,
"type": "grip",
"grip_id": 3,
"grips_frequency": "a",
"grips_count": 877,
"switches_frequency": "d",
"switches_count": 171,
"exercise_id": 5,
"exercise_frequency": "m",
"exercise_count": 4,
"created_at": "2026-07-08T15:48:23.000000Z",
"updated_at": "2026-07-08T15:48:23.000000Z"
},
{
"id": 2,
"goal_id": 6,
"type": "exercise",
"grip_id": 4,
"grips_frequency": "a",
"grips_count": 939,
"switches_frequency": "m",
"switches_count": 978,
"exercise_id": 6,
"exercise_frequency": "d",
"exercise_count": 10,
"created_at": "2026-07-08T15:48:24.000000Z",
"updated_at": "2026-07-08T15:48:24.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user goals",
"code": "GOALS:LIST_CONDITIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:LIST_CONDITIONS:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:LIST_CONDITIONS:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Goal condition ID.
goal_id
integer
Associated goal ID.
type
string
Condition type.
Must be one of:gripswitchexercise
grip_id
integer
Target grip ID.
grips_frequency
string
Grip frequency period.
Must be one of:dwma
grips_count
integer
Required grip count.
switches_frequency
string
Switch frequency period.
Must be one of:dwma
switches_count
integer
Required switch count.
exercise_id
integer
Target exercise ID.
exercise_frequency
string
Exercise frequency period.
Must be one of:dwm
exercise_count
integer
Required exercise count.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create user goal condition
requires authentication
Each goal condition could be one of type: grip, switch or exercise.
If goal condition is type of grip, fill only grip_id (optional), grips_frequency and grips_count.
If grip_id is null or missing, patient can perform any grip to fulfill objective.
If goal condition is type of switch, fill only switches_frequency and switches_count.
If goal condition is type of exercise, fill only exercise_id, exercise_frequency and exercise_count.
Restrictions:
- you can add one grip-any condition (
grip_id=null, any grip is counted) and many grip-specific conditions (for example: grip 1 - 100 times and grip 2 - 50 times), - all grips conditions must have same frequency (
grips_frequencyfield), - sum of grip-specific conditions (
grips_countfield) cannot be greater than grip-any condition for same goal - you can add only one switch condition for same goal,
- you can add multiple exercise conditions, but each exercise can be used only once.
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/goals/1/conditions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"grip\",
\"grip_id\": 1,
\"grips_frequency\": \"d\",
\"grips_count\": 100,
\"switches_frequency\": \"d\",
\"switches_count\": 100,
\"exercise_id\": 1,
\"exercise_frequency\": \"d\",
\"exercise_count\": 5
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "grip",
"grip_id": 1,
"grips_frequency": "d",
"grips_count": 100,
"switches_frequency": "d",
"switches_count": 100,
"exercise_id": 1,
"exercise_frequency": "d",
"exercise_count": 5
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"goal_id": 7,
"type": "grip",
"grip_id": 5,
"grips_frequency": "a",
"grips_count": 885,
"switches_frequency": "d",
"switches_count": 258,
"exercise_id": 7,
"exercise_frequency": "w",
"exercise_count": 1,
"created_at": "2026-07-08T15:48:25.000000Z",
"updated_at": "2026-07-08T15:48:25.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:CREATE_CONDITION:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot create condition: all grip conditions have to be same frequency):
{
"message": "Cannot create condition: all grip conditions have to be same frequency",
"code": "GOALS:CREATE_CONDITION:INVALID_FREQUENCY"
}
Example response (403, Cannot create condition: grip-any condition for this goal already exist):
{
"message": "Cannot create condition: grip-any condition for this goal already exist",
"code": "GOALS:CREATE_CONDITION:GRIP_ANY_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: condition with this grip already exist):
{
"message": "Cannot create condition: condition with this grip already exist",
"code": "GOALS:CREATE_CONDITION:GRIP_CONDITION_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: grip-any value cannot be lower than sum of grip-specific conditions):
{
"message": "Cannot create condition: grip-any value cannot be lower than sum of grip-specific conditions",
"code": "GOALS:CREATE_CONDITION:GRIP_ANY_LOWER_THAN_GRIPS_SUM"
}
Example response (403, Cannot create condition: sum of grip-specific conditions cannot be greater than value of grip-any condition):
{
"message": "Cannot create condition: sum of grip-specific conditions cannot be greater than value of grip-any condition",
"code": "GOALS:CREATE_CONDITION:GRIPS_SUM_GREATER_THAN_GRIP_ANY"
}
Example response (403, Cannot create condition: switch condition for this goal already exist):
{
"message": "Cannot create condition: switch condition for this goal already exist",
"code": "GOALS:CREATE_CONDITION:SWITCH_CONDITION_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: condition with this exercise already exist):
{
"message": "Cannot create condition: condition with this exercise already exist",
"code": "GOALS:CREATE_CONDITION:EXERCISE_CONDITION_ALREADY_EXISTS"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:CREATE_CONDITION:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:CREATE_CONDITION:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Goal condition ID.
goal_id
integer
Associated goal ID.
type
string
Condition type.
Must be one of:gripswitchexercise
grip_id
integer
Target grip ID.
grips_frequency
string
Grip frequency period.
Must be one of:dwma
grips_count
integer
Required grip count.
switches_frequency
string
Switch frequency period.
Must be one of:dwma
switches_count
integer
Required switch count.
exercise_id
integer
Target exercise ID.
exercise_frequency
string
Exercise frequency period.
Must be one of:dwm
exercise_count
integer
Required exercise count.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete user goal condition
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/goals/1/conditions/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Goal condition deleted",
"code": "GOALS:DELETE_CONDITION:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:DELETE_CONDITION:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:DELETE_CONDITION:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:DELETE_CONDITION:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get user goal progress
requires authentication
grips- data about grips progress,switches- data about switches progress,exercises- data about exercises progress and attempts made.
overall- summary of whole goal time-frame,period- summary of given period, according to frequency (for example: if frequency of conditions is "weekly", these data is summary of current's week).today- summary of today's, used mainly to send daily summary notifications,conditions- goal conditions with progress for each one.
typefor grips overall summary, which points which conditions were used to calculate the summary. If grip-any condition exists, it has priority over grip-specific conditions, otherwise summary contains sum of all grip-specific conditions,frequency,frequency_fromandfrequency_tofor period summary for both grips and switches, which describe time-frame of frequency and period,donefor today's summary for both grips and switches, indicates if today's goal is reached (it's calculated only for conditions of frequency "daily").
Example request:
curl --request GET \
--get "http://localhost:8000/api/goals/1/progress" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/goals/1/progress"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"grips": {
"meta": {
"overall": {
"from": "2023-09-01 00:00:00",
"to": "2023-08-30 23:59:59"
},
"period": {
"from": "2023-09-15 23:59:59",
"to": "2023-09-21 23:59:59",
"frequency": "w"
}
},
"summary": {
"type": "grips-specific",
"progress": 222,
"goal": 2535
},
"progress": [
{
"grip": {
"id": 1,
"number": 0,
"name": "Rest Opposition",
"description": null,
"created_at": "2023-08-30T12:20:00.000000Z",
"updated_at": "2023-08-30T12:20:00.000000Z"
},
"overall": {
"progress": 125,
"goal": 200
},
"period": {
"progress": 22,
"goal": 50
}
},
{
"grip": {
"id": 2,
"number": 1,
"name": "Power",
"description": null,
"created_at": "2023-05-18T11:24:11.000000Z",
"updated_at": "2023-05-18T11:24:11.000000Z"
},
"overall": {
"progress": 90,
"goal": 150
},
"period": {
"progress": 10,
"goal": 30
}
},
{
"grip": null,
"overall": {
"progress": 78,
"goal": 1250
},
"period": {
"progress": 17,
"goal": 240
}
}
],
"today": {
"performed": 0,
"goal": 0,
"done": true
}
},
"switches": {
"overall": {
"performed": 55,
"goal": 300
},
"period": {
"performed": 25,
"goal": 30,
"frequency": "d",
"frequency_from": "2023-09-20 00:00:00",
"frequency_to": "2023-09-20 23:59:59"
},
"today": {
"performed": 25,
"goal": 30,
"done": false
},
"condition": {
"type": "switch",
"switches_frequency": "d",
"switches_count": 30
}
},
"exercises": {
"performed": 1,
"goal": 3,
"done": false,
"conditions": [
{
"type": "exercise",
"exercise_id": 1,
"exercise_frequency": "d",
"exercise_count": 3,
"attempts": [
{
"date_from": "2023-06-06",
"date_to": "2023-06-12",
"count_done": 1,
"count_not_done": 1
},
{
"date_from": "2023-06-13",
"date_to": "2023-06-19",
"count_done": 0,
"count_not_done": 0
},
{
"date_from": "2023-06-20",
"date_to": "2023-06-26",
"count_done": 0,
"count_not_done": 0
},
{
"date_from": "2023-06-27",
"date_to": "2023-07-03",
"count_done": 0,
"count_not_done": 0
}
],
"exercise": {
"id": 1,
"name": "Water plants",
"description": "Use Tripod Grip and water your plants",
"icon": "🪴",
"created_at": "2023-05-19T10:25:37.000000Z",
"updated_at": "2023-05-19T10:25:37.000000Z"
}
}
]
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view goal progress",
"code": "GOALS:GET_PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:GET_PROGRESS:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update user goal progress
requires authentication
Use this endpoint to update goal progress as patient. Add exercise attempts and mark them as done or not done.
Example request:
curl --request POST \
"http://localhost:8000/api/goals/1/progress" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"exercise_id\": 1,
\"exercise_done\": true
}"
const url = new URL(
"http://localhost:8000/api/goals/1/progress"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"exercise_id": 1,
"exercise_done": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 1,
"user_id": 276,
"goal_id": 8,
"type": "exercise",
"grip_id": null,
"grips": 433,
"switches": 85,
"exercise_id": 8,
"exercise_done": 0,
"created_at": "2026-07-08T15:48:27.000000Z",
"updated_at": "2026-07-08T15:48:27.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update goal progress",
"code": "GOALS:UPDATE_PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:UPDATE_PROGRESS:GOAL_NOT_FOUND"
}
Example response (422, User timezone not set):
{
"message": "User timezone not set",
"code": "GOALS:UPDATE_PROGRESS:NO_TIMEZONE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User goal ID.
user_id
integer
Associated user ID.
goal_id
integer
Associated goal ID.
type
string
Goal condition type.
Must be one of:gripswitchexercise
grip_id
integer
Target grip ID.
grips
integer
Grip count progress.
switches
integer
Switch count progress.
exercise_id
integer
Target exercise ID.
exercise_done
boolean
Whether the exercise is completed.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Invitations
Accept clinician invitation
Example request:
curl --request POST \
"http://localhost:8000/api/invite/accept" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"ABC123DEF456GHI789JKL0\",
\"email\": \"example@domain.com\",
\"password\": \"Test123!\",
\"language\": \"en\",
\"name\": \"Tom Smith\",
\"clinic_name\": \"My clinic Ltd\",
\"clinic_location\": \"Example St 1\\/345 New York, NY\",
\"address1\": \"65756 Clay Avenue\",
\"address2\": \"South Madilynberg, CO 90518-9989\",
\"mfa_enabled\": true,
\"mfa_method\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/invite/accept"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "ABC123DEF456GHI789JKL0",
"email": "example@domain.com",
"password": "Test123!",
"language": "en",
"name": "Tom Smith",
"clinic_name": "My clinic Ltd",
"clinic_location": "Example St 1\/345 New York, NY",
"address1": "65756 Clay Avenue",
"address2": "South Madilynberg, CO 90518-9989",
"mfa_enabled": true,
"mfa_method": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 4,
"mrn": "N3YJEGHX1783525574",
"name": "Tracy Reichel",
"email": "1783525574jettie17@example.com",
"language": "en",
"phone": "(458) 560-9591",
"phone_country": "HU",
"phone_verified_at": null,
"address1": "91655 Dooley Lights",
"address2": "Ronnyburgh, CO 15935-0624",
"postal_code": "64183",
"city": "Konopelski, Mraz and Thompson",
"country": "RO",
"clinic_name": "North Elian",
"clinic_location": "9541 Elijah Station Suite 536\nLenorafurt, IN 46227",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:14.000000Z",
"updated_at": "2026-07-08T15:46:14.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"roles": [
{
"id": 7,
"name": "AcadleUser"
}
]
}
Example response (403, Invitation expired):
{
"message": "Invitation expired",
"code": "INVITATIONS:ACCEPT:INVITATION_EXPIRED"
}
Example response (404, Invitation not found):
{
"message": "Invitation not found",
"code": "INVITATIONS:ACCEPT:INVITATION_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: invitation not accepted",
"code": "INVITATIONS:ACCEPT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Accept Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle/accept" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"a1b2c3d4e5f6g7h8i9j0k1l2m3\",
\"email\": \"user@example.com\",
\"password\": \"securePassword123\",
\"phone\": \"1-719-553-2574\",
\"phone_country\": \"US\",
\"name\": \"John Doe\",
\"language\": \"en\"
}"
const url = new URL(
"http://localhost:8000/api/invite/acadle/accept"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "a1b2c3d4e5f6g7h8i9j0k1l2m3",
"email": "user@example.com",
"password": "securePassword123",
"phone": "1-719-553-2574",
"phone_country": "US",
"name": "John Doe",
"language": "en"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 5,
"mrn": "DT2B6JU41783525575",
"name": "Ahmad Altenwerth",
"email": "1783525575daphne.ullrich@example.net",
"language": "en",
"phone": "+1-703-527-6089",
"phone_country": "TT",
"phone_verified_at": null,
"address1": "66635 Champlin Ranch Apt. 990",
"address2": "New Kaelynmouth, AZ 14834",
"postal_code": "88203-7307",
"city": "Lueilwitz Inc",
"country": "BE",
"clinic_name": "South Rupert",
"clinic_location": "389 Smith Vista Apt. 032\nPort Serena, FL 01726-9260",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:15.000000Z",
"updated_at": "2026-07-08T15:46:15.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "ClinicianSupport"
}
]
}
Example response (403, Invitation expired):
{
"message": "Invitation expired",
"code": "INVITATIONS_ACADLE:ACCEPT:INVITATION_EXPIRED"
}
Example response (404, Invitation not found):
{
"message": "Invitation not found",
"code": "INVITATIONS_ACADLE:ACCEPT:INVITATION_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: invitation not accepted",
"code": "INVITATIONS_ACADLE:ACCEPT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
List users for invitations
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/users" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/users"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 15,
"mrn": "24Z4VB2Y1783525581",
"name": "Roderick Bode",
"email": "1783525581gsmith@example.org",
"language": "en",
"phone": "718.636.5857",
"phone_country": "LR",
"phone_verified_at": null,
"address1": "750 Vernice Street Apt. 137",
"address2": "North Elfrieda, MI 54897-4441",
"postal_code": "98512",
"city": "Balistreri Ltd",
"country": "CY",
"clinic_name": "Chrishaven",
"clinic_location": "848 Janick Lakes\nCarahaven, FL 38961-2636",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:21.000000Z",
"updated_at": "2026-07-08T15:46:21.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 4,
"name": "Clinician"
}
]
},
{
"id": 16,
"mrn": "8B97UFDP1783525582",
"name": "Mr. Blake Labadie",
"email": "1783525582nfeest@example.net",
"language": "en",
"phone": "+1-432-873-1215",
"phone_country": "FJ",
"phone_verified_at": null,
"address1": "54720 Legros Route Suite 390",
"address2": "South Jessy, MN 08882-2758",
"postal_code": "25994-7391",
"city": "Nienow-Bednar",
"country": "US",
"clinic_name": "Yundtside",
"clinic_location": "909 Wintheiser Fields\nNorth Baileyton, OR 49321",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:22.000000Z",
"updated_at": "2026-07-08T15:46:22.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "ClinicianSupport"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list users for invitations",
"code": "INVITATIONS:USERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create clinician invitations
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"patient_id\": 1,
\"invitations\": [
{
\"user_id\": 1,
\"user_email\": \"newuser@domain.com\",
\"role\": \"Clinician\",
\"training_confirmed\": true,
\"permissions\": [
\"mollitia\"
]
}
]
}"
const url = new URL(
"http://localhost:8000/api/invite"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"patient_id": 1,
"invitations": [
{
"user_id": 1,
"user_email": "newuser@domain.com",
"role": "Clinician",
"training_confirmed": true,
"permissions": [
"mollitia"
]
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 10,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 17,
"mrn": "C563Z4N51783525582",
"name": "Edgardo Braun",
"email": "1783525582reagan.littel@example.net",
"language": "en",
"phone": "+19894392247",
"phone_country": "JM",
"phone_verified_at": null,
"address1": "992 Devante Mall",
"address2": "Schaeferfurt, WY 65495",
"postal_code": "62352",
"city": "Greenholt-Kertzmann",
"country": "IE",
"clinic_name": "Armstrongville",
"clinic_location": "31269 Nettie Ferry\nVestashire, SC 18075-4104",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:22.000000Z",
"updated_at": "2026-07-08T15:46:22.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"invitations": [
{
"id": 1,
"user_id": 18,
"invited_user_id": 17,
"type": "clinician",
"training_confirmed": 0,
"created_at": "2026-07-08T15:46:24.000000Z",
"updated_at": "2026-07-08T15:46:24.000000Z"
}
],
"roles": [
{
"id": 6,
"name": "Amputee"
}
]
},
{
"id": 20,
"mrn": "TNEBHN991783525584",
"name": "Ms. Darlene Schowalter",
"email": "1783525584pascale80@example.com",
"language": "en",
"phone": "+1-410-230-2485",
"phone_country": "AF",
"phone_verified_at": null,
"address1": "8802 Boyer Brooks Apt. 943",
"address2": "South Meghanside, GA 81729-1492",
"postal_code": "37848-2219",
"city": "Kshlerin, Frami and Funk",
"country": "LT",
"clinic_name": "East Teagantown",
"clinic_location": "19415 Bill Passage\nPort Bryanamouth, UT 42824",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:24.000000Z",
"updated_at": "2026-07-08T15:46:24.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 2,
"user_id": 21,
"invited_user_id": 20,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-07-08T15:46:25.000000Z",
"updated_at": "2026-07-08T15:46:25.000000Z"
}
],
"roles": [
{
"id": 3,
"name": "ClinicAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create invitations",
"code": "INVITATIONS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, No access to given patient):
{
"message": "No access to given patient",
"code": "INVITATIONS:CREATE:NO_ACCESS_TO_PATIENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Resend invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/1/resend" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/1/resend"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 23,
"mrn": "NZMPU3LM1783525585",
"name": "Annalise Cassin",
"email": "1783525585reynolds.bernadette@example.com",
"language": "en",
"phone": "765-229-0593",
"phone_country": "TM",
"phone_verified_at": null,
"address1": "40914 Thalia Station Suite 273",
"address2": "Port Elmorehaven, SD 14824-4042",
"postal_code": "34551",
"city": "Aufderhar-McClure",
"country": "LU",
"clinic_name": "North Mozell",
"clinic_location": "9120 Elian Cape\nKonopelskiburgh, TX 23245-6410",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:25.000000Z",
"updated_at": "2026-07-08T15:46:25.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"invitations": [
{
"id": 3,
"user_id": 24,
"invited_user_id": 23,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-07-08T15:46:26.000000Z",
"updated_at": "2026-07-08T15:46:26.000000Z"
}
],
"roles": [
{
"id": 2,
"name": "CommunityAdmin"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to resend invitations",
"code": "INVITATIONS:RESEND:INSUFFICIENT_PERMISSION"
}
Example response (403, User not found):
{
"message": "User not found",
"code": "INVITATIONS:RESEND:USER_NOT_FOUND"
}
Example response (403, Invitation already accepted):
{
"message": "Invitation already accepted",
"code": "INVITATIONS:RESEND:INVITATION_ALREADY_ACCEPTED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
List all users invited to Acadle
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/acadle/users?search=john" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/acadle/users"
);
const params = {
"search": "john",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 26,
"mrn": "VZB7D9TB1783525586",
"name": "Dr. Devante Gottlieb",
"email": "1783525586nabbott@example.net",
"language": "en",
"phone": "346-418-9286",
"phone_country": "BJ",
"phone_verified_at": null,
"address1": "372 Hackett River",
"address2": "New Irvingtown, LA 22995",
"postal_code": "89782-0670",
"city": "Crist Group",
"country": "LV",
"clinic_name": "East Herta",
"clinic_location": "768 Mariano View Suite 286\nSchillerton, TN 03885-7888",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:26.000000Z",
"updated_at": "2026-07-08T15:46:26.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "ClinicianSupport"
}
]
},
{
"id": 27,
"mrn": "6V5QJTE21783525587",
"name": "Prof. Darrell Kunze II",
"email": "1783525587ulegros@example.net",
"language": "en",
"phone": "979.384.1469",
"phone_country": "GL",
"phone_verified_at": null,
"address1": "54020 Mertz Alley",
"address2": "East Rubyeton, MA 99204-3302",
"postal_code": "42861",
"city": "Williamson and Sons",
"country": "MT",
"clinic_name": "Kassulkefort",
"clinic_location": "578 Arden Junctions Apt. 634\nNorth Zionton, VA 75273",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:27.000000Z",
"updated_at": "2026-07-08T15:46:27.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 3,
"name": "ClinicAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list users for invitations",
"code": "INVITATIONS_ACADLE:USERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"cruickshank.vaughn@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/invite/acadle"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "cruickshank.vaughn@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 28,
"mrn": "4NAFXV551783525587",
"name": "Shaniya Leffler",
"email": "1783525587horacio97@example.com",
"language": "en",
"phone": "+1 (831) 806-2374",
"phone_country": "HU",
"phone_verified_at": null,
"address1": "23457 Anais Greens",
"address2": "North Sammy, LA 83657",
"postal_code": "05868-4685",
"city": "Crona and Sons",
"country": "IT",
"clinic_name": "North Lyda",
"clinic_location": "6875 Corkery Land Apt. 566\nSchambergershire, IL 07493-4538",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:27.000000Z",
"updated_at": "2026-07-08T15:46:27.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"invitations": [
{
"id": 4,
"user_id": 29,
"invited_user_id": 28,
"type": "clinician",
"training_confirmed": 0,
"created_at": "2026-07-08T15:46:29.000000Z",
"updated_at": "2026-07-08T15:46:29.000000Z"
}
],
"roles": [
{
"id": 7,
"name": "AcadleUser"
}
]
}
Example response (400, User already exists):
{
"message": "User with this email already exists in the system",
"code": "INVITATIONS_ACADLE:CREATE:USER_ALREADY_EXISTS"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create invitations",
"code": "INVITATIONS_ACADLE:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Resend Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle/1/resend" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/acadle/1/resend"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 31,
"mrn": "7QKNX3SX1783525589",
"name": "Emelia Bruen",
"email": "1783525589stephen23@example.org",
"language": "en",
"phone": "+1 (740) 630-1198",
"phone_country": "SI",
"phone_verified_at": null,
"address1": "504 Schmitt Fords Suite 836",
"address2": "Danteville, DE 58118",
"postal_code": "94565",
"city": "Turner Group",
"country": "IT",
"clinic_name": "Margaretmouth",
"clinic_location": "386 Lexie Spurs\nSouth Caitlyn, OK 39221-5225",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:29.000000Z",
"updated_at": "2026-07-08T15:46:29.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"invitations": [
{
"id": 5,
"user_id": 32,
"invited_user_id": 31,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-07-08T15:46:30.000000Z",
"updated_at": "2026-07-08T15:46:30.000000Z"
}
],
"roles": [
{
"id": 1,
"name": "SuperAdmin"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to resend invitations",
"code": "INVITATIONS_ACADLE:RESEND:INSUFFICIENT_PERMISSION"
}
Example response (403, User not found):
{
"message": "User not found",
"code": "INVITATIONS_ACADLE:RESEND:USER_NOT_FOUND"
}
Example response (403, Invitation already accepted):
{
"message": "Invitation already accepted",
"code": "INVITATIONS_ACADLE:RESEND:INVITATION_ALREADY_ACCEPTED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Admin access to invitation tokens
requires authentication
Requires admin.invitations_tokens_access permission.
