Introduction
This documentation aims to provide all the information you need to work with our API.
Authenticating requests
To authenticate requests, include an Authorization header with the value "Bearer {ACCESS_TOKEN}".
All authenticated endpoints are marked with a requires authentication badge in the documentation below.
Token based authentication
You can retrieve your access token by calling api/login endpoint.
Access tokens are valid 7 days, then expire. You can obtain new access token with expiring access token by calling /api/token/refresh. You can only refresh still valid tokens, otherwise new request to api/login will be required.
Cookie based authentication
You can also authenticate using cookie-based sessions. Before calling any other endpoints you have to obtain XSRF cookie by hitting /sanctum/csrf-cookie endpoint.
In return you receive XSRF-TOKEN cookie, which content you have to attach to each request as X-XSRF-TOKEN header.
Then call /login endpoint. When your authenticated session is created, call any endpoint using X-XSRF-TOKEN header.
Multi-Factor Authorization (MFA)
User can protect its account setting up the MFA as email or one-time passwords (OTP).
If mfa_enabled is set to 1 and mfa_method is set to any of email or otp values,
user will have to use preferred method as second factor on login.
If mfa_method is email, API will automatically send MFA code to user's email inbox.
Most of API endpoints are secured with additional layer and cannot be properly called without this second-factor authorization done.
Instead of endpoint response API will reply with message "MFA is required for this request." and HTTP code 401 Unauthorized.
That means user did not successfully authorized itself with second-factor.
Multi-Factor Authorization (MFA) - Remember Session
The user has the option to remember their device, which means they won't have to enter the MFA code for 30 days.
If using a Token based authentication, you need to add a header named X-MFA-Session-Token with the value {mfa_token} obtained from the /verify endpoint.
Appendix A. Laravel validation rules
List of validation codes returned for Laravel's built-in validation rules:
Code
Description
MUST_BE_ACCEPTED
The field must be accepted. Value must be one of:
1, true, "yes" or "on".MUST_BE_ACCEPTED_IF:other:value
The field must be accepted if
other field equals to value. Accepted values are the same as in MUST_BE_ACCEPTED.MUST_BE_ACTIVE_URL
The field must be an active URL address with a valid A or AAAA record according to the
dns_get_record PHP function.MUST_BE_AFTER:date
The field must be a date that is after a specified
date.MUST_BE_AFTER_OR_EQUAL:date
The field must be a date that is after or equal to a specified
date.MUST_CONTAIN_ONLY_LETTERS
The field must contain only letters.
MUST_CONTAIN_ONLY_LETTERS_NUMBERS_DASHES_UNDERSCORES
The field must contain only letters, numbers, dashes and underscores.
MUST_CONTAIN_ONLY_LETTERS_NUMBERS
The field must contain only letters and numbers.
MUST_BE_ARRAY
The field must be an array.
MUST_BE_BEFORE:date
The field must be a date that is before a specified
date.MUST_BE_BEFORE_OR_EQUAL:date
The field must be a date that is before or equal to a specified
date.BETWEEN:NUMBERS:min:max
The field must be a number between
min and max.BETWEEN:FILE_KB:min:max
The field must be a file with a size between
min and max KB.BETWEEN:STRING_LENGTH:min:max
The field must be a string with a length between
min and max.BETWEEN:ARRAY_COUNT:min:max
The field must be an array with between
min and max elements.MUST_BE_BOOLEAN
The field must be a boolean. Accepted values include:
true, false, 1, 0, "1" and "0".MUST_BE_CONFIRMED
The field must have a matching confirmation field named
{field}_confirmation.MUST_BE_CURRENT_PASSWORD
The field must match the authenticated user's current password.
MUST_BE_DATE
The field must be a valid date according to the
strtotime PHP function.MUST_EQUAL_DATE:date
The field must be a date equal to the specified
date.MUST_BE_DATE_FORMAT:format
The field must match the given date format.
MUST_BE_DIFFERENT:other
The field must have a different value than the field named
other.MUST_HAVE_DIGITS:digits
The field must be numeric and contain exactly
digits digits.MUST_HAVE_DIGITS_BETWEEN:min:max
The field must be numeric and contain between
min and max digits.INVALID_IMAGE_DIMENSIONS
The uploaded image has invalid dimensions.