Fetches only non-accepted and non-expired invitations.
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/tokens/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/tokens/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"id": 1,
"user_id": 1,
"invited_user_id": 2,
"token": "I0V25NUVMHC0F8RRF1YEY5BT",
"training_confirmed": 1,
"created_at": "2025-05-12T12:00:00.000000Z",
"updated_at": "2025-05-12T12:00:00.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to get invitation tokens",
"code": "INVITATIONS:ADMIN_TOKENS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "INVITATIONS:ADMIN_TOKENS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Logs
API endpoints for managing event logs
Get events log
requires authentication
user - user account that performed the action
element - element model that has been affected by the action
Example request:
curl --request GET \
--get "http://localhost:8000/api/logs?search=Test&ip=200.200.100.5&user=1&type=user&date_from=1642003200&date_to=1642003200&include_sessions=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
const url = new URL(
"http://localhost:8000/api/logs"
);
const params = {
"search": "Test",
"ip": "200.200.100.5",
"user": "1",
"type": "user",
"date_from": "1642003200",
"date_to": "1642003200",
"include_sessions": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": 281,
"event_name": "event_factory",
"element_type": "App\\Models\\User",
"element_id": 280,
"comments": "",
"ip_address": "161.226.248.245",
"created_at": "2011-08-26T08:21:40.000000Z",
"updated_at": "2026-07-08T15:48:28.000000Z",
"username": "Rodolfo Gaylord",
"user": {
"id": 281,
"mrn": "R4PK8AWA1783525708",
"name": "Rodolfo Gaylord",
"email": "1783525708ajohnson@example.com",
"language": "en",
"phone": "+1-941-432-4224",
"phone_country": "SX",
"phone_verified_at": null,
"address1": "5950 Toy Via Apt. 648",
"address2": "Lake Rozellaside, NE 57737",
"postal_code": "26780-5247",
"city": "Bayer and Sons",
"country": "EE",
"clinic_name": "Ezekielshire",
"clinic_location": "145 Merl Keys\nWest Lianaborough, IA 86139-5691",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:28.000000Z",
"updated_at": "2026-07-08T15:48:28.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"element": {
"id": 280,
"mrn": "XJXH74SS1783525707",
"name": "Lauriane Connelly",
"email": "1783525707gulgowski.cassie@example.com",
"language": "en",
"phone": "+1 (661) 988-5729",
"phone_country": "SC",
"phone_verified_at": null,
"address1": "690 Schaefer Plains",
"address2": "Lawrenceport, AZ 25741-7056",
"postal_code": "11536",
"city": "Kassulke-Haag",
"country": "DE",
"clinic_name": "Port Maggiemouth",
"clinic_location": "7535 Schuppe Pines\nNorth Alysaburgh, AR 36747-4027",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:27.000000Z",
"updated_at": "2026-07-08T15:48:27.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"user_id": 284,
"event_name": "event_factory",
"element_type": "App\\Models\\User",
"element_id": 283,
"comments": "",
"ip_address": "42.114.165.177",
"created_at": "1989-05-18T05:46:37.000000Z",
"updated_at": "2026-07-08T15:48:30.000000Z",
"username": "Elijah Gislason",
"user": {
"id": 284,
"mrn": "56RKYV2H1783525709",
"name": "Elijah Gislason",
"email": "1783525709viviane87@example.com",
"language": "en",
"phone": "341-854-9882",
"phone_country": "BW",
"phone_verified_at": null,
"address1": "651 Allen Trace",
"address2": "New Jedediah, NM 67764",
"postal_code": "00488",
"city": "Bradtke, Johns and Daniel",
"country": "CY",
"clinic_name": "West Trinity",
"clinic_location": "94307 Hermiston Radial\nPort Sedrick, IL 84250",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:29.000000Z",
"updated_at": "2026-07-08T15:48:29.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"element": {
"id": 283,
"mrn": "B9EUPVGC1783525709",
"name": "Uriah Breitenberg",
"email": "1783525709damon.huel@example.org",
"language": "en",
"phone": "(850) 732-2364",
"phone_country": "IQ",
"phone_verified_at": null,
"address1": "63549 Mozelle Meadow",
"address2": "West Floy, RI 64023",
"postal_code": "56198",
"city": "Orn-Treutel",
"country": "IN",
"clinic_name": "Schmelerland",
"clinic_location": "44087 Pfeffer Vista\nLake Ressie, ID 72631-9750",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:29.000000Z",
"updated_at": "2026-07-08T15:48:29.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access event logs",
"code": "EVENT_LOGS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Event log entry ID.
user_id
integer
ID of the user who triggered the event.
event_name
string
Event name.
element_type
string
Type of the related element.
element_id
integer
ID of the related element.
comments
string
Additional event comments.
ip_address
string
IP address of the request.
created_at
string
Event timestamp.
updated_at
string
Last update timestamp.
user
object
User who triggered the event.
element
object
Related element.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Messages
API endpoints for message center
Get user messages list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"filter\": \"all\"
}"
const url = new URL(
"http://localhost:8000/api/messages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"filter": "all"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": null,
"message_id": 1,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 1,
"sender_id": null,
"title": "Earum facere dignissimos est eveniet distinctio.",
"content": "Vero ut ipsum rem vel.",
"created_at": "2026-07-08T15:47:26.000000Z",
"updated_at": "2026-07-08T15:47:26.000000Z",
"sender": null
}
},
{
"id": 2,
"user_id": null,
"message_id": 2,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 2,
"sender_id": null,
"title": "Recusandae maiores neque et numquam.",
"content": "Aperiam in consequatur labore quisquam.",
"created_at": "2026-07-08T15:47:26.000000Z",
"updated_at": "2026-07-08T15:47:26.000000Z",
"sender": null
}
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
User message ID.
user_id
integer
Recipient user ID.
message_id
integer
Associated message ID.
is_read
boolean
Whether the message has been read.
is_archived
boolean
Whether the message is archived.
is_deleted
boolean
Whether the message is deleted.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
message
object
The message content.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Send message to multiple users
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"title\": \"Reminder about your vaccination\",
\"content\": \"Lorem ipsum dolor sit amet\",
\"roles\": \"Clinician,Amputee\"
}"
const url = new URL(
"http://localhost:8000/api/message"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"title": "Reminder about your vaccination",
"content": "Lorem ipsum dolor sit amet",
"roles": "Clinician,Amputee"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Messages sent",
"count": 3,
"code": "MESSAGES:SEND:SENT"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to send messages",
"code": "MESSAGES:SEND:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Mark message as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message/1/read" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"state\": true
}"
const url = new URL(
"http://localhost:8000/api/message/1/read"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"state": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"user_id": 147,
"message_id": 3,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to mark this message as read",
"code": "MESSAGES:READ:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "MESSAGES:READ:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User message ID.
user_id
integer
Recipient user ID.
message_id
integer
Associated message ID.
is_read
boolean
Whether the message has been read.
is_archived
boolean
Whether the message is archived.
is_deleted
boolean
Whether the message is deleted.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
message
object
The message content.
Mark message as archived
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message/1/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"state\": true
}"
const url = new URL(
"http://localhost:8000/api/message/1/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"state": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"user_id": 148,
"message_id": 4,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to mark this message as archived",
"code": "MESSAGES:ARCHIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "MESSAGES:ARCHIVE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User message ID.
user_id
integer
Recipient user ID.
message_id
integer
Associated message ID.
is_read
boolean
Whether the message has been read.
is_archived
boolean
Whether the message is archived.
is_deleted
boolean
Whether the message is deleted.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
message
object
The message content.
List of messages and tickets
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages-and-tickets" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/messages-and-tickets"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 2
},
"items": [
{
"type": "UserMessage",
"date": "2024-11-02T10:00:00.000000Z",
"item": {
"id": 1,
"user_id": 1,
"message_id": 1,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 1,
"sender_id": 1,
"title": "Message title",
"content": "Message content",
"created_at": "2024-11-02T10:00:00.000000Z",
"updated_at": "2024-11-02T10:00:00.000000Z",
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
}
}
}
},
{
"type": "SupportTicket",
"date": "2024-11-01T15:15:00.000000Z",
"item": {
"id": 1,
"sender_id": 1,
"recipient_id": 999,
"device_id": null,
"meeting_date": "2024-11-10T15:00:00.000000Z",
"meeting_type": "none",
"contact_email": null,
"status": "new",
"created_at": "2024-11-01T15:15:00.000000Z",
"updated_at": "2024-11-01T15:15:00.000000Z",
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
},
"recipient": {
"id": 2,
"mrn": "MRN2",
"name": "Patient",
"email": "patient4@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": null,
"clinic_location": null,
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"created_by": 1,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2024-10-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": null,
"roles": [
{
"id": 5,
"name": "Amputee",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 2,
"role_id": 5,
"model_type": "App\\Models\\User"
}
}
]
},
"device": null,
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 1,
"title": "Communication channel",
"content": "Welcome to the digital platform. Please use this channel for communicating with your clinician.",
"is_read": false,
"created_at": "2024-11-01T15:15:00.000000Z",
"updated_at": "2024-11-01T15:15:00.000000Z",
"attachments": [],
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
}
}
]
}
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Status of messages and tickets
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages-and-tickets/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/messages-and-tickets/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"messages": 5,
"tickets": 2
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Mobile logs
API endpoints for managing mobile logs
Store log
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/mobile-logs" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "device_id=1"\
--form "date_start=2012-10-27 06:36:38"\
--form "date_end=1984-08-16 08:41:07"\
--form "encrypt_key=odio"\
--form "encrypt_iv=exercitationem"\
--form "file=@/tmp/phpJXVTIh" const url = new URL(
"http://localhost:8000/api/mobile-logs"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('device_id', '1');
body.append('date_start', '2012-10-27 06:36:38');
body.append('date_end', '1984-08-16 08:41:07');
body.append('encrypt_key', 'odio');
body.append('encrypt_iv', 'exercitationem');
body.append('file', document.querySelector('input[name="file"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (202):
{
"id": 1,
"user_id": 285,
"device_id": 139,
"file": "/tmp/fakerEsXcao",
"date_start": "2002-10-09 09:54:01",
"date_end": "2019-06-28 15:32:29",
"created_at": "2026-07-08T15:48:30.000000Z",
"updated_at": "2026-07-08T15:48:30.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to write mobile logs",
"code": "MOBILE_LOGS:STORE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get logs
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 2,
"user_id": 286,
"device_id": 140,
"file": "/tmp/fakerAs9Swk",
"date_start": "2017-12-04 01:47:52",
"date_end": "2009-07-19 14:08:26",
"created_at": "2026-07-08T15:48:31.000000Z",
"updated_at": "2026-07-08T15:48:31.000000Z"
},
{
"id": 3,
"user_id": 287,
"device_id": 141,
"file": "/tmp/fakersXCG9G",
"date_start": "1992-11-28 20:38:55",
"date_end": "2010-07-01 07:29:47",
"created_at": "2026-07-08T15:48:31.000000Z",
"updated_at": "2026-07-08T15:48:31.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get logs by user
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 4,
"user_id": 288,
"device_id": 142,
"file": "/tmp/fakerrkGoHT",
"date_start": "1974-02-21 09:16:35",
"date_end": "1977-03-30 09:52:36",
"created_at": "2026-07-08T15:48:31.000000Z",
"updated_at": "2026-07-08T15:48:31.000000Z"
},
{
"id": 5,
"user_id": 289,
"device_id": 143,
"file": "/tmp/fakerOADVUb",
"date_start": "1970-03-04 11:31:01",
"date_end": "2002-12-16 13:37:44",
"created_at": "2026-07-08T15:48:32.000000Z",
"updated_at": "2026-07-08T15:48:32.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET_BY_USER:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get logs by device
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 6,
"user_id": 290,
"device_id": 144,
"file": "/tmp/fakerkmML9W",
"date_start": "1988-01-03 22:53:03",
"date_end": "1984-05-02 03:13:39",
"created_at": "2026-07-08T15:48:32.000000Z",
"updated_at": "2026-07-08T15:48:32.000000Z"
},
{
"id": 7,
"user_id": 291,
"device_id": 145,
"file": "/tmp/fakerECo3CG",
"date_start": "1978-07-22 18:25:15",
"date_end": "2023-04-25 23:10:15",
"created_at": "2026-07-08T15:48:33.000000Z",
"updated_at": "2026-07-08T15:48:33.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET_BY_DEVICE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Old Configurator Statistics
Endpoints for old configurator statistics
Create old configurator statistic
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/old-configurator-statistics" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"entry_id\": \"fuga\",
\"comments\": \"perferendis\"
}"
const url = new URL(
"http://localhost:8000/api/old-configurator-statistics"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"entry_id": "fuga",
"comments": "perferendis"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 1,
"entry_id": "6980e0a7-5358-34ac-b318-e3362da27040",
"comments": "{\"key\":\"quaerat\",\"value\":99}",
"created_at": "2026-07-08T15:46:16.000000Z",
"updated_at": "2026-07-08T15:46:16.000000Z"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
List old configurator statistics
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/old-configurator-statistics" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/old-configurator-statistics"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 2,
"entry_id": "43fcd638-f9d2-35db-b5fa-264a537c0e67",
"comments": "{\"key\":\"sit\",\"value\":473416}",
"created_at": "2026-07-08T15:48:53.000000Z",
"updated_at": "2026-07-08T15:48:53.000000Z"
},
{
"id": 3,
"entry_id": "1ab58355-644d-3345-98eb-4edb9458a76b",
"comments": "{\"key\":\"necessitatibus\",\"value\":2094}",
"created_at": "2026-07-08T15:48:53.000000Z",
"updated_at": "2026-07-08T15:48:53.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view old configurator statistics",
"code": "OLD_CONFIGURATOR_STATISTIC:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
P2P Sessions
API endpoints for managing P2P (peer-to-peer) sessions
Get active session data
requires authentication
Returns P2P sessions with status "waiting_for_decision" or "in_progress".
Example request:
curl --request GET \
--get "http://localhost:8000/api/p2p/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/p2p/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 1,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "ea4e23f4-7e1d-391a-a5c1-f4137204ba6f",
"clinician_uuid": "af1c1ad3-ed61-3db1-bb5a-e95ba7c429fc",
"token": "59BNRAPT8XRRBTKXY9Q3L48SUUB4RBBRVLYXPQQ4YDZHVKQVC6V9UPRP5BHS3ZPA",
"status": "waiting_for_decision",
"created_at": "2026-07-08T15:47:14.000000Z",
"updated_at": "2026-07-08T15:47:14.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view active P2P session",
"code": "P2P_SESSIONS:GET_ACTIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:GET_ACTIVE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Get session data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/p2p/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/p2p/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 2,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "db764b66-e3d9-3f32-b5e4-c187c1f4a425",
"clinician_uuid": "479a4394-8f96-3e0b-88e2-fb189228ec7f",
"token": "KHTQXS3LHBFP39RB9K4PWF9HAMYEYRK736QKZBWQ5EYDUDFRZQCJBP3LXAGNQ897",
"status": "waiting_for_decision",
"created_at": "2026-07-08T15:47:14.000000Z",
"updated_at": "2026-07-08T15:47:14.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view P2P session",
"code": "P2P_SESSIONS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:GET:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Create new P2P session
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/p2p/create" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"amputee_id\": 2,
\"device_id\": 5,
\"amputee_uuid\": \"8973babb-61f4-3d2b-ac53-6dfc2456aa48\",
\"clinician_uuid\": \"a8d1a569-92e9-3d14-8f09-c3b5975026d5\"
}"
const url = new URL(
"http://localhost:8000/api/p2p/create"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"amputee_id": 2,
"device_id": 5,
"amputee_uuid": "8973babb-61f4-3d2b-ac53-6dfc2456aa48",
"clinician_uuid": "a8d1a569-92e9-3d14-8f09-c3b5975026d5"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"amputee_id": 122,
"device_id": null,
"clinician_id": 123,
"amputee_uuid": "cfacc832-2d1f-3a1f-8e2b-140f59b21cce",
"clinician_uuid": "714bdb73-35b1-3056-a85d-0daaa52bb9dc",
"token": "FKSXC6YP435LYQJYQX4D7Q5G3ESDCYWNEVVSJJH34GEBZN55WSK9YNBDCPUC3C3B",
"status": "waiting_for_decision",
"created_at": "2026-07-08T15:47:15.000000Z",
"updated_at": "2026-07-08T15:47:15.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create P2P session",
"code": "P2P_SESSIONS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Device not assigned to patient):
{
"message": "Device is not assigned to the patient",
"code": "P2P_SESSIONS:CREATE:DEVICE_NOT_ASSIGNED"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "P2P_SESSIONS:CREATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Update P2P session
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/p2p/1/update" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"status\": \"closed\"
}"
const url = new URL(
"http://localhost:8000/api/p2p/1/update"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"status": "closed"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "a412e124-a321-38bc-bbe2-436801f20d2b",
"clinician_uuid": "37d8e9fb-39f9-3b57-afd4-21c895b735e4",
"token": "RZKXZ7R74QPPAPR6UXWAMH8952VZ73GTX6UWURWJYTHUDHVVGA6RJGZY9B82G5TQ",
"status": "waiting_for_decision",
"created_at": "2026-07-08T15:47:15.000000Z",
"updated_at": "2026-07-08T15:47:15.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update P2P session",
"code": "P2P_SESSIONS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:UPDATE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Product features and toggles
API endpoints for product features and toggles management
Definitions:
- Product feature - part of application which can be considered as hardware compatible (with for example specific PCB version) or software compatible (with for example specific firmware version). Product features are used in versions compatibility matrix.
- Product toggle - part of application which can be enabled and disabled for current environment.
List product features
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/features" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/features"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "gray",
"slug": "quia-quidem-quia-quae-suscipit-rerum",
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
},
{
"id": 2,
"name": "teal",
"slug": "sapiente-et-et-nisi-nemo-id-sit-neque-reiciendis",
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "PRODUCT_FEATURES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Product feature ID.
name
string
Feature name.
slug
string
Feature slug (unique identifier).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create product feature
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/product/features" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\"
}"
const url = new URL(
"http://localhost:8000/api/product/features"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "aqua",
"slug": "dolores-vel-est-voluptatem-rerum-quis-veniam",
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Product feature ID.
name
string
Feature name.
slug
string
Feature slug (unique identifier).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update product feature
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/product/features/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\"
}"
const url = new URL(
"http://localhost:8000/api/product/features/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "teal",
"slug": "sunt-nihil-tempora-nulla-sunt-sunt",
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product feature not found):
{
"message": "Product feature not found",
"code": "PRODUCT_FEATURES:UPDATE:FEATURE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Product feature ID.
name
string
Feature name.
slug
string
Feature slug (unique identifier).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete product feature
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/product/features/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/features/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Product feature deleted",
"code": "PRODUCT_FEATURES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Product feature belongs to compatibility entries):
{
"message": "Cannot delete: product feature belongs to existing compatibility entries (1)",
"code": "PRODUCT_FEATURES:DELETE:HAS_COMPATIBILITY_ENTRIES"
}
Example response (404, Product feature not found):
{
"message": "Product feature not found",
"code": "PRODUCT_FEATURES:DELETE:FEATURE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
List product toggles
requires authentication
This endpoint returns list of global toggles. For some users there could exist user toggle which overrides these settings.
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/toggles?global=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/toggles"
);
const params = {
"global": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "gray",
"slug": "repellat-est-voluptates-numquam-itaque-sunt-tenetur",
"enabled": 1,
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
},
{
"id": 2,
"name": "maroon",
"slug": "officia-in-neque-a",
"enabled": 0,
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "PRODUCT_TOGGLES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Product toggle ID.
name
string
Toggle name.
slug
string
Toggle slug (unique identifier).
enabled
boolean
Whether the toggle is enabled globally.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create product toggle
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/product/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\",
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/product/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config",
"enabled": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "green",
"slug": "et-rem-doloremque-molestias-quisquam-veritatis-quasi",
"enabled": 0,
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Product toggle ID.
name
string
Toggle name.
slug
string
Toggle slug (unique identifier).
enabled
boolean
Whether the toggle is enabled globally.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update product toggle
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/product/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\",
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/product/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config",
"enabled": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "teal",
"slug": "odit-et-nulla-id-iure-odit-maxime-occaecati-consequatur",
"enabled": 1,
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product toggle not found):
{
"message": "Product toggle not found",
"code": "PRODUCT_TOGGLES:UPDATE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Product toggle ID.
name
string
Toggle name.
slug
string
Toggle slug (unique identifier).
enabled
boolean
Whether the toggle is enabled globally.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete product toggle
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/product/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Product toggle deleted",
"code": "PRODUCT_TOGGLES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product toggle not found):
{
"message": "Product toggle not found",
"code": "PRODUCT_TOGGLES:DELETE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
List product FAQ
requires authentication
This endpoint returns list of product FAQ.
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/faq" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/faq"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"question": "Maxime et eos aliquid eius nemo recusandae qui. Fugiat ad accusantium veritatis sunt qui quam. Earum ipsum omnis excepturi neque ut hic. Tempore est est pariatur eos illum consequatur nihil amet.",
"answer": "Voluptatem et adipisci rerum cum corrupti voluptates sunt consectetur. Ea beatae facere itaque molestiae odio repudiandae assumenda. Dolore voluptatibus maiores sit praesentium.",
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
},
{
"id": 2,
"question": "Qui neque ad magnam qui. Aliquid quia aut eum magnam. Est itaque expedita cumque nam nesciunt dolore possimus.",
"answer": "Totam inventore in soluta et iste incidunt. Est perspiciatis officia provident incidunt adipisci quisquam cupiditate. Sequi quam eligendi est ut soluta.",
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "FAQ:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
FAQ entry ID.
question
string
FAQ question.
answer
string
FAQ answer.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List user toggles
requires authentication
This endpoint returns list of user toggles with their global toggles.
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"toggle_id": 6,
"user_id": 255,
"enabled": 1,
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z",
"toggle": {
"id": 6,
"name": "green",
"slug": "ipsum-sint-aut-dolor-praesentium-et-eveniet-illum",
"enabled": 0,
"created_at": "2026-07-08T15:48:14.000000Z",
"updated_at": "2026-07-08T15:48:14.000000Z"
}
},
{
"id": 2,
"toggle_id": 8,
"user_id": 256,
"enabled": 1,
"created_at": "2026-07-08T15:48:15.000000Z",
"updated_at": "2026-07-08T15:48:15.000000Z",
"toggle": {
"id": 8,
"name": "silver",
"slug": "non-consequatur-et-quasi-non-omnis",
"enabled": 0,
"created_at": "2026-07-08T15:48:15.000000Z",
"updated_at": "2026-07-08T15:48:15.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "USER_TOGGLES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User product toggle ID.
toggle_id
integer
Associated product toggle ID.
user_id
integer
Associated user ID.
enabled
boolean
Whether the toggle is enabled for this user.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
toggle
object
Associated product toggle.
Create user toggle
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"toggle_id\": 1,
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"toggle_id": 1,
"enabled": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"toggle_id": 9,
"user_id": 257,
"enabled": 1,
"created_at": "2026-07-08T15:48:15.000000Z",
"updated_at": "2026-07-08T15:48:15.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot create user toggles for SuperAdmin):
{
"message": "Cannot create user toggles for SuperAdmin",
"code": "USER_TOGGLES:CREATE:CANNOT_CREATE_FOR_SUPER_ADMIN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:CREATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User product toggle ID.
toggle_id
integer
Associated product toggle ID.
user_id
integer
Associated user ID.
enabled
boolean
Whether the toggle is enabled for this user.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
toggle
object
Associated product toggle.
Update user toggle
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"enabled": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"toggle_id": 10,
"user_id": 258,
"enabled": 1,
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:UPDATE:USER_NOT_FOUND"
}
Example response (404, User toggle not found):
{
"message": "User toggle not found",
"code": "USER_TOGGLES:UPDATE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User product toggle ID.
toggle_id
integer
Associated product toggle ID.
user_id
integer
Associated user ID.
enabled
boolean
Whether the toggle is enabled for this user.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
toggle
object
Associated product toggle.
Delete user toggle
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User toggle deleted",
"code": "USER_TOGGLES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:DELETE:USER_NOT_FOUND"
}
Example response (404, User toggle not found):
{
"message": "User toggle not found",
"code": "USER_TOGGLES:DELETE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Releases
API endpoints for releases management
List releases
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/releases" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 14,
"description": "Rerum enim iure illo non omnis. Sint doloribus totam ullam voluptatem architecto. Repudiandae voluptatum exercitationem autem quo suscipit.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"version": {
"id": 14,
"name": "4.54.6",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
},
{
"id": 2,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 15,
"description": "Quam architecto natus nisi repellendus. Ducimus odio accusamus aliquam quia. Nisi quisquam et illo et est sunt et quasi. Suscipit voluptatibus unde quidem voluptate.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"version": {
"id": 15,
"name": "0.71.70",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list releases",
"code": "RELEASES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get release
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 16,
"description": "Omnis architecto dolorem corporis rerum alias aut. Expedita et dolorem similique et. Sint enim qui et quis voluptas molestias at. Maiores magni deserunt aliquid provident facilis incidunt voluptate.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"version": {
"id": 16,
"name": "1.33.54",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view release",
"code": "RELEASES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:GET:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
Create release
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/releases" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version_type\": \"SoftwareVersion\",
\"version_id\": 1,
\"description\": \"This version fixes minor bugs.\"
}"
const url = new URL(
"http://localhost:8000/api/releases"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version_type": "SoftwareVersion",
"version_id": 1,
"description": "This version fixes minor bugs."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 17,
"description": "Consequuntur libero impedit quo voluptatem accusantium in itaque in. Ex ipsam impedit numquam ut exercitationem aliquid. Et facilis quam sequi rerum culpa.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create release",
"code": "RELEASES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
Update release
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version_type\": \"SoftwareVersion\",
\"version_id\": 1,
\"description\": \"This version fixes minor bugs.\"
}"
const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version_type": "SoftwareVersion",
"version_id": 1,
"description": "This version fixes minor bugs."
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 18,
"description": "Qui fugiat est at quaerat. Nisi ut expedita maiores nostrum aut occaecati. Et doloribus sed aperiam reprehenderit reprehenderit. Harum et quis et et velit consectetur doloribus.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update release",
"code": "RELEASES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:UPDATE:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
Delete release
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "RELEASES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete release",
"code": "RELEASES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:DELETE:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Search
API endpoints for search
Search
requires authentication
- users (by name and email)
- devices (by serial number)
Returned collection contains entries of type User or Device.
If the device has a patient assigned, this patient is included in the results as an entry of type User. If the device has no patient, the device is included in the results.
Users included in the results, but not found directly have "devices" relation filled in with the devices that match the search query.
Example request:
curl --request GET \
--get "http://localhost:8000/api/search?query=Tom" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"query\": \"bpdqvmyktlfyetsfyuqsltbdzdxsawigvsqobpgzlbmztdgrokbpqxwekqpcqyunhfofzyb\"
}"
const url = new URL(
"http://localhost:8000/api/search"
);
const params = {
"query": "Tom",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"query": "bpdqvmyktlfyetsfyuqsltbdzdxsawigvsqobpgzlbmztdgrokbpqxwekqpcqyunhfofzyb"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"type": "User",
"item": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"pivot": {
"assigned_user_id": 2,
"user_id": 1
},
"devices": [],
"roles": [
{
"id": 5,
"name": "Amputee",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 5,
"model_type": "App\\Models\\User"
}
}
]
}
},
{
"type": "Device",
"item": {
"id": 1,
"serial": "SERIAL-NUMBER",
"bluetooth_id": "BLUETOOTH_ID",
"model_id": 1,
"amputee_id": 1,
"firmware_version_id": 1,
"pcb_version_id": 1,
"active": 1,
"last_activity_at": "2024-11-11 12:00:00",
"created_at": "2024-08-30T15:00:00.000000Z",
"updated_at": "2024-09-01T16:00:00.000000Z",
"pivot": {
"user_id": 2,
"device_id": 1
}
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to search",
"code": "SEARCH:SEARCH:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Servicing
API endpoints for servicing
List of parts
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/servicing/parts" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/servicing/parts"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_model": null,
"name": "JCB",
"created_at": "2026-07-08T15:47:22.000000Z",
"updated_at": "2026-07-08T15:47:22.000000Z"
},
{
"id": 2,
"device_model": null,
"name": "MasterCard",
"created_at": "2026-07-08T15:47:22.000000Z",
"updated_at": "2026-07-08T15:47:22.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list service parts",
"code": "SERVICING:LIST_PARTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Service part ID.
device_model
integer
Associated device model ID.
name
string
Part name.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Report service repair
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/servicing/repair" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "user_id=1"\
--form "device_id=1"\
--form "parts[][part_id]=1"\
--form "parts[][reason]=Mechanical issue"\
--form "files[]=@/tmp/phpddZL3H" const url = new URL(
"http://localhost:8000/api/servicing/repair"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('user_id', '1');
body.append('device_id', '1');
body.append('parts[][part_id]', '1');
body.append('parts[][reason]', 'Mechanical issue');
body.append('files[]', document.querySelector('input[name="files[]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 140,
"device_id": 120,
"created_at": "2026-07-08T15:47:23.000000Z",
"updated_at": "2026-07-08T15:47:23.000000Z",
"parts": [
{
"id": 1,
"repair_id": 1,
"part_id": 3,
"reason": "Qui quis pariatur et recusandae omnis explicabo. Dolores asperiores qui omnis provident. Aliquid dolore impedit numquam impedit quia sit.",
"created_at": "2026-07-08T15:47:23.000000Z",
"updated_at": "2026-07-08T15:47:23.000000Z",
"part": {
"id": 3,
"device_model": null,
"name": "MasterCard",
"created_at": "2026-07-08T15:47:23.000000Z",
"updated_at": "2026-07-08T15:47:23.000000Z"
}
},
{
"id": 2,
"repair_id": 1,
"part_id": 4,
"reason": "In sed doloribus dolorum quos eaque nobis perferendis. Optio ea sit natus voluptates. Maxime eos enim dolores et nobis. Nobis amet ut quas architecto repellendus similique earum.",
"created_at": "2026-07-08T15:47:24.000000Z",
"updated_at": "2026-07-08T15:47:24.000000Z",
"part": {
"id": 4,
"device_model": null,
"name": "Visa",
"created_at": "2026-07-08T15:47:24.000000Z",
"updated_at": "2026-07-08T15:47:24.000000Z"
}
},
{
"id": 3,
"repair_id": 1,
"part_id": 5,
"reason": "Dolorem dolorem adipisci molestiae accusamus aperiam et beatae. Cum et nam sunt ipsum nihil minima molestiae repellat. Omnis molestias sequi praesentium vero. Eveniet neque voluptatem velit qui iste.",
"created_at": "2026-07-08T15:47:25.000000Z",
"updated_at": "2026-07-08T15:47:25.000000Z",
"part": {
"id": 5,
"device_model": null,
"name": "Visa",
"created_at": "2026-07-08T15:47:24.000000Z",
"updated_at": "2026-07-08T15:47:24.000000Z"
}
}
],
"attachments": [
{
"id": 1,
"repair_id": 1,
"file": "/tmp/fakerAla8yt",
"created_at": "2026-07-08T15:47:24.000000Z",
"updated_at": "2026-07-08T15:47:24.000000Z"
},
{
"id": 2,
"repair_id": 1,
"file": "/tmp/faker393ilP",
"created_at": "2026-07-08T15:47:25.000000Z",
"updated_at": "2026-07-08T15:47:25.000000Z"
},
{
"id": 3,
"repair_id": 1,
"file": "/tmp/fakerQ03zom",
"created_at": "2026-07-08T15:47:25.000000Z",
"updated_at": "2026-07-08T15:47:25.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to report service repair",
"code": "SERVICING:REPORT_REPAIR:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Service repair ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
parts
object[]
Service parts included in the repair.
attachments
object[]
Repair attachments.