MUST_BE_DISTINCT
The field's values must not contain any duplicates.
MUST_BE_EMAIL
The field must be a valid email address.
MUST_END_WITH:value
The field must end with
value.MUST_EXIST:table.column
The field's value must already exist in the specified database table and column.
MUST_BE_FILE
The field must be a file.
MUST_HAVE_A_VALUE
The field must have a non-empty value.
GREATER_THAN:NUMBER:value
The field must be numeric and greater than
value.GREATER_THAN:FILE_KB:value
The field must be a file with a size greater than
value KB.GREATER_THAN:STRING_LENGTH:value
The field must be a string with a length greater than
value.GREATER_THAN:ARRAY_COUNT:value
The field must be an array with have more than
value elements.GREATER_THAN_OR_EQUALS:NUMBER:value
The field must be numeric and greater than or equal to
value.GREATER_THAN_OR_EQUALS:FILE_KB:value
The field must be a file with a size greater than or equal to
value KB.GREATER_THAN_OR_EQUALS:STRING_LENGTH:value
The field must be a string with a length greater than or equal to
value.GREATER_THAN_OR_EQUALS:ARRAY_COUNT:value
The field must be an array with at least
value elements.MUST_BE_IMAGE
The field must be an image.
MUST_BE_IN:values
The field value must be on of the
values list.MUST_BE_IN_ARRAY:other
The field's value must exist in the
other field values.MUST_BE_INTEGER
The field must be an integer.
MUST_BE_IP_ADDRESS
The field must be a valid IP address.
MUST_BE_IPV4_ADDRESS
The field must be a valid IPv4 address.
MUST_BE_IPV6_ADDRESS
The field must be a valid IPv6 address.
MUST_BE_JSON
The field must contain valid JSON.
LESS_THAN:NUMBER:value
The field must be numeric and less than
value.LESS_THAN:FILE_KB:value
The field must be a file with a size less than
value KB.LESS_THAN:STRING_LENGTH:value
The field must be a string with a length less than
value.LESS_THAN:ARRAY_COUNT:value
The field must be an array with fewer than
value elements.LESS_THAN_OR_EQUALS:NUMBER:value
The field must be numeric and less than or equal to
value.LESS_THAN_OR_EQUALS:FILE_KB:value
The field must be a file with a size less than or equal to
value KB.LESS_THAN_OR_EQUALS:STRING_LENGTH:value
The field must be a string with a length less than or equal to
value.LESS_THAN_OR_EQUALS:ARRAY_COUNT:value
The field must be an array with no more than
value elements.MAXIMUM:NUMBER:value
The field must be numeric and must not exceed the
value.MAXIMUM:FILE_KB:value
The field must be a file with a size no greater than
value KB.MAXIMUM:STRING_LENGTH:value
The field must be a string with a maximum length equal to
value.MAXIMUM:ARRAY_COUNT:value
The field must be an array with no more than
value elements.MUST_BE_MIME_OF:values
The field must be a file with one of the given file extensions, for example: pdf, png, mpeg.
Note that the rule uses file extensions, but Laravel internally verifies the actual MIME type using the file's contents.
Note that the rule uses file extensions, but Laravel internally verifies the actual MIME type using the file's contents.
MUST_BE_MIMETYPE_OF:values
The field must be a file matching one of the specified MIME types, such as: application/pdf, image/png, video/mpeg.
MINIMUM:NUMBER:min
The field must be numeric and at least
value.MINIMUM:FILE_KB:min
The field must be a file with a size of at least
value KB.MINIMUM:STRING_LENGTH:min
The field must be a string with a minimum length equal to
value.MINIMUM:ARRAY_COUNT:min
The field must be an array with at least
value elements.MUST_BE_MULTIPLE_OF:value
The field must be multiple of
value.MUST_NOT_BE_IN:values
The field's value must not be on of the
values list. This is the opposite of MUST_BE_IN rule.INVALID_FORMAT
The field does not match the given regular expression.
MUST_BE_NUMERIC
The field must be numeric.
MUST_BE_PRESENT
The field must be present, but can be empty.