Settings
API endpoints for app settings
Get app version
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/app-version" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/app-version"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"version": "1.6.0"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get silent push timeout
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/silent-push" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/silent-push"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"timeout": "15"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get available languages
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/languages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/languages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"languages": [
"de",
"en",
"es",
"it",
"pl",
"ru",
"uk"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get mobile stores versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"ios": "1.0",
"android": "1.0"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update app version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/settings/app-version" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version\": \"1.6.0\"
}"
const url = new URL(
"http://localhost:8000/api/settings/app-version"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version": "1.6.0"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"version": "1.6.0"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_APP_VERSION:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update silent push timeout
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/settings/silent-push" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"timeout\": 15
}"
const url = new URL(
"http://localhost:8000/api/settings/silent-push"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"timeout": 15
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"timeout": "15"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_SILENT_PUSH:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update mobile stores versions
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/mobile/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"ios\": \"1.1\",
\"android\": \"1.1\"
}"
const url = new URL(
"http://localhost:8000/api/mobile/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"ios": "1.1",
"android": "1.1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"ios": "1.0",
"android": "1.0"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_MOBILE_STORES_VERSION:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Support Ticket
API endpoints for managing support tickets
Get tickets list
requires authentication
Possible extend options:
- sender - the user who created ticket
- recipient - the user who was ticket recipient
- device - the device assigned to ticket
- messages - message allocated to ticket
- messages.attachments - list of attachments assigned to message and ticket
- messages.sender - the user who wrote the message
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets?status=new&sender=1&recipient=1&device=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets"
);
const params = {
"status": "new",
"sender": "1",
"recipient": "1",
"device": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 27,
"sender_id": 149,
"recipient_id": 150,
"device_id": 127,
"meeting_date": "2026-07-08 15:47:27",
"meeting_type": "online_meeting",
"contact_email": "eda.bosco@huel.com",
"status": "new",
"created_at": "2026-07-08T15:47:28.000000Z",
"updated_at": "2026-07-08T15:47:28.000000Z",
"sender": {
"id": 149,
"mrn": "UZM625LP1783525647",
"name": "Alanna Predovic",
"email": "1783525647wstehr@example.net",
"language": "en",
"phone": "(813) 850-7218",
"phone_country": "EE",
"phone_verified_at": null,
"address1": "5074 Judd Alley",
"address2": "East Madgeland, VA 11116",
"postal_code": "87335-7877",
"city": "Aufderhar, Gorczany and Wilkinson",
"country": "BG",
"clinic_name": "Modestaside",
"clinic_location": "3785 Dillon Freeway Suite 203\nEast Beulah, VT 87226-5965",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:27.000000Z",
"updated_at": "2026-07-08T15:47:27.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 150,
"mrn": "5ZZVZU5M1783525647",
"name": "Demond Kovacek",
"email": "1783525647shaniya.koss@example.org",
"language": "en",
"phone": "(707) 956-3803",
"phone_country": "HN",
"phone_verified_at": null,
"address1": "76250 Lockman Lakes Apt. 770",
"address2": "South Rebekahstad, MT 04434",
"postal_code": "07602",
"city": "Jacobi, Lowe and Kunze",
"country": "CZ",
"clinic_name": "Breanneside",
"clinic_location": "3828 Kunze Drive Apt. 294\nNorth Stan, TX 42015-4287",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:27.000000Z",
"updated_at": "2026-07-08T15:47:27.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 127,
"serial": "dbadfb00-33cb-3fde-af8a-fb5c669706fa",
"bluetooth_id": "64cb909b-8692-32ba-964e-4ddf7998e42f",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:47:28.000000Z",
"updated_at": "2026-07-08T15:47:28.000000Z"
},
"messages": [
{
"id": 15,
"ticket_id": 27,
"sender_id": 151,
"title": "Miss",
"content": "Exercitationem non nam laboriosam cumque dolores repellendus aliquam.",
"is_read": false,
"created_at": "2026-07-08T15:47:29.000000Z",
"updated_at": "2026-07-08T15:47:29.000000Z"
}
]
},
{
"id": 35,
"sender_id": 163,
"recipient_id": 164,
"device_id": 128,
"meeting_date": "2026-07-08 15:47:33",
"meeting_type": "online_meeting",
"contact_email": "schaefer.stewart@dubuque.net",
"status": "new",
"created_at": "2026-07-08T15:47:34.000000Z",
"updated_at": "2026-07-08T15:47:34.000000Z",
"sender": {
"id": 163,
"mrn": "TRB65B8N1783525653",
"name": "Prof. Gretchen Hartmann",
"email": "1783525653marty02@example.net",
"language": "en",
"phone": "458.465.4874",
"phone_country": "BJ",
"phone_verified_at": null,
"address1": "17028 Jenkins Mountains Apt. 324",
"address2": "Turcotteview, UT 21741-3295",
"postal_code": "52449-2813",
"city": "Terry and Sons",
"country": "RO",
"clinic_name": "Muellertown",
"clinic_location": "833 Huel Well Suite 627\nRobertsview, MD 70097-9542",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:33.000000Z",
"updated_at": "2026-07-08T15:47:33.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 164,
"mrn": "HNAKT7ZU1783525653",
"name": "Salvatore Paucek",
"email": "1783525653edwardo44@example.net",
"language": "en",
"phone": "929-603-2220",
"phone_country": "KN",
"phone_verified_at": null,
"address1": "60880 Joshuah Spur Apt. 335",
"address2": "Thielberg, CA 88043",
"postal_code": "89473",
"city": "Casper and Sons",
"country": "BE",
"clinic_name": "East Rooseveltland",
"clinic_location": "94154 Tyler Center Suite 085\nPearlinebury, PA 78525-7948",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:33.000000Z",
"updated_at": "2026-07-08T15:47:33.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 128,
"serial": "fb2b85e6-0969-333d-a940-1a8aacf95cb3",
"bluetooth_id": "7787d879-1d25-3d70-ad89-1d136665d4cf",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:47:34.000000Z",
"updated_at": "2026-07-08T15:47:34.000000Z"
},
"messages": [
{
"id": 19,
"ticket_id": 35,
"sender_id": 165,
"title": "Dr.",
"content": "Iusto assumenda error suscipit quia laboriosam deleniti.",
"is_read": false,
"created_at": "2026-07-08T15:47:35.000000Z",
"updated_at": "2026-07-08T15:47:35.000000Z"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list support tickets",
"code": "TICKETS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get tickets status
requires authentication
Counts tickets by their status
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"unread": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list support tickets",
"code": "TICKETS:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get support ticket
requires authentication
Returns single support ticket in the response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/ticket/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 43,
"sender_id": 177,
"recipient_id": 178,
"device_id": 129,
"meeting_date": "2026-07-08 15:47:39",
"meeting_type": "online_meeting",
"contact_email": "ahyatt@hotmail.com",
"status": "new",
"created_at": "2026-07-08T15:47:40.000000Z",
"updated_at": "2026-07-08T15:47:40.000000Z",
"sender": {
"id": 177,
"mrn": "ZXGMZ8521783525659",
"name": "Dandre West",
"email": "1783525659peyton.reynolds@example.net",
"language": "en",
"phone": "281.763.1609",
"phone_country": "QA",
"phone_verified_at": null,
"address1": "84691 Zachery Orchard Suite 821",
"address2": "Tremblayshire, WI 24570",
"postal_code": "52175-9561",
"city": "Fahey, Yundt and Swaniawski",
"country": "DK",
"clinic_name": "Port Jayceeport",
"clinic_location": "3573 Neva Ports\nLake Claudinehaven, CO 17739-0955",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:39.000000Z",
"updated_at": "2026-07-08T15:47:39.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 178,
"mrn": "Q8LCBMK41783525659",
"name": "Murray Turner",
"email": "1783525659llewellyn.blick@example.com",
"language": "en",
"phone": "(260) 283-8499",
"phone_country": "GY",
"phone_verified_at": null,
"address1": "93782 Mervin Springs Suite 078",
"address2": "East Quinton, KS 56047-7439",
"postal_code": "11518-5987",
"city": "Bergnaum, Runolfsdottir and Wiegand",
"country": "IT",
"clinic_name": "South Jewellborough",
"clinic_location": "8840 Willis Highway Apt. 207\nKoleview, RI 86018-2962",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:39.000000Z",
"updated_at": "2026-07-08T15:47:39.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 129,
"serial": "d6de8357-ec54-3ede-aeb5-3ec23687f553",
"bluetooth_id": "4a1e4d8f-0958-3b0f-ad9f-8426a69620b5",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:47:40.000000Z",
"updated_at": "2026-07-08T15:47:40.000000Z"
},
"messages": [
{
"id": 23,
"ticket_id": 43,
"sender_id": 179,
"title": "Prof.",
"content": "Illo iusto esse tempora.",
"is_read": false,
"created_at": "2026-07-08T15:47:41.000000Z",
"updated_at": "2026-07-08T15:47:41.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view support ticket",
"code": "TICKETS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:GET:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Get support ticket history
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/ticket/1/history" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/history"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"ticket_id": 51,
"author_id": 192,
"action": "non",
"reason": "Possimus provident minus dolor excepturi est.",
"created_at": "2026-07-08T15:47:46.000000Z",
"updated_at": "2026-07-08T15:47:46.000000Z"
},
{
"id": 2,
"ticket_id": 52,
"author_id": 194,
"action": "exercitationem",
"reason": "Reprehenderit ipsum magni mollitia autem occaecati.",
"created_at": "2026-07-08T15:47:47.000000Z",
"updated_at": "2026-07-08T15:47:47.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view support ticket",
"code": "TICKETS:HISTORY:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:HISTORY:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
History entry ID.
ticket_id
integer
Associated support ticket ID.
author_id
integer
ID of the user who made this change.
action
string
Action performed.
reason
string
Reason for the action.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made this change.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get support ticket available filters
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets/available-filters" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets/available-filters"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"clinicians": [
{
"id": 95,
"mrn": null,
"name": "Name",
"email": "email",
"region": "us",
"language": "pl",
"phone": "+48-555555555",
"phone_verified_at": null,
"address1": "Address",
"address2": "Address 2",
"postal_code": "",
"city": "",
"clinic_name": "Name",
"clinic_location": "Name",
"image": "https://aether-dev-bucket.s3.amazonaws.com/users/LDueuv1uG218G7owaiLAaWRkpaGxjB0jEFwzZsT1.png",
"mfa_enabled": 0,
"mfa_method": "sms",
"mfa_verified_to": null,
"location_id": 2,
"created_by": 1,
"active": 1,
"notifications_timezone": "America/Adak",
"notifications_at": null,
"created_at": "2022-07-19T14:43:37.000000Z",
"updated_at": "2024-09-27T05:52:51.000000Z",
"invitation_status": "expired",
"roles": [
{
"id": 2,
"name": "Clinician",
"guard_name": "web",
"created_at": "2022-03-21T17:15:47.000000Z",
"updated_at": "2022-03-21T17:15:47.000000Z",
"pivot": {
"model_id": 95,
"role_id": 2,
"model_type": "App\\Models\\User"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:AVAILABLE_FILTERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Create new support ticket
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tickets" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "recipient=1"\
--form "device=1"\
--form "meeting_type=online_meeting"\
--form "meeting_date=2026-07-08 15:47:47"\
--form "contact_email=carmela75@dickens.com"\
--form "message[content]=Natus non assumenda atque illo excepturi eum odio."\
--form "message[title]=Eum suscipit blanditiis iure."\
--form "message[attachments][]=@/tmp/php7jj4rF" const url = new URL(
"http://localhost:8000/api/tickets"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('recipient', '1');
body.append('device', '1');
body.append('meeting_type', 'online_meeting');
body.append('meeting_date', '2026-07-08 15:47:47');
body.append('contact_email', 'carmela75@dickens.com');
body.append('message[content]', 'Natus non assumenda atque illo excepturi eum odio.');
body.append('message[title]', 'Eum suscipit blanditiis iure.');
body.append('message[attachments][]', document.querySelector('input[name="message[attachments][]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 53,
"sender_id": 195,
"recipient_id": 196,
"device_id": 130,
"meeting_date": "2026-07-08 15:47:47",
"meeting_type": "online_meeting",
"contact_email": "corn@gmail.com",
"status": "new",
"created_at": "2026-07-08T15:47:48.000000Z",
"updated_at": "2026-07-08T15:47:48.000000Z",
"sender": {
"id": 195,
"mrn": "2YJX2PGR1783525667",
"name": "Miss Marcelina Marquardt IV",
"email": "1783525667wolff.herman@example.net",
"language": "en",
"phone": "972-969-5173",
"phone_country": "ZA",
"phone_verified_at": null,
"address1": "41446 Daniel Motorway Suite 069",
"address2": "Port Quincyview, UT 60794",
"postal_code": "54871-7036",
"city": "Rau PLC",
"country": "EE",
"clinic_name": "Treutelberg",
"clinic_location": "6448 Kiara Walk Suite 552\nNorth Emelie, NY 17558",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:47.000000Z",
"updated_at": "2026-07-08T15:47:47.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 196,
"mrn": "ZVMTYUKU1783525667",
"name": "Mr. Jeffery Thompson PhD",
"email": "1783525667robbie45@example.org",
"language": "en",
"phone": "(267) 827-0104",
"phone_country": "TL",
"phone_verified_at": null,
"address1": "70150 McKenzie Spur Suite 421",
"address2": "Moseborough, NY 60088",
"postal_code": "72158",
"city": "Bernhard Inc",
"country": "FR",
"clinic_name": "Braedenshire",
"clinic_location": "9685 Carter Cliff\nSchadenside, KY 08076",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:47.000000Z",
"updated_at": "2026-07-08T15:47:47.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 130,
"serial": "5b858b24-334f-32d2-b6bf-7d83722cb2f2",
"bluetooth_id": "f11d8788-4d1b-3219-b7cb-dc8d8e5ae181",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:47:48.000000Z",
"updated_at": "2026-07-08T15:47:48.000000Z"
},
"messages": [
{
"id": 27,
"ticket_id": 53,
"sender_id": 197,
"title": "Dr.",
"content": "Nesciunt consequuntur quis aut impedit.",
"is_read": false,
"created_at": "2026-07-08T15:47:49.000000Z",
"updated_at": "2026-07-08T15:47:49.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Close support ticket
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/close" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/close"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 61,
"sender_id": 209,
"recipient_id": 210,
"device_id": 131,
"meeting_date": "2026-07-08 15:47:54",
"meeting_type": "online_meeting",
"contact_email": "mitchell37@thompson.biz",
"status": "new",
"created_at": "2026-07-08T15:47:54.000000Z",
"updated_at": "2026-07-08T15:47:54.000000Z",
"sender": {
"id": 209,
"mrn": "38DERFE81783525674",
"name": "Trevion Schulist",
"email": "1783525674pferry@example.org",
"language": "en",
"phone": "920.771.8941",
"phone_country": "KN",
"phone_verified_at": null,
"address1": "47971 Cartwright Unions Suite 670",
"address2": "Andersonbury, KY 11172",
"postal_code": "32407-2754",
"city": "Harber Group",
"country": "LU",
"clinic_name": "Murraymouth",
"clinic_location": "65941 Chaz Underpass\nPort Sallie, MS 55208",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:54.000000Z",
"updated_at": "2026-07-08T15:47:54.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 210,
"mrn": "ZK2HJE5F1783525674",
"name": "Henderson Buckridge",
"email": "1783525674jacobs.jayda@example.net",
"language": "en",
"phone": "(541) 660-0831",
"phone_country": "BL",
"phone_verified_at": null,
"address1": "9739 Ritchie Ville",
"address2": "O'Konmouth, NY 25179-5175",
"postal_code": "91182",
"city": "Connelly, Terry and Ritchie",
"country": "GB",
"clinic_name": "Macyhaven",
"clinic_location": "6533 Greenholt Junctions\nEast Gregg, OH 17105",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:54.000000Z",
"updated_at": "2026-07-08T15:47:54.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 131,
"serial": "e5ff026c-408e-3c51-8fb8-7482024340ae",
"bluetooth_id": "8239b0e5-1225-3620-8e81-50c01b58e8c2",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:47:54.000000Z",
"updated_at": "2026-07-08T15:47:54.000000Z"
},
"messages": []
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to close support ticket",
"code": "TICKETS:CLOSE:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:CLOSE:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Reopen support ticket
requires authentication
Patient (Amputee) role can reopen only non-config tickets.
For config tickets patients will get "Insufficient permission" response.
For patients role reason field is required.
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/reopen" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"reason\": \"Something is still not working\"
}"
const url = new URL(
"http://localhost:8000/api/ticket/1/reopen"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"reason": "Something is still not working"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"ticket_id": 62,
"author_id": 212,
"action": "assumenda",
"reason": "Porro amet et non et.",
"created_at": "2026-07-08T15:47:55.000000Z",
"updated_at": "2026-07-08T15:47:55.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to reopen support ticket",
"code": "TICKETS:REOPEN:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:REOPEN:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
History entry ID.
ticket_id
integer
Associated support ticket ID.
author_id
integer
ID of the user who made this change.
action
string
Action performed.
reason
string
Reason for the action.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made this change.
Create new support ticket message
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/messages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "title=Veritatis ut placeat debitis."\
--form "content=Molestias fugiat et sed pariatur maiores hic."\
--form "attachments[]=@/tmp/php5oijJQ" const url = new URL(
"http://localhost:8000/api/ticket/1/messages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('title', 'Veritatis ut placeat debitis.');
body.append('content', 'Molestias fugiat et sed pariatur maiores hic.');
body.append('attachments[]', document.querySelector('input[name="attachments[]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 63,
"sender_id": 213,
"recipient_id": 214,
"device_id": 132,
"meeting_date": "2026-07-08 15:47:56",
"meeting_type": "online_meeting",
"contact_email": "gsmitham@hotmail.com",
"status": "new",
"created_at": "2026-07-08T15:47:56.000000Z",
"updated_at": "2026-07-08T15:47:56.000000Z",
"sender": {
"id": 213,
"mrn": "9WUVGTRD1783525675",
"name": "Jonathon Ryan",
"email": "1783525675braulio.rodriguez@example.com",
"language": "en",
"phone": "920.407.8671",
"phone_country": "RW",
"phone_verified_at": null,
"address1": "73913 Halvorson Union",
"address2": "Constantinberg, AR 22067-7948",
"postal_code": "12594",
"city": "Aufderhar-Heaney",
"country": "LU",
"clinic_name": "O'Harachester",
"clinic_location": "385 Rice River Apt. 289\nNew Tianaview, OK 18590-0625",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:55.000000Z",
"updated_at": "2026-07-08T15:47:55.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 214,
"mrn": "H7774A8R1783525676",
"name": "Porter Littel Sr.",
"email": "1783525676qwintheiser@example.com",
"language": "en",
"phone": "+1-252-447-6971",
"phone_country": "BN",
"phone_verified_at": null,
"address1": "629 Nelle Harbor Apt. 237",
"address2": "Douglasbury, AZ 84106",
"postal_code": "01094-1527",
"city": "Hammes-Feest",
"country": "LU",
"clinic_name": "Madelineshire",
"clinic_location": "156 Norberto Field Suite 521\nRomainetown, AK 48272-9519",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:47:56.000000Z",
"updated_at": "2026-07-08T15:47:56.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 132,
"serial": "ee8f503f-ef33-3611-b5fa-09980539c334",
"bluetooth_id": "bc9f157e-7faa-36ee-bb2a-c64c34d8cb78",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:47:56.000000Z",
"updated_at": "2026-07-08T15:47:56.000000Z"
},
"messages": [
{
"id": 31,
"ticket_id": 63,
"sender_id": 215,
"title": "Dr.",
"content": "Quibusdam facere ipsa eum recusandae culpa possimus.",
"is_read": false,
"created_at": "2026-07-08T15:47:58.000000Z",
"updated_at": "2026-07-08T15:47:58.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:CREATE_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:CREATE_MESSAGE:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Mark all messages as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/read" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/read"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 71,
"sender_id": 227,
"recipient_id": 228,
"device_id": 133,
"meeting_date": "2026-07-08 15:48:02",
"meeting_type": "online_meeting",
"contact_email": "kerluke.carmela@greenfelder.com",
"status": "new",
"created_at": "2026-07-08T15:48:02.000000Z",
"updated_at": "2026-07-08T15:48:02.000000Z",
"sender": {
"id": 227,
"mrn": "8XT949NX1783525681",
"name": "Ms. Lilla Altenwerth",
"email": "1783525681bartoletti.lewis@example.org",
"language": "en",
"phone": "+1-318-858-1754",
"phone_country": "CO",
"phone_verified_at": null,
"address1": "3428 Mylene Springs Apt. 994",
"address2": "Adamouth, VT 98190",
"postal_code": "01564",
"city": "Rolfson-Casper",
"country": "BG",
"clinic_name": "Aliport",
"clinic_location": "48959 Wellington Heights Suite 889\nMeredithport, SD 00093",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:01.000000Z",
"updated_at": "2026-07-08T15:48:01.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 228,
"mrn": "YFJ7PBHV1783525682",
"name": "Miss Isobel Huel",
"email": "1783525682eliane.mcglynn@example.org",
"language": "en",
"phone": "+1 (301) 997-0063",
"phone_country": "DM",
"phone_verified_at": null,
"address1": "6392 Swaniawski Burg Apt. 445",
"address2": "Lake Elwinstad, VA 73882-3916",
"postal_code": "57971-2407",
"city": "Greenholt Inc",
"country": "PL",
"clinic_name": "New Glennaland",
"clinic_location": "204 Larson Mountain\nPort Emeliamouth, MA 49698-9031",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:02.000000Z",
"updated_at": "2026-07-08T15:48:02.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 133,
"serial": "3a559f7b-b4b6-3143-8487-0f08fdafedea",
"bluetooth_id": "44b280c7-fe89-358f-81f2-bc23a2851de4",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:48:02.000000Z",
"updated_at": "2026-07-08T15:48:02.000000Z"
},
"messages": [
{
"id": 35,
"ticket_id": 71,
"sender_id": 229,
"title": "Ms.",
"content": "Sit quia consequatur doloribus ut et quae.",
"is_read": false,
"created_at": "2026-07-08T15:48:03.000000Z",
"updated_at": "2026-07-08T15:48:03.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to read message",
"code": "TICKETS:READ_ALL:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:READ_ALL:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Mark single message as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/read/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/read/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 79,
"sender_id": 241,
"recipient_id": 242,
"device_id": 134,
"meeting_date": "2026-07-08 15:48:08",
"meeting_type": "online_meeting",
"contact_email": "mcclure.ollie@weissnat.org",
"status": "new",
"created_at": "2026-07-08T15:48:08.000000Z",
"updated_at": "2026-07-08T15:48:08.000000Z",
"sender": {
"id": 241,
"mrn": "WDBKG4U41783525687",
"name": "Flossie Hackett",
"email": "1783525687eryan@example.org",
"language": "en",
"phone": "1-864-470-9015",
"phone_country": "OM",
"phone_verified_at": null,
"address1": "40042 Hayes Squares Suite 134",
"address2": "Selenaside, GA 17456",
"postal_code": "61539",
"city": "Wolf Group",
"country": "FR",
"clinic_name": "South Lonnie",
"clinic_location": "89475 Bradtke Village Apt. 042\nNorth Jon, DE 37845",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:07.000000Z",
"updated_at": "2026-07-08T15:48:07.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 242,
"mrn": "V34F9USZ1783525688",
"name": "Prof. Hugh Rutherford",
"email": "1783525688bell66@example.com",
"language": "en",
"phone": "1-520-253-6970",
"phone_country": "VG",
"phone_verified_at": null,
"address1": "46667 Verdie Hills",
"address2": "West Aronside, PA 64559-2154",
"postal_code": "31387-5504",
"city": "Armstrong, Casper and Simonis",
"country": "NO",
"clinic_name": "West Dane",
"clinic_location": "375 Boyd Crest Suite 425\nPort Eudoramouth, WI 00609-1387",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:48:08.000000Z",
"updated_at": "2026-07-08T15:48:08.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 134,
"serial": "bd513792-7a7b-3148-8281-9441a24977de",
"bluetooth_id": "497cfc6a-49a2-3898-b116-62b2b7663657",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:48:08.000000Z",
"updated_at": "2026-07-08T15:48:08.000000Z"
},
"messages": [
{
"id": 39,
"ticket_id": 79,
"sender_id": 243,
"title": "Dr.",
"content": "Ullam et corrupti esse non exercitationem vero.",
"is_read": false,
"created_at": "2026-07-08T15:48:09.000000Z",
"updated_at": "2026-07-08T15:48:09.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to read message",
"code": "TICKETS:READ_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "TICKETS:READ_MESSAGE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Tooltips
API endpoints for managing tooltips
List tooltips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tooltips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Jennifer O'Connell",
"type": "image",
"language": "ab",
"file": "0",
"created_by": 305,
"created_at": "2026-07-08T15:48:41.000000Z",
"updated_at": "2026-07-08T15:48:41.000000Z",
"deleted_at": null
},
{
"id": 2,
"name": "Jed Effertz",
"type": "video",
"language": "nv",
"file": "0",
"created_by": 306,
"created_at": "2026-07-08T15:48:42.000000Z",
"updated_at": "2026-07-08T15:48:42.000000Z",
"deleted_at": null
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list tooltips",
"code": "TOOLTIPS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Tooltip ID.
name
string
Tooltip identifier name.
type
string
Media type.
Must be one of:imagevideo
language
string
Language code (ISO 639-1).
file
string
File path or URL.
created_by
integer
ID of the user who created the tooltip.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List archived tooltips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tooltips/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"name": "Mr. Cortez Lindgren DDS",
"type": "video",
"language": "ka",
"file": "0",
"created_by": 307,
"created_at": "2026-07-08T15:48:42.000000Z",
"updated_at": "2026-07-08T15:48:42.000000Z",
"deleted_at": null
},
{
"id": 4,
"name": "Genevieve Watsica",
"type": "video",
"language": "ru",
"file": "0",
"created_by": 308,
"created_at": "2026-07-08T15:48:43.000000Z",
"updated_at": "2026-07-08T15:48:43.000000Z",
"deleted_at": null
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:LIST_ARCHIVE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Tooltip ID.
name
string
Tooltip identifier name.
type
string
Media type.
Must be one of:imagevideo
language
string
Language code (ISO 639-1).
file
string
File path or URL.
created_by
integer
ID of the user who created the tooltip.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create new tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=Clementine Wells"\
--form "type=video"\
--form "language=sc"\
--form "file=@/tmp/phpnSxQk9" const url = new URL(
"http://localhost:8000/api/tooltips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', 'Clementine Wells');
body.append('type', 'video');
body.append('language', 'sc');
body.append('file', document.querySelector('input[name="file"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "Albertha Ondricka",
"type": "image",
"language": "he",
"file": "0",
"created_by": 309,
"created_at": "2026-07-08T15:48:43.000000Z",
"updated_at": "2026-07-08T15:48:43.000000Z",
"deleted_at": null
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (500, Server error):
{
"message": "Server error: tooltip not created",
"code": "TOOLTIPS:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Tooltip ID.
name
string
Tooltip identifier name.
type
string
Media type.
Must be one of:imagevideo
language
string
Language code (ISO 639-1).
file
string
File path or URL.
created_by
integer
ID of the user who created the tooltip.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Archive tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips/1/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/1/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Tooltip archived",
"code": "TOOLTIPS:ARCHIVE:ARCHIVED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:ARCHIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Tooltip not found):
{
"message": "Tooltip not found",
"code": "TOOLTIPS:ARCHIVE:TOOLTIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Restore archived tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips/1/restore" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/1/restore"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Tooltip restored",
"code": "TOOLTIPS:RESTORE:RESTORED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:RESTORE:INSUFFICIENT_PERMISSION"
}
Example response (404, Tooltip not found):
{
"message": "Tooltip not found",
"code": "TOOLTIPS:RESTORE:TOOLTIP_NOT_FOUND"
}
Example response (404, Tooltip is not archived):
{
"message": "Tooltip is not archived",
"code": "TOOLTIPS:RESTORE:TOOLTIP_NOT_ARCHIVED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Trainings
API endpoints for trainings
Get user trainings
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 313,
"training_id": 2,
"notifications_enabled": 1,
"created_at": "2026-07-08T15:48:45.000000Z",
"updated_at": "2026-07-08T15:48:45.000000Z",
"training": {
"id": 2,
"name": "vitae ea",
"created_at": "2026-07-08T15:48:45.000000Z",
"updated_at": "2026-07-08T15:48:45.000000Z"
}
},
{
"id": 2,
"user_id": 314,
"training_id": 4,
"notifications_enabled": 1,
"created_at": "2026-07-08T15:48:46.000000Z",
"updated_at": "2026-07-08T15:48:46.000000Z",
"training": {
"id": 4,
"name": "repellendus qui",
"created_at": "2026-07-08T15:48:46.000000Z",
"updated_at": "2026-07-08T15:48:46.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Get trainings for specific user (clinician access)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"user_id": 315,
"training_id": 6,
"notifications_enabled": 1,
"created_at": "2026-07-08T15:48:46.000000Z",
"updated_at": "2026-07-08T15:48:46.000000Z",
"training": {
"id": 6,
"name": "voluptate quibusdam",
"created_at": "2026-07-08T15:48:46.000000Z",
"updated_at": "2026-07-08T15:48:46.000000Z"
}
},
{
"id": 4,
"user_id": 316,
"training_id": 8,
"notifications_enabled": 1,
"created_at": "2026-07-08T15:48:47.000000Z",
"updated_at": "2026-07-08T15:48:47.000000Z",
"training": {
"id": 8,
"name": "voluptatem fugiat",
"created_at": "2026-07-08T15:48:47.000000Z",
"updated_at": "2026-07-08T15:48:47.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access patient training",
"code": "TRAININGS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "TRAININGS:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Get user badges
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/1/user-badges" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/user-badges"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 317,
"badge_id": 1,
"created_at": "2026-07-08T15:48:47.000000Z",
"updated_at": "2026-07-08T15:48:47.000000Z"
},
{
"id": 2,
"user_id": 318,
"badge_id": 2,
"created_at": "2026-07-08T15:48:47.000000Z",
"updated_at": "2026-07-08T15:48:47.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:BADGES:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:BADGES:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:BADGES:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User badge record ID.
user_id
integer
Associated user ID.
badge_id
integer
Associated badge ID.
created_at
string
Awarded timestamp.
updated_at
string
Last update timestamp.
Start user training
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/start/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/start/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 5,
"user_id": 319,
"training_id": 9,
"notifications_enabled": 1,
"created_at": "2026-07-08T15:48:48.000000Z",
"updated_at": "2026-07-08T15:48:48.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:START:INSUFFICIENT_PERMISSION"
}
Example response (403, User training already started):
{
"message": "Cannot start: training already started",
"code": "TRAININGS:START:ALREADY_STARTED"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:START:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Update training
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/trainings/update/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"notifications_enabled\": false
}"
const url = new URL(
"http://localhost:8000/api/trainings/update/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"notifications_enabled": false
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 6,
"user_id": 320,
"training_id": 10,
"notifications_enabled": 1,
"created_at": "2026-07-08T15:48:48.000000Z",
"updated_at": "2026-07-08T15:48:48.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:UPDATE:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:UPDATE:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Get training progress
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/progress/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/progress/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 7,
"user_id": 321,
"training_id": 11,
"notifications_enabled": 1,
"created_at": "2026-07-08T15:48:49.000000Z",
"updated_at": "2026-07-08T15:48:49.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:PROGRESS:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:PROGRESS:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Mark training task done
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/day/2/task/3" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/day/2/task/3"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200):
{
"id": 8,
"user_id": 322,
"training_id": 12,
"notifications_enabled": 1,
"created_at": "2026-07-08T15:48:49.000000Z",
"updated_at": "2026-07-08T15:48:49.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:MARK_DONE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:MARK_DONE:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:MARK_DONE:TRAINING_NOT_FOUND"
}
Example response (404, Training day not found):
{
"message": "Training day not found",
"code": "TRAININGS:MARK_DONE:TRAINING_DAY_NOT_FOUND"
}
Example response (404, Training task not found):
{
"message": "Training task not found",
"code": "TRAININGS:MARK_DONE:TRAINING_TASK_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Save training exercises attempts
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/day/2/task/3/attempts" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "exercises[][date_start]=1973-01-12 12:59:57"\
--form "exercises[][date_end]=2001-12-14 03:44:57"\
--form "exercises[][end_reason]=ticketCreated"\
--form "exercises[][config][common][fingerStrength][]=1"\
--form "exercises[][config][common][gripPositions][_]=0"\
--form "exercises[][config][common][gripPositions][0][initial][]=8"\
--form "exercises[][config][common][gripPositions][0][limit][]=77"\
--form "exercises[][config][common][gripPositions][1][initial][]=49"\
--form "exercises[][config][common][gripPositions][1][limit][]=70"\
--form "exercises[][config][common][gripPositions][2][initial][]=18"\
--form "exercises[][config][common][gripPositions][2][limit][]=63"\
--form "exercises[][config][common][gripPositions][3][initial][]=60"\
--form "exercises[][config][common][gripPositions][3][limit][]=86"\
--form "exercises[][config][common][gripPositions][4][initial][]=23"\
--form "exercises[][config][common][gripPositions][4][limit][]=34"\
--form "exercises[][config][common][gripPositions][5][initial][]=59"\
--form "exercises[][config][common][gripPositions][5][limit][]=86"\
--form "exercises[][config][common][gripPositions][6][initial][]=35"\
--form "exercises[][config][common][gripPositions][6][limit][]=57"\
--form "exercises[][config][common][gripPositions][7][initial][]=60"\
--form "exercises[][config][common][gripPositions][7][limit][]=94"\
--form "exercises[][config][common][gripPositions][8][initial][]=45"\
--form "exercises[][config][common][gripPositions][8][limit][]=59"\
--form "exercises[][config][common][gripPositions][9][initial][]=31"\
--form "exercises[][config][common][gripPositions][9][limit][]=63"\
--form "exercises[][config][common][gripPositions][10][initial][]=77"\
--form "exercises[][config][common][gripPositions][10][limit][]=89"\
--form "exercises[][config][common][gripPositions][11][initial][]=69"\
--form "exercises[][config][common][gripPositions][11][limit][]=92"\
--form "exercises[][config][common][gripPositions][12][initial][]=6"\
--form "exercises[][config][common][gripPositions][12][limit][]=8"\
--form "exercises[][config][common][gripPositions][13][initial][]=37"\
--form "exercises[][config][common][gripPositions][13][limit][]=69"\
--form "exercises[][config][common][inputSite][]=0"\
--form "exercises[][config][modes][][id]=83"\
--form "exercises[][config][modes][][name]=Error iure nihil aut dicta et numquam."\
--form "exercises[][config][modes][][slot]=0"\
--form "exercises[][config][modes][][config][autoGrasp][]=1"\
--form "exercises[][config][modes][][config][coContractionTimings][]=200"\
--form "exercises[][config][modes][][config][controlMode][]=0"\
--form "exercises[][config][modes][][config][emgGains][]=100"\
--form "exercises[][config][modes][][config][emgSpike][]=1"\
--form "exercises[][config][modes][][config][emgThresholds][]=10"\
--form "exercises[][config][modes][][config][gripPairsConfig][]=5"\
--form "exercises[][config][modes][][config][gripSequentialConfig][]=3"\
--form "exercises[][config][modes][][config][gripSwitchingMode][]=1"\
--form "exercises[][config][modes][][config][holdOpen][]=1500"\
--form "exercises[][config][modes][][config][pulseTimings][]=10"\
--form "exercises[][config][modes][][config][softGrip][]=1"\
--form "exercises[][config][modes][][config][speedControlStrategy][]=0"\
--form "exercises[][firmware_id]=137"\
--form "exercises[][app_version]=6.36.89"\