REQUIRED
The field must be present and not empty.
Field is considered empty if its value is null, an empty string, an empty array or a file input with no file uploaded.
Field is considered empty if its value is null, an empty string, an empty array or a file input with no file uploaded.
REQUIRED_IF:other:value
The field must be present and not empty if
other field is equal to value.REQUIRED_UNLESS:other:values
The field must be present and not empty unless
other field is equal to value.REQUIRED_WITH:values
The field must be present and not empty if any of the fields in
values are present and not empty.REQUIRED_WITH_ALL:values
The field must be present and not empty if all of the fields in
values are present and not empty.REQUIRED_WITHOUT:values
The field must be present and not empty if any of the fields in
values are not present or empty.REQUIRED_WITHOUT_ALL:values
The field must be present and not empty if all of the fields in
values are not present or empty.PROHIBITED
The field must be empty or not present in the request.
PROHIBITED_IF:other:value
The field must be empty or not present if
other field is equal to value.PROHIBITED_UNLESS:other:value
The field must be empty or not present unless
other field is equal to value.PROHIBITS:other
If the field is present, the
other field can't be present at the same time.MUST_BE_SAME:other
The field must have the same value as the
other field.SIZE:NUMBER:size
The field must be numeric and equal to
size.SIZE:FILE_KB:size
The field must be a file with a size of
size KB.SIZE:STRING_LENGTH:size
The field must be a string with a length equal to
size.SIZE:ARRAY_COUNT:size
The field must be an array with exactly
size elements.MUST_START_WITH:value
The field must start with
value.MUST_BE_STRING
The field must be a string.
MUST_BE_TIMEZONE
The field must be a valid timezone according to the
timezone_identifiers_list PHP function.MUST_BE_UNIQUE:table.column
The field's value must not already exist in the specified database table and column.
FAILED_TO_UPLOAD
File upload failed.
MUST_BE_URL
The field must be a valid URL address.
MUST_BE_UUID
The field must be a valid UUID.
More detailed information about validation rules can be found in Laravel documentation.
Appendix B. Custom validation rules
List of custom validation rules messages:
Code
Description
RULES:CONFIG_MODES_LIMIT_RULE:EXCEEDED:
maxChecks whether the device's config modes limit has been reached. Fails when the number of config modes assigned to the device already equals to
max.RULES:FILE_UPLOADS_MAX_TOTAL_SIZE_RULE:EXCEEDED:
max_sizeChecks whether the total size of all uploaded files in the request exceeds the specified limit. Fails if the total size is greater than
max_size KB.RULES:IS_TIMESTAMP_RULE:INVALID_VALUE
Checks whether the value is a valid timestamp. Fails if it's not.
RULES:IS_TIMEZONE_RULE:INVALID_VALUE
Checks whether the value is a valid timezone. Fails if it's not. List of valid timezones is available at the
/api/timezones endpoint.RULES:NOT_EXIST_IN_OTHER_REGIONS_RULE:DEVICE_IDENTIFIER_IN_USE
Checks whether the device identifier (serial or Bluetooth ID) is already in use in another region. Fails if it is.
RULES:NOT_EXIST_IN_OTHER_REGIONS_RULE:USER_EMAIL_IN_USE
Checks whether the user's email is already in use in another region. Fails if it is.
RULES:NOT_INFECTED_RULE:FILE_INFECTED_OR_UPLOAD_ISSUE
Checks whether the uploaded file is infected. Fails if the upload fails or AV software reports an issue.
RULES:PATIENT_DEVICE_RULE:NOT_ASSIGNED
Checks the patient-device assignment. Fails if the device is not assigned to the user.
RULES:P2P_SESSION_MEMBER_RULE:NOT_A_MEMBER
Checks whether the current user is the member of the P2P session they are trying to access. Fails if the user is not a session's patient or clinician.
RULES:URL_EXISTS_RULE:EXPECTED_CONTENT_TYPE:
RULES:URL_EXISTS_RULE:NOT_FOUND
content_typeRULES:URL_EXISTS_RULE:NOT_FOUND
Checks whether the specified URL exists and returns an HTTP 200 response.