--form "exercises[][attempts][][date_start]=1995-05-17 17:47:49"\
--form "exercises[][attempts][][date_end]=2017-08-19 16:00:03"\
--form "exercises[][attempts][][result]=success"\
--form "exercises[][emg_file]=@/tmp/php1MZ9TY" const url = new URL(
"http://localhost:8000/api/trainings/1/day/2/task/3/attempts"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('exercises[][date_start]', '1973-01-12 12:59:57');
body.append('exercises[][date_end]', '2001-12-14 03:44:57');
body.append('exercises[][end_reason]', 'ticketCreated');
body.append('exercises[][config][common][fingerStrength][]', '1');
body.append('exercises[][config][common][gripPositions][_]', '0');
body.append('exercises[][config][common][gripPositions][0][initial][]', '8');
body.append('exercises[][config][common][gripPositions][0][limit][]', '77');
body.append('exercises[][config][common][gripPositions][1][initial][]', '49');
body.append('exercises[][config][common][gripPositions][1][limit][]', '70');
body.append('exercises[][config][common][gripPositions][2][initial][]', '18');
body.append('exercises[][config][common][gripPositions][2][limit][]', '63');
body.append('exercises[][config][common][gripPositions][3][initial][]', '60');
body.append('exercises[][config][common][gripPositions][3][limit][]', '86');
body.append('exercises[][config][common][gripPositions][4][initial][]', '23');
body.append('exercises[][config][common][gripPositions][4][limit][]', '34');
body.append('exercises[][config][common][gripPositions][5][initial][]', '59');
body.append('exercises[][config][common][gripPositions][5][limit][]', '86');
body.append('exercises[][config][common][gripPositions][6][initial][]', '35');
body.append('exercises[][config][common][gripPositions][6][limit][]', '57');
body.append('exercises[][config][common][gripPositions][7][initial][]', '60');
body.append('exercises[][config][common][gripPositions][7][limit][]', '94');
body.append('exercises[][config][common][gripPositions][8][initial][]', '45');
body.append('exercises[][config][common][gripPositions][8][limit][]', '59');
body.append('exercises[][config][common][gripPositions][9][initial][]', '31');
body.append('exercises[][config][common][gripPositions][9][limit][]', '63');
body.append('exercises[][config][common][gripPositions][10][initial][]', '77');
body.append('exercises[][config][common][gripPositions][10][limit][]', '89');
body.append('exercises[][config][common][gripPositions][11][initial][]', '69');
body.append('exercises[][config][common][gripPositions][11][limit][]', '92');
body.append('exercises[][config][common][gripPositions][12][initial][]', '6');
body.append('exercises[][config][common][gripPositions][12][limit][]', '8');
body.append('exercises[][config][common][gripPositions][13][initial][]', '37');
body.append('exercises[][config][common][gripPositions][13][limit][]', '69');
body.append('exercises[][config][common][inputSite][]', '0');
body.append('exercises[][config][modes][][id]', '83');
body.append('exercises[][config][modes][][name]', 'Error iure nihil aut dicta et numquam.');
body.append('exercises[][config][modes][][slot]', '0');
body.append('exercises[][config][modes][][config][autoGrasp][]', '1');
body.append('exercises[][config][modes][][config][coContractionTimings][]', '200');
body.append('exercises[][config][modes][][config][controlMode][]', '0');
body.append('exercises[][config][modes][][config][emgGains][]', '100');
body.append('exercises[][config][modes][][config][emgSpike][]', '1');
body.append('exercises[][config][modes][][config][emgThresholds][]', '10');
body.append('exercises[][config][modes][][config][gripPairsConfig][]', '5');
body.append('exercises[][config][modes][][config][gripSequentialConfig][]', '3');
body.append('exercises[][config][modes][][config][gripSwitchingMode][]', '1');
body.append('exercises[][config][modes][][config][holdOpen][]', '1500');
body.append('exercises[][config][modes][][config][pulseTimings][]', '10');
body.append('exercises[][config][modes][][config][softGrip][]', '1');
body.append('exercises[][config][modes][][config][speedControlStrategy][]', '0');
body.append('exercises[][firmware_id]', '137');
body.append('exercises[][app_version]', '6.36.89');
body.append('exercises[][attempts][][date_start]', '1995-05-17 17:47:49');
body.append('exercises[][attempts][][date_end]', '2017-08-19 16:00:03');
body.append('exercises[][attempts][][result]', 'success');
body.append('exercises[][emg_file]', document.querySelector('input[name="exercises[][emg_file]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 323,
"training_task_id": 1,
"date_start": "2006-10-05 03:37:20",
"date_end": "1998-04-07 18:09:52",
"end_reason": "ticketCreated",
"config": "{\"common\":{\"fingerStrength\":[1,200],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[18,66,22,30,2],\"limit\":[51,69,88,61,64]},\"1\":{\"initial\":[73,3,75,19,19],\"limit\":[82,58,82,68,76]},\"2\":{\"initial\":[19,8,66,28,14],\"limit\":[50,35,91,82,64]},\"3\":{\"initial\":[1,28,56,60,7],\"limit\":[65,85,83,77,73]},\"4\":{\"initial\":[18,23,43,41,17],\"limit\":[42,29,86,60,71]},\"5\":{\"initial\":[81,5,74,25,10],\"limit\":[89,93,83,39,43]},\"6\":{\"initial\":[70,8,5,14,25],\"limit\":[95,18,42,38,55]},\"7\":{\"initial\":[1,45,43,22,32],\"limit\":[94,51,54,80,93]},\"8\":{\"initial\":[13,54,22,29,4],\"limit\":[47,81,40,31,26]},\"9\":{\"initial\":[35,22,63,14,74],\"limit\":[75,57,83,43,85]},\"10\":{\"initial\":[60,42,2,33,10],\"limit\":[76,84,71,76,21]},\"11\":{\"initial\":[19,35,43,64,46],\"limit\":[43,56,52,75,95]},\"12\":{\"initial\":[74,39,32,80,48],\"limit\":[91,82,43,88,82]},\"13\":{\"initial\":[3,36,47,5,7],\"limit\":[37,59,57,61,88]}},\"inputSite\":[1]},\"modes\":[{\"id\":86,\"name\":\"Fuga voluptatem est dolores quaerat possimus.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[500,300],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[30,100,20,100,20,50,10,80,20,20],\"gripPairsConfig\":[3,4,13,6,2,7,8,11],\"gripSequentialConfig\":[5,255,255,4,255,13,255,7,255,3,10,6],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2500],\"pulseTimings\":[530,510,440,20],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":87,\"name\":\"Qui architecto voluptas possimus officia.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[400,300],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[30,0,20,40,40,20,30,70,40,40],\"gripPairsConfig\":[3,4,13,12,7,1,9,8],\"gripSequentialConfig\":[1,11,2,7,255,3,255,4,5,12,255,255],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2000],\"pulseTimings\":[360,850,520,440],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":88,\"name\":\"Quo et ut quas iusto.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[300,200],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[70,60,60,80,50,20,70,20,60,40],\"gripPairsConfig\":[8,5,1,7,2,10,12,3],\"gripSequentialConfig\":[10,255,5,8,1,12,6,255,4,255,3,255],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2000],\"pulseTimings\":[70,70,700,850],\"softGrip\":[0],\"speedControlStrategy\":[1]}}]}",
"firmware_id": 24,
"app_version": "8.30.5",
"emg_file": "/tmp/fakerAkagnn",
"created_at": "2026-07-08T15:48:50.000000Z",
"updated_at": "2026-07-08T15:48:50.000000Z",
"attempts": [
{
"id": 1,
"training_log_id": 1,
"date_start": "1970-01-01 02:33:21",
"date_end": "1975-01-11 13:08:31",
"result": "failure",
"created_at": "2026-07-08T15:48:50.000000Z",
"updated_at": "2026-07-08T15:48:50.000000Z"
}
]
},
{
"id": 3,
"user_id": 325,
"training_task_id": 3,
"date_start": "2002-01-17 00:34:41",
"date_end": "2003-08-31 12:50:54",
"end_reason": "ticketCreated",
"config": "{\"common\":{\"fingerStrength\":[1,100],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[20,69,45,23,49],\"limit\":[32,85,59,27,74]},\"1\":{\"initial\":[34,71,37,21,35],\"limit\":[77,95,64,38,93]},\"2\":{\"initial\":[45,4,49,20,23],\"limit\":[83,80,49,92,73]},\"3\":{\"initial\":[63,40,10,37,44],\"limit\":[73,84,27,46,46]},\"4\":{\"initial\":[4,30,61,55,24],\"limit\":[47,31,64,85,70]},\"5\":{\"initial\":[3,3,35,73,6],\"limit\":[61,19,54,88,44]},\"6\":{\"initial\":[37,2,24,39,47],\"limit\":[65,47,82,66,68]},\"7\":{\"initial\":[31,38,13,34,2],\"limit\":[70,93,70,87,69]},\"8\":{\"initial\":[50,2,15,3,34],\"limit\":[63,86,54,63,88]},\"9\":{\"initial\":[45,67,8,17,81],\"limit\":[93,84,72,67,93]},\"10\":{\"initial\":[52,11,14,15,57],\"limit\":[78,32,82,41,60]},\"11\":{\"initial\":[54,34,8,6,53],\"limit\":[54,48,69,75,66]},\"12\":{\"initial\":[76,49,22,35,70],\"limit\":[77,88,79,77,78]},\"13\":{\"initial\":[33,67,58,55,2],\"limit\":[48,91,66,78,42]}},\"inputSite\":[1]},\"modes\":[{\"id\":92,\"name\":\"Fuga tempora laboriosam suscipit libero alias in.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[500,400],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[0,90,60,20,20,60,60,10,80,80],\"gripPairsConfig\":[11,13,8,12,2,3,5,6],\"gripSequentialConfig\":[255,3,2,255,1,255,13,9,255,8,7,11],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2000],\"pulseTimings\":[270,960,600,600],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":93,\"name\":\"Est totam voluptas voluptatem sit unde eos eum.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[200,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[90,70,60,50,60,60,80,80,80,100],\"gripPairsConfig\":[9,1,5,12,13,6,8,7],\"gripSequentialConfig\":[255,2,9,13,10,255,8,255,255,3,5,4],\"gripSwitchingMode\":[3],\"holdOpen\":[2500,2500],\"pulseTimings\":[840,130,200,130],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":94,\"name\":\"Repellendus et exercitationem deleniti sunt.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[200,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[90,60,80,20,0,70,90,40,30,100],\"gripPairsConfig\":[8,5,10,7,3,6,13,1],\"gripSequentialConfig\":[1,5,255,7,12,11,6,10,255,255,2,8],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2500],\"pulseTimings\":[710,120,410,400],\"softGrip\":[1],\"speedControlStrategy\":[1]}}]}",
"firmware_id": 26,
"app_version": "6.5.86",
"emg_file": "/tmp/fakeroz4RDz",
"created_at": "2026-07-08T15:48:51.000000Z",
"updated_at": "2026-07-08T15:48:51.000000Z",
"attempts": [
{
"id": 2,
"training_log_id": 3,
"date_start": "2022-05-28 08:37:50",
"date_end": "2009-09-01 06:31:34",
"result": "failure",
"created_at": "2026-07-08T15:48:51.000000Z",
"updated_at": "2026-07-08T15:48:51.000000Z"
}
]
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:SAVE_ATTEMPTS:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:SAVE_ATTEMPTS:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:SAVE_ATTEMPTS:TRAINING_NOT_FOUND"
}
Example response (404, Training day not found):
{
"message": "Training day not found",
"code": "TRAININGS:SAVE_ATTEMPTS:TRAINING_DAY_NOT_FOUND"
}
Example response (404, Training task not found):
{
"message": "Training task not found",
"code": "TRAININGS:SAVE_ATTEMPTS:TRAINING_TASK_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Training log entry ID.
user_id
integer
Associated user ID.
training_task_id
integer
Associated training task ID.
date_start
string
Session start datetime.
date_end
string
Session end datetime.
end_reason
string
Reason the session ended.
config
string
Device config snapshot at time of session.
firmware_id
integer
Firmware version ID used during session.
app_version
string
App version used during session.
emg_file
string
EMG data file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
attempts
object[]
Training log attempts.
Get reward status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/1/reward" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/reward"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, Reward status):
{
"status": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:REWARD_STATUS:INSUFFICIENT_PERMISSION"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:REWARD_STATUS:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Save reward details
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/reward" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"digital\",
\"country\": \"MT\",
\"delivery\": \"ua_nova_poshta_parcel_locker\",
\"email\": \"purdy.carrie@leannon.com\",
\"phone\": \"845.409.9822\",
\"full_name\": \"Gloria Hudson\",
\"address1\": \"211 Fisher Ways Apt. 203\",
\"address2\": \"Suite 812\",
\"city\": \"Lake Aliyah\",
\"postal_code\": \"16105-8284\",
\"state\": \"REPUDIANDAE\",
\"parcel_locker_code\": \"XCXV3C6S\",
\"pin_code\": \"220621\"
}"
const url = new URL(
"http://localhost:8000/api/trainings/1/reward"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "digital",
"country": "MT",
"delivery": "ua_nova_poshta_parcel_locker",
"email": "purdy.carrie@leannon.com",
"phone": "845.409.9822",
"full_name": "Gloria Hudson",
"address1": "211 Fisher Ways Apt. 203",
"address2": "Suite 812",
"city": "Lake Aliyah",
"postal_code": "16105-8284",
"state": "REPUDIANDAE",
"parcel_locker_code": "XCXV3C6S",
"pin_code": "220621"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 1,
"user_id": 327,
"training_id": 21,
"type": "digital",
"country": "IT",
"delivery": "home_delivery",
"email": "wschulist@kessler.info",
"phone": "+1-864-717-5115",
"full_name": "Hilda Powlowski MD",
"address1": "8571 Fay Crossroad Suite 457",
"address2": "5309 Bernhard Hills Apt. 165\nEast Rhiannonberg, AL 10485",
"city": "South Eve",
"postal_code": "86518-1149",
"state": "REPELLENDUS",
"parcel_locker_code": "2HC7A86Z",
"pin_code": "639792",
"created_at": "2026-07-08T15:48:52.000000Z",
"updated_at": "2026-07-08T15:48:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:REWARD_SAVE:INSUFFICIENT_PERMISSION"
}
Example response (403, Reward details already exists):
{
"message": "Reward details already exists",
"code": "TRAININGS:REWARD_SAVE:ALREADY_EXISTS"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:REWARD_SAVE:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User reward ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
type
string
Reward type.
Must be one of:digitalphysical
country
string
Delivery country code.
delivery
string
Delivery method.
Must be one of:home_deliveryparcel_locker
email
string
Recipient email.
phone
string
Recipient phone.
full_name
string
Recipient full name.
address1
string
Delivery address line 1.
address2
string
Delivery address line 2.
city
string
Delivery city.
postal_code
string
Delivery postal code.
state
string
Delivery state.
parcel_locker_code
string
Parcel locker code.
pin_code
string
PIN code for delivery.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get user progress (clinician view)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/progress/nobis/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/progress/nobis/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"number": 1,
"key": "openClose",
"status": "completed",
"status_updated_at": "2026-02-04 11:00:00"
},
{
"number": 2,
"key": "holdOpen",
"status": "in_progress",
"status_updated_at": "2026-02-05 09:00:00"
},
{
"number": 3,
"key": "changeSignal",
"status": "not_started",
"status_updated_at": null
},
{
"number": 4,
"key": "thumbPositioning",
"status": "not_started",
"status_updated_at": null
},
{
"number": 5,
"key": "sequentialAndPairingMode",
"status": "not_started",
"status_updated_at": null
},
{
"number": 6,
"key": "fingerSpeedTraining",
"status": "not_started",
"status_updated_at": null
},
{
"number": 7,
"key": "freezeMode",
"status": "not_started",
"status_updated_at": null
},
{
"number": 8,
"key": "coreSkillsTest",
"status": "not_started",
"status_updated_at": null
},
{
"number": 9,
"key": "powerSoftGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 10,
"key": "precisionGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 11,
"key": "tripodGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 12,
"key": "keyGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 13,
"key": "gripSelection",
"status": "not_started",
"status_updated_at": null
},
{
"number": 14,
"key": "finalGripAndControlTest",
"status": "not_started",
"status_updated_at": null
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access patient training",
"code": "TRAININGS:PROGRESS_CLINICIAN:INSUFFICIENT_PERMISSION"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:PROGRESS_CLINICIAN:TRAINING_NOT_FOUND"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "TRAININGS:PROGRESS_CLINICIAN:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
User preferences
API endpoints for user preferences
List user preferences
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/preferences" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/preferences"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"preference1": "value1",
"preference2": null,
"preference3": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user preferences",
"code": "USERS_PREFERENCES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get user preference
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/preferences/sidebar_enabled" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/preferences/sidebar_enabled"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 1,
"user_id": 328,
"name": "MintCream",
"value": "1",
"created_at": "2026-07-08T15:48:52.000000Z",
"updated_at": "2026-07-08T15:48:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user preferences",
"code": "USERS_PREFERENCES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, User preference not found):
{
"message": "User preference not found",
"code": "USERS_PREFERENCES:GET:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Set user preference
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/preferences" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"sidebar_enabled\",
\"value\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/preferences"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "sidebar_enabled",
"value": "1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 2,
"user_id": 329,
"name": "Coral",
"value": "0",
"created_at": "2026-07-08T15:48:53.000000Z",
"updated_at": "2026-07-08T15:48:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user preferences",
"code": "USERS_PREFERENCES:SET:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Users
API endpoints for user management
Get users list
requires authentication
Possible extend options:
- clinicians - users assigned to this user as clinicians (for Amputee role)
- patients - users assigned to this user as patients (for ClinicAdmin/Clinician/ClinicianSupport role)
- devices - products assigned to user (for Amputee role)
- devicesAsClinician - products assigned to user as clinician (for ClinicAdmin/Clinician/ClinicianSupport role)
- roles - user roles
- permissions - user permissions (for ClinicianSupport role)
Example request:
curl --request GET \
--get "http://localhost:8000/api/users?search=Tom&active=-1&clinician[]=17&roles=Clinician%2CAmputee&has_devices=1&user_toggles=goals%2Ctrainings" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/users"
);
const params = {
"search": "Tom",
"active": "-1",
"clinician[0]": "17",
"roles": "Clinician,Amputee",
"has_devices": "1",
"user_toggles": "goals,trainings",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 7,
"mrn": "9H94JU6R1783525577",
"name": "Lorna Gerlach DDS",
"email": "1783525577jakubowski.wilford@example.org",
"language": "en",
"phone": "+1-941-357-3042",
"phone_country": "AF",
"phone_verified_at": null,
"address1": "613 Bessie Pike Apt. 865",
"address2": "South Kendrick, NM 02747-2178",
"postal_code": "87231-5147",
"city": "Schuster, Mohr and Harvey",
"country": "IE",
"clinic_name": "Boscobury",
"clinic_location": "49003 Nader Park Suite 896\nMarleeburgh, FL 80558-8656",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:17.000000Z",
"updated_at": "2026-07-08T15:46:17.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"clinicians": [
{
"id": 8,
"mrn": "UFCX9ZHY1783525577",
"name": "Mr. Dion Hamill II",
"email": "1783525577cameron.jerde@example.com",
"language": "en",
"phone": "283.592.9791",
"phone_country": "LC",
"phone_verified_at": null,
"address1": "86170 Schuppe Fall",
"address2": "East Elverahaven, MS 01477",
"postal_code": "97852",
"city": "Towne-Hirthe",
"country": "LV",
"clinic_name": "Lake Keanu",
"clinic_location": "1475 Chris Prairie Apt. 583\nNew Merlinland, CA 86139",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:17.000000Z",
"updated_at": "2026-07-08T15:46:17.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"pivot": {
"user_id": 7,
"assigned_user_id": 8
},
"roles": []
}
],
"devices": [
{
"id": 1,
"serial": "970648d8-0b71-3516-af83-aae5f2294c0c",
"bluetooth_id": "799aa740-189a-306c-9f73-42c68de74f92",
"company_id": null,
"model_id": null,
"amputee_id": 7,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:18.000000Z",
"updated_at": "2026-07-08T15:46:18.000000Z"
}
],
"roles": [
{
"id": 7,
"name": "AcadleUser"
}
]
},
{
"id": 9,
"mrn": "2FVTQXXQ1783525578",
"name": "Elwyn Schaefer",
"email": "1783525578santiago.kunze@example.org",
"language": "en",
"phone": "1-347-596-4290",
"phone_country": "DZ",
"phone_verified_at": null,
"address1": "999 Beer Run Suite 033",
"address2": "West Yvettemouth, OH 40105",
"postal_code": "64334-0516",
"city": "O'Kon-Hayes",
"country": "NO",
"clinic_name": "North Aliya",
"clinic_location": "114 Robel Mountains\nBaileemouth, CA 82996-6169",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:18.000000Z",
"updated_at": "2026-07-08T15:46:18.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"clinicians": [
{
"id": 10,
"mrn": "UCY7YGD51783525578",
"name": "Adela Roob",
"email": "1783525578rreichert@example.org",
"language": "en",
"phone": "+1.425.565.9679",
"phone_country": "IS",
"phone_verified_at": null,
"address1": "75422 Elliot Mills Apt. 790",
"address2": "Jeanieland, MI 36550-3160",
"postal_code": "53495",
"city": "Monahan-Doyle",
"country": "SI",
"clinic_name": "Emelieshire",
"clinic_location": "89213 Marlin Knoll\nNorth Wilfridfort, WY 61309",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:18.000000Z",
"updated_at": "2026-07-08T15:46:18.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"pivot": {
"user_id": 9,
"assigned_user_id": 10
},
"roles": []
}
],
"devices": [
{
"id": 2,
"serial": "8b72362b-ce6e-3dc3-8a7f-f8809dd91d0c",
"bluetooth_id": "67b03509-dea0-313c-b421-3aa90678631b",
"company_id": null,
"model_id": null,
"amputee_id": 9,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:18.000000Z",
"updated_at": "2026-07-08T15:46:18.000000Z"
}
],
"roles": [
{
"id": 2,
"name": "CommunityAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user list",
"code": "USERS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get current user data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/me" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/me"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 11,
"mrn": "LEQACNGV1783525579",
"name": "Adell Ledner",
"email": "1783525579abbott.geovanny@example.org",
"language": "en",
"phone": "+1.786.628.4884",
"phone_country": "TT",
"phone_verified_at": null,
"address1": "72975 Mathilde Haven",
"address2": "South Chynaburgh, WI 47132-2762",
"postal_code": "73178-0591",
"city": "Quigley LLC",
"country": "BG",
"clinic_name": "East Colemanshire",
"clinic_location": "523 Bailey Shoal\nAlvinaville, AL 43341-1360",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:19.000000Z",
"updated_at": "2026-07-08T15:46:19.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "ClinicianSupport"
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Get other user data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 12,
"mrn": "5TKDKCCS1783525579",
"name": "Jude Gibson",
"email": "1783525579ystoltenberg@example.net",
"language": "en",
"phone": "(458) 577-1957",
"phone_country": "SV",
"phone_verified_at": null,
"address1": "55840 Dino Throughway Apt. 821",
"address2": "Nickolasville, MS 53063",
"postal_code": "24249",
"city": "Wintheiser LLC",
"country": "RO",
"clinic_name": "South Sylviamouth",
"clinic_location": "293 Chance Lakes\nHarberhaven, DC 94768",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:19.000000Z",
"updated_at": "2026-07-08T15:46:19.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "ClinicianSupport"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user data",
"code": "USERS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:GET:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Create new user account
requires authentication
Predefined permissions:
user.view- access to view users' data (GET /user/{id} endpoint)user.update- access to update users' data (PUT /user/{id} and POST /user/{id}/phone endpoints)user.passwordChange- access to change users' passwords (POST /user/{id}/password endpoint)user.devices- access to list of users' devices (GET /user/{id}/devices endpoint)user.tickets.view- access to listing and viewing ticketsuser.tickets.update- access to updating tickets (marking messages as read)user.tickets.send- access to sending messages in ticketsuser.tickets.close- access to closing ticketsuser.goals- access to view or manage users' goals
Example request:
curl --request POST \
"http://localhost:8000/api/user" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "mrn=MRN12345678"\
--form "name=Tom Smith"\
--form "email=test@example.com"\
--form "language=en"\
--form "address1=3192 William Crossroad"\
--form "address2=Lake Audreanne, AK 34808-7166"\
--form "postal_code=69120-1561"\
--form "city=Lake Marlen"\
--form "country=BG"\
--form "clinic_name=Aether"\
--form "clinic_location=3192 William Crossroad"\
--form "mfa_enabled=1"\
--form "mfa_method=email"\
--form "is_internal="\
--form "clinicians[]=2"\
--form "notifications_timezone=Europe/Warsaw"\
--form "notifications_at=8:00"\
--form "role=Amputee"\
--form "image=@/tmp/phpxGs4XA" const url = new URL(
"http://localhost:8000/api/user"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('mrn', 'MRN12345678');
body.append('name', 'Tom Smith');
body.append('email', 'test@example.com');
body.append('language', 'en');
body.append('address1', '3192 William Crossroad');
body.append('address2', 'Lake Audreanne, AK 34808-7166');
body.append('postal_code', '69120-1561');
body.append('city', 'Lake Marlen');
body.append('country', 'BG');
body.append('clinic_name', 'Aether');
body.append('clinic_location', '3192 William Crossroad');
body.append('mfa_enabled', '1');
body.append('mfa_method', 'email');
body.append('is_internal', '');
body.append('clinicians[]', '2');
body.append('notifications_timezone', 'Europe/Warsaw');
body.append('notifications_at', '8:00');
body.append('role', 'Amputee');
body.append('image', document.querySelector('input[name="image"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 13,
"mrn": "4DS76D3Y1783525580",
"name": "Devonte Bauch",
"email": "1783525580bogisich.alanis@example.net",
"language": "en",
"phone": "+1-320-474-9194",
"phone_country": "HT",
"phone_verified_at": null,
"address1": "2218 Davin Street",
"address2": "East Chloe, NC 83789-5591",
"postal_code": "71578",
"city": "Paucek-Muller",
"country": "BE",
"clinic_name": "Boscofort",
"clinic_location": "725 Kris Springs Apt. 695\nFayhaven, MT 34797",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:20.000000Z",
"updated_at": "2026-07-08T15:46:20.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "CommunityAdmin"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create user with given role",
"code": "USERS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "USERS:CREATE:EMAIL_IN_USE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Update user account
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "mrn=MRN12345678"\
--form "name=Tom Smith"\
--form "email=test@example.com"\
--form "language=en"\
--form "address1=16581 Joanny Orchard"\
--form "address2=West Eugenia, MT 16515"\
--form "postal_code=97027-2581"\
--form "city=Port Macyborough"\
--form "country=IT"\
--form "clinic_name=Aether"\
--form "clinic_location=16581 Joanny Orchard"\
--form "image_delete=1"\
--form "mfa_enabled=1"\
--form "mfa_method=email"\
--form "active=1"\
--form "is_internal="\
--form "clinicians[]=2"\
--form "notifications_timezone=Europe/Warsaw"\
--form "notifications_at=8:00"\
--form "role=Amputee"\
--form "image=@/tmp/phpIDepv2" const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('mrn', 'MRN12345678');
body.append('name', 'Tom Smith');
body.append('email', 'test@example.com');
body.append('language', 'en');
body.append('address1', '16581 Joanny Orchard');
body.append('address2', 'West Eugenia, MT 16515');
body.append('postal_code', '97027-2581');
body.append('city', 'Port Macyborough');
body.append('country', 'IT');
body.append('clinic_name', 'Aether');
body.append('clinic_location', '16581 Joanny Orchard');
body.append('image_delete', '1');
body.append('mfa_enabled', '1');
body.append('mfa_method', 'email');
body.append('active', '1');
body.append('is_internal', '');
body.append('clinicians[]', '2');
body.append('notifications_timezone', 'Europe/Warsaw');
body.append('notifications_at', '8:00');
body.append('role', 'Amputee');
body.append('image', document.querySelector('input[name="image"]').files[0]);
fetch(url, {
method: "PUT",
headers,
body,
}).then(response => response.json());Example response (202):
{
"id": 14,
"mrn": "KCP3227A1783525580",
"name": "Dr. Arvel Goodwin",
"email": "1783525580shields.rene@example.org",
"language": "en",
"phone": "540-293-7799",
"phone_country": "NF",
"phone_verified_at": null,
"address1": "592 Gislason Keys",
"address2": "Port Coleman, NM 71389-1950",
"postal_code": "00618-1432",
"city": "Wintheiser, Farrell and Champlin",
"country": "LV",
"clinic_name": "Lake Catharine",
"clinic_location": "280 Hill Creek Suite 011\nRunolfssonborough, NY 73329",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"is_internal": 0,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-07-08T15:46:20.000000Z",
"updated_at": "2026-07-08T15:46:20.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": [
{
"id": 6,
"name": "Amputee"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Insufficient permission to assign role):
{
"message": "Insufficient permission to assign this role as ClinicAdmin",
"code": "USERS:UPDATE:INSUFFICIENT_PERMISSION_ASSIGN_ROLE"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:UPDATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
is_internal
boolean
Whether the user is an internal user.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Update user phone number
requires authentication
Phone number has to be verified after update.
Call /api/mfa/phone/verify with user-filled code after performing this operation.
If value is "0" phone number will be removed without any verification.
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/phone" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"phone\": \"+1 (208) 892-0242\",
\"phone_country\": \"US\"
}"
const url = new URL(
"http://localhost:8000/api/user/1/phone"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone": "+1 (208) 892-0242",
"phone_country": "US"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, Phone number removed):
{
"message": "Phone number removed",
"code": "USERS:SET_PHONE:REMOVED"
}
Example response (200, Phone number updated):
{
"message": "Verification code sent. Call /api/mfa/phone/verify to verify phone number.",
"code": "USERS:SET_PHONE:UPDATED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:SET_PHONE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:SET_PHONE:USER_NOT_FOUND"
}
Example response (500, Code send failed):
{
"message": "Verification code sending failed",
"code": "USERS:SET_PHONE:SEND_FAILED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Delete user account
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User deleted",
"code": "USERS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete user",
"code": "USERS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has existing patients or chat rooms):
{
"message": "Cannot delete: user has existing patients or chat rooms (patients: 1, chat rooms: 0)",
"code": "USERS:DELETE:HAS_PATIENTS"
}
Example response (403, User has existing devices):
{
"message": "Cannot delete: user has existing devices (as patient: 1, as clinician: 0)",
"code": "USERS:DELETE:HAS_DEVICES"
}
Example response (403, User has open P2P sessions):
{
"message": "Cannot delete: user has open P2P sessions (as patient: 0, as clinician: 1)",
"code": "USERS:DELETE:HAS_P2P_SESSIONS"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DELETE:USER_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: user not deleted",
"code": "USERS:DELETE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Delete own user account
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"password\": \"password\"
}"
const url = new URL(
"http://localhost:8000/api/user"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"password": "password"
};
fetch(url, {
method: "DELETE",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "User deleted",
"code": "USERS:SELF_DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete user",
"code": "USERS:SELF_DELETE:INSUFFICIENT_PERMISSION"
}
Example response (422, Invalid password):
{
"message": "Invalid password",
"code": "USERS:SELF_DELETE:INVALID_PASSWORD"
}
Example response (500, Server error):
{
"message": "Server error: user not deleted",
"code": "USERS:SELF_DELETE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Change other user password
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/password" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"password\": \"dolorum\"
}"
const url = new URL(
"http://localhost:8000/api/user/1/password"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"password": "dolorum"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "User password changed",
"code": "USERS:PASSWORD_CHANGE:CHANGED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to change user password",
"code": "USERS:PASSWORD_CHANGE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:PASSWORD_CHANGE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get user devices list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/devices" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/devices"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"serial": "b70729c9-edf1-380a-992b-a07aafa07c61",
"bluetooth_id": "48657603-fd62-3b02-acfc-e021757740a6",
"company_id": null,
"model_id": 1,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:21.000000Z",
"updated_at": "2026-07-08T15:46:21.000000Z",
"model": {
"id": 1,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "left",
"active": 1,
"created_at": "2026-07-08T15:46:21.000000Z",
"updated_at": "2026-07-08T15:46:21.000000Z"
}
},
{
"id": 4,
"serial": "964696f7-d40e-39fc-96d9-72fc42eec417",
"bluetooth_id": "cd747f35-3e68-384f-aae7-e61d2735053c",
"company_id": null,
"model_id": 2,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"first_connected_at": null,
"created_at": "2026-07-08T15:46:21.000000Z",
"updated_at": "2026-07-08T15:46:21.000000Z",
"model": {
"id": 2,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "right",
"active": 1,
"created_at": "2026-07-08T15:46:21.000000Z",
"updated_at": "2026-07-08T15:46:21.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user devices",
"code": "USERS:DEVICES:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DEVICES:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Attach patient to clinician
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/attach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"name@domain.com\"
}"
const url = new URL(
"http://localhost:8000/api/user/attach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "name@domain.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Patient attached",
"code": "USERS:ATTACH:ATTACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to attach patients",
"code": "USERS:ATTACH:INSUFFICIENT_PERMISSION"
}
Example response (403, Patient is already assigned to another clinician):
{
"message": "Patient is already assigned to another clinician",
"code": "USERS:ATTACH:ALREADY_ASSIGNED"
}
Example response (403, User reached the temporary limit of attached devices):
{
"message": "Reached the limit of assigned devices",
"code": "USERS:ATTACH:LIMIT_REACHED"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:ATTACH:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Detach patient from clinician
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/detach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/detach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Patient detached",
"code": "USERS:DETACH:DETACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to detach patient",
"code": "USERS:DETACH:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot detach last clinician):
{
"message": "Cannot detach patient's last clinician",
"code": "USERS:DETACH:CANNOT_DETACH_LAST_CLINICIAN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DETACH:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Admin access to MFA codes
requires authentication
Requires admin.mfa_access permission.
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/mfa-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/mfa-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"id": 1,
"user_id": 1,
"code": "123456",
"channel": "email",
"expires": "2025-05-09 12:00:00"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access MFA codes",
"code": "USERS:ADMIN_MFA_ACCESS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:ADMIN_MFA_ACCESS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Export clinician devices
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/clinician-devices/csv" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/clinician-devices/csv"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, CSV file):
{
"file": "https://staging-us-east-2-aether-biomedical-s3-us-bucket.s3.us-east-2.amazonaws.com/clinicians/clinicians-devices-1759228216.csv",
"expires": "2026-07-02 10:40:00"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to export clinician devices",
"code": "USERS:EXPORT_CLINICIAN_DEVICES:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get user mobile consents
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/consents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/consents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 34,
"name": "ut",
"value": "magni",
"created_at": "1973-07-10T20:48:58.000000Z",
"updated_at": "1974-02-25T10:20:26.000000Z"
},
{
"id": 2,
"user_id": 35,
"name": "nisi",
"value": "neque",
"created_at": "1988-11-18T17:10:20.000000Z",
"updated_at": "1976-07-07T20:28:21.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use mobile consents",
"code": "USERS:GET_MOBILE_CONSENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Consent record ID.
user_id
integer
Associated user ID.
name
string
Consent name/key.
value
string
Consent value.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Set user mobile consent
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/consents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Push notifications\",
\"value\": 1
}"
const url = new URL(
"http://localhost:8000/api/consents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Push notifications",
"value": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"user_id": 36,
"name": "id",
"value": "mollitia",
"created_at": "2003-01-17T20:54:26.000000Z",
"updated_at": "2010-03-28T07:08:03.000000Z"
},
{
"id": 4,
"user_id": 37,
"name": "adipisci",
"value": "officiis",
"created_at": "1992-03-29T23:02:12.000000Z",
"updated_at": "2005-10-10T01:39:34.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use mobile consents",
"code": "USERS:SET_MOBILE_CONSENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Consent record ID.
user_id
integer
Associated user ID.
name
string
Consent name/key.
value
string
Consent value.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Clear user notifications
requires authentication
Clearing notifications allow to receive another notification on same day. This endpoint deletes notifications of type:
- daily activity reminders
- goals daily summary
This endpoint is intended for testing use only.
Example request:
curl --request DELETE \
"http://localhost:8000/api/notifications/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/notifications/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"messages": "1 notifications deleted",
"code": "USERS:CLEAR_NOTIFICATIONS:CLEARED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:CLEAR_NOTIFICATIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:CLEAR_NOTIFICATIONS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Versions
API endpoints for versions management
Get software versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/software" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/software"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "7.53.98",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
},
{
"id": 2,
"name": "6.75.18",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "SOFTWARE_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Software version ID.
name
string
Version name.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create software version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/software" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\"
}"
const url = new URL(
"http://localhost:8000/api/versions/software"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "3.66.35",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "SOFTWARE_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Software version ID.
name
string
Version name.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete software version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/software/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/software/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "SOFTWARE_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "SOFTWARE_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "SOFTWARE_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "SOFTWARE_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get firmware versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/firmware" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 2,
"name": "1.84.43",
"file_firmware": "/tmp/fakerKySG07",
"file_firmware_v2": "/tmp/fakerBrk0xR",
"file_firmware_v3": "/tmp/fakerobVDrc",
"file_firmware_v4": "/tmp/fakerSNY9fg",
"file_firmware_v5": "/tmp/faker7OFCS3",
"file_firmware_new_pcb": "/tmp/fakerkbpVAb",
"file_bootloader": "/tmp/fakerNFNVF7",
"file_bootloader_v2": "/tmp/fakerHeeCu1",
"file_bootloader_v3": "/tmp/fakerspp9lq",
"file_bootloader_v4": "/tmp/fakerl9pP43",
"changelog": "Saepe voluptates rerum recusandae et. Provident dolore dolorum exercitationem quos quod. Et maxime incidunt facilis dolores enim quia. Minus et expedita ea voluptas tempora eveniet fugiat.",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
},
{
"id": 3,
"name": "9.49.56",
"file_firmware": "/tmp/fakerzoxWK9",
"file_firmware_v2": "/tmp/fakerPf1vGI",
"file_firmware_v3": "/tmp/fakerJl4H9Z",
"file_firmware_v4": "/tmp/faker19shIV",
"file_firmware_v5": "/tmp/faker1Hykfd",
"file_firmware_new_pcb": "/tmp/faker4ZMyVh",
"file_bootloader": "/tmp/fakerm5SDKd",
"file_bootloader_v2": "/tmp/fakerTxEXGW",
"file_bootloader_v3": "/tmp/fakercjG7hi",
"file_bootloader_v4": "/tmp/fakerTPvqtt",
"changelog": "Animi aut voluptatem similique et sequi quas. Quod dolorem tempora et fugit dolorum labore. Sed et sed qui dolor placeat. Omnis fugit quia ut ipsam molestiae.",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "FIRMWARE_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create firmware version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/firmware" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=1.0"\
--form "models[]=1"\
--form "changelog[][language]=en"\
--form "changelog[][changelog]=Fixed bug with the connection"\
--form "file_firmware=@/tmp/phpxiPMZD" \
--form "file_firmware_v2=@/tmp/phpk5YQbv" \
--form "file_firmware_v3=@/tmp/phpOQkOPt" \
--form "file_firmware_v4=@/tmp/phpVayt9j" \
--form "file_firmware_v5=@/tmp/phpr9KjQX" \
--form "file_firmware_new_pcb=@/tmp/phpqIdVqC" \
--form "file_bootloader=@/tmp/phpK8KFj5" \
--form "file_bootloader_v2=@/tmp/phpH8JFKu" \
--form "file_bootloader_v3=@/tmp/php2TZagL" \
--form "file_bootloader_v4=@/tmp/phpLoo5zp" const url = new URL(
"http://localhost:8000/api/versions/firmware"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', '1.0');
body.append('models[]', '1');
body.append('changelog[][language]', 'en');
body.append('changelog[][changelog]', 'Fixed bug with the connection');
body.append('file_firmware', document.querySelector('input[name="file_firmware"]').files[0]);
body.append('file_firmware_v2', document.querySelector('input[name="file_firmware_v2"]').files[0]);
body.append('file_firmware_v3', document.querySelector('input[name="file_firmware_v3"]').files[0]);
body.append('file_firmware_v4', document.querySelector('input[name="file_firmware_v4"]').files[0]);
body.append('file_firmware_v5', document.querySelector('input[name="file_firmware_v5"]').files[0]);
body.append('file_firmware_new_pcb', document.querySelector('input[name="file_firmware_new_pcb"]').files[0]);
body.append('file_bootloader', document.querySelector('input[name="file_bootloader"]').files[0]);
body.append('file_bootloader_v2', document.querySelector('input[name="file_bootloader_v2"]').files[0]);
body.append('file_bootloader_v3', document.querySelector('input[name="file_bootloader_v3"]').files[0]);
body.append('file_bootloader_v4', document.querySelector('input[name="file_bootloader_v4"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "2.1.69",
"file_firmware": "/tmp/faker7fnQCe",
"file_firmware_v2": "/tmp/faker4bVo09",
"file_firmware_v3": "/tmp/faker5DVMyD",
"file_firmware_v4": "/tmp/fakerbabmQc",
"file_firmware_v5": "/tmp/fakerO6si3B",
"file_firmware_new_pcb": "/tmp/fakerIawXgx",
"file_bootloader": "/tmp/fakermviV13",
"file_bootloader_v2": "/tmp/fakerUYXEOn",
"file_bootloader_v3": "/tmp/faker13REQU",
"file_bootloader_v4": "/tmp/fakere53El8",
"changelog": "Qui quos voluptate quis eaque est perferendis. Possimus molestiae enim recusandae nostrum aut dolor beatae non. Rerum perspiciatis quia hic rerum ad.",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "FIRMWARE_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update firmware version
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/firmware/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=1.0"\
--form "models[]=1"\
--form "file_firmware_delete=1"\
--form "file_firmware_v2_delete=1"\
--form "file_firmware_v3_delete=1"\
--form "file_firmware_v4_delete=1"\
--form "file_firmware_v5_delete=1"\
--form "file_firmware_new_pcb_delete=1"\
--form "file_bootloader_delete=1"\
--form "file_bootloader_v2_delete=1"\
--form "file_bootloader_v3_delete=1"\
--form "file_bootloader_v4_delete=1"\
--form "changelog[][language]=en"\
--form "changelog[][changelog]=Fixed bug with the connection"\
--form "file_firmware=@/tmp/phpvoP2U2" \
--form "file_firmware_v2=@/tmp/php5S2ptu" \
--form "file_firmware_v3=@/tmp/phpbxxmBJ" \
--form "file_firmware_v4=@/tmp/phpChJzXG" \
--form "file_firmware_v5=@/tmp/phpvBoYI6" \
--form "file_firmware_new_pcb=@/tmp/phpwn3piv" \
--form "file_bootloader=@/tmp/phprSJoUk" \
--form "file_bootloader_v2=@/tmp/phpRKoLqq" \
--form "file_bootloader_v3=@/tmp/phpF6vagb" \
--form "file_bootloader_v4=@/tmp/phpYQuBBt" const url = new URL(
"http://localhost:8000/api/versions/firmware/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', '1.0');
body.append('models[]', '1');
body.append('file_firmware_delete', '1');
body.append('file_firmware_v2_delete', '1');
body.append('file_firmware_v3_delete', '1');
body.append('file_firmware_v4_delete', '1');
body.append('file_firmware_v5_delete', '1');
body.append('file_firmware_new_pcb_delete', '1');
body.append('file_bootloader_delete', '1');
body.append('file_bootloader_v2_delete', '1');
body.append('file_bootloader_v3_delete', '1');
body.append('file_bootloader_v4_delete', '1');
body.append('changelog[][language]', 'en');
body.append('changelog[][changelog]', 'Fixed bug with the connection');
body.append('file_firmware', document.querySelector('input[name="file_firmware"]').files[0]);
body.append('file_firmware_v2', document.querySelector('input[name="file_firmware_v2"]').files[0]);
body.append('file_firmware_v3', document.querySelector('input[name="file_firmware_v3"]').files[0]);
body.append('file_firmware_v4', document.querySelector('input[name="file_firmware_v4"]').files[0]);
body.append('file_firmware_v5', document.querySelector('input[name="file_firmware_v5"]').files[0]);
body.append('file_firmware_new_pcb', document.querySelector('input[name="file_firmware_new_pcb"]').files[0]);
body.append('file_bootloader', document.querySelector('input[name="file_bootloader"]').files[0]);
body.append('file_bootloader_v2', document.querySelector('input[name="file_bootloader_v2"]').files[0]);
body.append('file_bootloader_v3', document.querySelector('input[name="file_bootloader_v3"]').files[0]);
body.append('file_bootloader_v4', document.querySelector('input[name="file_bootloader_v4"]').files[0]);
fetch(url, {
method: "PUT",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "2.44.14",
"file_firmware": "/tmp/fakerozNEKA",
"file_firmware_v2": "/tmp/fakerMeTGiu",
"file_firmware_v3": "/tmp/fakere3eT1P",
"file_firmware_v4": "/tmp/fakerhVqihQ",
"file_firmware_v5": "/tmp/fakeras3Xx7",
"file_firmware_new_pcb": "/tmp/fakerUeVE97",
"file_bootloader": "/tmp/faker04IxMF",
"file_bootloader_v2": "/tmp/fakerx8luM7",
"file_bootloader_v3": "/tmp/fakerqqSLLR",
"file_bootloader_v4": "/tmp/fakerUphghZ",
"changelog": "Dolorum fugit molestiae aliquam illum veritatis qui debitis. Quasi consequatur dignissimos vero exercitationem pariatur pariatur. Facere perspiciatis aliquam sed ullam esse.",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions",
"code": "FIRMWARE_VERSION:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "FIRMWARE_VERSION:UPDATE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete firmware version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/firmware/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "FIRMWARE_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "FIRMWARE_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "FIRMWARE_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (403, Version in use (device)):
{
"message": "Cannot delete: version is assigned to devices (1)",
"code": "FIRMWARE_VERSION:DELETE:VERSION_IN_USE_DEVICE"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "FIRMWARE_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Get PCB versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/pcb" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/pcb"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 2,
"name": "4.5.3",
"hardware_id": "",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
},
{
"id": 3,
"name": "0.83.58",
"hardware_id": "",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "PCB_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create PCB version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/pcb" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\",
\"models\": [
1
],
\"hardware_id\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/versions/pcb"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0",
"models": [
1
],
"hardware_id": "1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "2.51.72",
"hardware_id": "",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "PCB_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update PCB version
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/pcb/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\",
\"models\": [
1
],
\"hardware_id\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/versions/pcb/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0",
"models": [
1
],
"hardware_id": "1"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "5.60.82",
"hardware_id": "",
"created_at": "2026-07-08T15:48:16.000000Z",
"updated_at": "2026-07-08T15:48:16.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions",
"code": "PCB_VERSION:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "PCB_VERSION:UPDATE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete PCB version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/pcb/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/pcb/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "PCB_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "PCB_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "PCB_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (403, Version in use (device)):
{
"message": "Cannot delete: version is assigned to devices (1)",
"code": "PCB_VERSION:DELETE:VERSION_IN_USE_DEVICE"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "PCB_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
List compatibilities
requires authentication
Most typical scenarios to use compatibility matrix:
- full matrix (no filters) - for admin panel displaying,
- filtered by all of the versions (software, firmware, PCB and device model) - for checking specific scenario compatibility and supported features.
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/compatibility?model=1&software=1.2&firmware=1.5&pcb=1.0&summary=" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/compatibility"
);
const params = {
"model": "1",
"software": "1.2",
"firmware": "1.5",
"pcb": "1.0",
"summary": "0",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_model_id": 10,
"software_version_id": 4,
"firmware_version_id": 14,
"pcb_version_id": 6,
"is_fully_compatible": 0,
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"features": [
{
"id": 1,
"compatibility_id": 1,
"feature_id": 5,
"is_compatible": 1,
"reason": "Provident soluta rerum rerum et consequatur. Et perspiciatis sint quisquam accusamus dignissimos. Reiciendis id eum quas quisquam. Qui est error rerum laboriosam eligendi accusantium.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"feature": {
"id": 5,
"name": "gray",
"slug": "nostrum-eaque-quod-amet-laudantium-hic-ipsa",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
},
{
"id": 2,
"compatibility_id": 1,
"feature_id": 7,
"is_compatible": 1,
"reason": "Aut in id unde. Occaecati at aspernatur et nihil corrupti atque deserunt. Accusamus earum quis quam quis. Nemo eum dolore eos est ipsam.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"feature": {
"id": 7,
"name": "blue",
"slug": "et-qui-et-iusto-architecto-enim-est",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
},
{
"id": 3,
"compatibility_id": 1,
"feature_id": 9,
"is_compatible": 1,
"reason": "Sunt aut facilis ut quasi et non omnis. Nihil quo ratione ab. Omnis dolorem asperiores tempora esse aliquam unde eum aut.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"feature": {
"id": 9,
"name": "teal",
"slug": "voluptas-et-deserunt-aspernatur-illum-quis-vel",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
}
]
},
{
"id": 5,
"device_model_id": 14,
"software_version_id": 8,
"firmware_version_id": 18,
"pcb_version_id": 10,
"is_fully_compatible": 1,
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"features": [
{
"id": 4,
"compatibility_id": 5,
"feature_id": 10,
"is_compatible": 0,
"reason": "Quia rerum dolore soluta ipsam ea cum. Blanditiis hic qui voluptatem ipsa quas non mollitia voluptate. Ea quo harum nobis maiores. Illo quas architecto vero a nihil in omnis est.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"feature": {
"id": 10,
"name": "purple",
"slug": "in-veritatis-quo-sunt-dolore-officiis-id-cum",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
},
{
"id": 5,
"compatibility_id": 5,
"feature_id": 12,
"is_compatible": 1,
"reason": "Fuga aut nulla blanditiis iure. Architecto eos neque est odit nemo. Provident magni dolorum distinctio voluptas rerum perspiciatis laboriosam rerum. In eos at sed voluptas quis velit.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"feature": {
"id": 12,
"name": "fuchsia",
"slug": "odit-vel-minima-veritatis-ratione-esse",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
},
{
"id": 6,
"compatibility_id": 5,
"feature_id": 14,
"is_compatible": 1,
"reason": "Ad et ut qui sed. Esse sunt expedita sit temporibus. Totam aliquam illum est ad blanditiis vero eaque necessitatibus. Iusto quasi ut nisi.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"feature": {
"id": 14,
"name": "white",
"slug": "tenetur-temporibus-laudantium-magni-consectetur-ex-recusandae",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions compatibilities",
"code": "COMPATIBILITY:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device model not found):
{
"message": "Device model not found",
"code": "COMPATIBILITY:LIST:DEVICE_MODEL_NOT_FOUND"
}
Example response (404, Software version not found):
{
"message": "Software version not found",
"code": "COMPATIBILITY:LIST:SOFTWARE_VERSION_NOT_FOUND"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "COMPATIBILITY:LIST:FIRMWARE_VERSION_NOT_FOUND"
}
Example response (404, PCB version not found):
{
"message": "PCB version not found",
"code": "COMPATIBILITY:LIST:PCB_VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
items
object
id
integer
Compatibility entry ID.
device_model_id
integer
Associated device model ID.
software_version_id
integer
Associated software version ID.
firmware_version_id
integer
Associated firmware version ID.
pcb_version_id
integer
Associated PCB version ID.
is_fully_compatible
boolean
Whether all versions are fully compatible.
note
string
Compatibility note.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
features
object[]
Associated compatibility features.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Add compatibility
requires authentication
Adds or updates compatibility matrix with assigned features. You can specify many versions for each list.
Example request:
curl --request POST \
"http://localhost:8000/api/versions/compatibility" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"device_models\": [
1
],
\"software_versions\": [
1
],
\"firmware_versions\": [
1
],
\"pcb_versions\": [
1
],
\"is_fully_compatible\": true,
\"features\": [
{
\"feature_id\": 1,
\"compatible\": true,
\"reason\": \"Firmware does not support...\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/versions/compatibility"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"device_models": [
1
],
"software_versions": [
1
],
"firmware_versions": [
1
],
"pcb_versions": [
1
],
"is_fully_compatible": true,
"features": [
{
"feature_id": 1,
"compatible": true,
"reason": "Firmware does not support..."
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"added": 1,
"updated": 0,
"not_changed": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add versions compatibility",
"code": "COMPATIBILITY:ADD:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Update compatibility
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/compatibility/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"device_model_id\": 6,
\"software_version_id\": 5,
\"firmware_version_id\": 14,
\"pcb_version_id\": 3,
\"is_fully_compatible\": true,
\"features\": [
{
\"id\": 1,
\"feature_id\": 1,
\"compatible\": true,
\"reason\": \"Firmware does not support...\",
\"delete\": true
}
]
}"
const url = new URL(
"http://localhost:8000/api/versions/compatibility/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"device_model_id": 6,
"software_version_id": 5,
"firmware_version_id": 14,
"pcb_version_id": 3,
"is_fully_compatible": true,
"features": [
{
"id": 1,
"feature_id": 1,
"compatible": true,
"reason": "Firmware does not support...",
"delete": true
}
]
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 9,
"device_model_id": 18,
"software_version_id": 12,
"firmware_version_id": 22,
"pcb_version_id": 14,
"is_fully_compatible": 0,
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"features": [
{
"id": 7,
"compatibility_id": 9,
"feature_id": 15,
"is_compatible": 1,
"reason": "Non quis aut qui officiis nostrum. Vitae impedit est aut. Unde maiores dolores voluptas repellat nihil. Dolor eius sunt aut qui similique.",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z",
"feature": {
"id": 15,
"name": "silver",
"slug": "ut-possimus-non-atque-non-et",
"created_at": "2026-07-08T15:48:17.000000Z",
"updated_at": "2026-07-08T15:48:17.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions compatibility",
"code": "COMPATIBILITY:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Versions Compatibility not found):
{
"message": "Versions compatibility not found",
"code": "COMPATIBILITY:UPDATE:COMPATIBILITY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Compatibility entry ID.
device_model_id
integer
Associated device model ID.
software_version_id
integer
Associated software version ID.
firmware_version_id
integer
Associated firmware version ID.
pcb_version_id
integer
Associated PCB version ID.
is_fully_compatible
boolean
Whether all versions are fully compatible.
note
string
Compatibility note.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
features
object[]
Associated compatibility features.
Delete compatibility
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/compatibility/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/compatibility/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Versions compatibility deleted",
"code": "COMPATIBILITY:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions compatibility",
"code": "COMPATIBILITY:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Versions compatibility not found):
{
"message": "Versions compatibility not found",
"code": "COMPATIBILITY:DELETE:COMPATIBILITY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Video sessions
API endpoints for managing video sessions
List video sessions
requires authentication
Returns list of open video sessions. For most cases there should be exactly one entry (open/active session) or exactly zero entries (empty array, no open sessions).
Example request:
curl --request GET \
--get "http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"moderator_id": 126,
"guest_id": 127,
"jwt_moderator": "5ad1ebea0aafeb88c3114324ceb91db18605e498e476a787b5c2d2aec09d31e0",
"jwt_guest": "23bc33010aed6038ae8649405ceccdcf6c410a477bbef4e8817c4c2fbbcb0410",
"room_name": "room_99355e0cacfd1e5de660ecf168152389",
"expires": 1783526536,
"status": "open",
"created_at": "2026-07-08T15:47:17.000000Z",
"updated_at": "2026-07-08T15:47:17.000000Z"
},
{
"id": 2,
"moderator_id": 130,
"guest_id": 131,
"jwt_moderator": "20fb490a6c59d67c07bb6a5f54e798cf42a8cd0fadc7301c2bfadf90092a2738",
"jwt_guest": "94b5f0fa59e958580234a46304f711dbf0276bcee26ce8ef14e9c750fcaa5a2b",
"room_name": "room_1f5f3eed6947cd5821f81ed0d5738dc9",
"expires": 1783526537,
"status": "open",
"created_at": "2026-07-08T15:47:18.000000Z",
"updated_at": "2026-07-08T15:47:18.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access video session",
"code": "VIDEO_SESSIONS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "VIDEO_SESSIONS:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Video session ID.
moderator_id
integer
Moderator user ID.
guest_id
integer
Guest user ID.
jwt_moderator
string
JWT token for the moderator.
jwt_guest
string
JWT token for the guest.
room_name
string
Video room name.
expires
integer
Session expiry as Unix timestamp.
status
string
Session status.
Must be one of:openexpiredclosed
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
moderator
object
Moderator user.
guest
object
Guest user.
Initialize video session
requires authentication
Creates JWT (JSON Web Token) and room name for Jitsi session. Logged-in user is a moderator of the session. JWT lifetime is 15 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 3,
"moderator_id": 134,
"guest_id": 135,
"jwt_moderator": "3256618f4558bee91e9b096351ef86e6e1eb84cb7be7eece6031d7174f321a93",
"jwt_guest": "22b2446f8826382798b72dfcbf28b4447822e9cd48f3ee33fd3eefa2484f73da",
"room_name": "room_71a6cac99eb448ce2e24613c24e511df",
"expires": 1783526539,
"status": "open",
"created_at": "2026-07-08T15:47:20.000000Z",
"updated_at": "2026-07-08T15:47:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to initialize video session",
"code": "VIDEO_SESSIONS:INIT:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "VIDEO_SESSIONS:INIT:USER_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error",
"code": "VIDEO_SESSIONS:INIT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Video session ID.
moderator_id
integer
Moderator user ID.
guest_id
integer
Guest user ID.
jwt_moderator
string
JWT token for the moderator.
jwt_guest
string
JWT token for the guest.
room_name
string
Video room name.
expires
integer
Session expiry as Unix timestamp.
status
string
Session status.
Must be one of:openexpiredclosed
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
moderator
object
Moderator user.
guest
object
Guest user.
Refresh video session
requires authentication
Refreshes video session JWT tokens to extend session lifetime.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/1/refresh" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1/refresh"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 4,
"moderator_id": 138,
"guest_id": 139,
"jwt_moderator": "8d3c82a8f2d9dad1f53241a6bce3b9cee44dfbb1b4e62e3b241a393c69cbd20b",
"jwt_guest": "8fe9c2c44847ab572a08f2c5d689077ca1e07377e82a4f82364e8ce39b162257",
"room_name": "room_2874e3de141d7b70961fb52ef1c46b56",
"expires": 1783526541,
"status": "open",
"created_at": "2026-07-08T15:47:22.000000Z",
"updated_at": "2026-07-08T15:47:22.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to refresh video session",
"code": "VIDEO_SESSIONS:REFRESH:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "Video session not found",
"code": "VIDEO_SESSIONS:REFRESH:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Response
Response Fields
id
integer
Video session ID.
moderator_id
integer
Moderator user ID.
guest_id
integer
Guest user ID.
jwt_moderator
string
JWT token for the moderator.
jwt_guest
string
JWT token for the guest.
room_name
string
Video room name.
expires
integer
Session expiry as Unix timestamp.
status
string
Session status.
Must be one of:openexpiredclosed
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
moderator
object
Moderator user.
guest
object
Guest user.
Close video session
requires authentication
Marks video session (database entry) as closed. Does not close session on Jitsi side.
Example request:
curl --request DELETE \
"http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Video session closed",
"code": "VIDEO_SESSIONS:CLOSE:CLOSED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to close video session",
"code": "VIDEO_SESSIONS:CLOSE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "Video session not found",
"code": "VIDEO_SESSIONS:CLOSE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.
Invite technical support
requires authentication
Sends notification to Slack channel. Link to meeting is valid for 10 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/invite-support/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"room\": \"room_1081c785cf1464e4d6ebc3976561d490\",
\"description\": \"Grip switching is not working, please join.\"
}"
const url = new URL(
"http://localhost:8000/api/sessions/video/invite-support/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"room": "room_1081c785cf1464e4d6ebc3976561d490",
"description": "Grip switching is not working, please join."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"response": "success",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:SUCCESS"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to invite tech support",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:DEVICE_NOT_FOUND"
}
Example response (500, Request failed):
{
"response": "invalid_payload",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:FAILED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.