If
Otherwise, it only checks the status code and returns
Fails if HTTP code is not 200 or the Content-Type doesn't match the expected value (if specified).
If
content_type was specified, the rule also verifies the returned Content-Type header. If it doesn't match, the error code will include EXPECTED_CONTENT_TYPE:content_type.Otherwise, it only checks the status code and returns
NOT_FOUND if it's not 200.Fails if HTTP code is not 200 or the Content-Type doesn't match the expected value (if specified).
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_LOWERCASE
Checks whether the password contains at least one lowercase letter.
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_UPPERCASE
Checks whether the password contains at least one uppercase letter.
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_NUMBER
Checks whether the password contains at least one number.
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_SYMBOL
Checks whether the password contains at least one symbol.
Acadle
Endpoints related to Acadle integration
Acadle SSO
requires authentication
Creates the SSO authorization link. The link expires after 60 seconds, but can be re-generated without any limits.
Example request:
curl --request POST \
"http://localhost:8000/api/acadle/sso" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/sso"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"sso_url": "https://adp.acadle.com/sso/authenticate/callback?ssoToken=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE3MzczNzU3OTksImV4cCI6MTczNzM3NTg1OSwiZmlyc3RuYW1lIjoiVG9tIiwibGFzdG5hbWUiOiJTbWl0aCIsImVtYWlsIjoidGVzdEBleGFtcGxlLmNvbSIsInVzZXJuYW1lIjpudWxsLCJ0aW1lem9uZSI6IlVUQyJ9.VzE2q6V53bdYJM7aB6CWWxDqcxF4gpdiEF80dD9j-5k",
"sso_expires": 1737375859
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SSO:INSUFFICIENT_PERMISSION"
}
Example response (403, Survey required):
{
"message": "Completing the survey is required to proceed to Acadle",
"code": "ACADLE:SSO:SURVEY_REQUIRED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Check Acadle survey status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"survey_sent": false,
"survey_id": null
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get Acadle survey data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 296,
"cpo_number": "957",
"country": "British Indian Ocean Territory (Chagos Archipelago)",
"medical_training": "physiotherapist",
"myo_exp_zeus": "1",
"has_demo_hand_access": 1,
"wants_demo_hand": 0,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 0,
"myo_exp_steeper": 1,
"myo_exp_taska": 1,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Doloremque ratione tenetur ipsa in vel aut totam.",
"partial_hand_protheses": "4",
"below_elbow_protheses_single_action": "5",
"below_elbow_protheses_multi_action": "0",
"above_elbow_protheses": "1",
"shoulder_protheses": "2",
"zeus_components_description": "Qui quia et soluta eos magni qui omnis.",
"contact_name": "Devon",
"contact_surname": "Lind",
"company_name": "Veum Inc",
"street": "71771 Tamia Summit Suite 834",
"city": "Wehnerton",
"postal_code": "87548",
"email": "nathaniel85@stroman.net",
"phone": "+19525622184",
"phone_country": "ci",
"device_side": "L",
"created_at": "2026-05-07T15:33:46.000000Z",
"updated_at": "2026-05-07T15:33:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_RESULTS:INSUFFICIENT_PERMISSION"
}
Example response (404, Survey not found):
{
"message": "Survey not found",
"code": "ACADLE:SURVEY_RESULTS:SURVEY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get Acadle survey data (SuperAdmin)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"id": 2,
"user_id": 297,
"cpo_number": "514291451",
"country": "Andorra",
"medical_training": "clinician",
"myo_exp_zeus": "1",
"has_demo_hand_access": 0,
"wants_demo_hand": 1,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 0,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 1,
"myo_exp_taska": 0,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Ut quos nobis cumque dolor deserunt modi.",
"partial_hand_protheses": "2",
"below_elbow_protheses_single_action": "5",
"below_elbow_protheses_multi_action": "3",
"above_elbow_protheses": "3",
"shoulder_protheses": "1",
"zeus_components_description": "Eveniet neque fuga voluptatem quisquam.",
"contact_name": "Edwardo",
"contact_surname": "Zieme",
"company_name": "Mayer-Roberts",
"street": "251 Sipes Flats Suite 423",
"city": "East Christinatown",
"postal_code": "25336-0050",
"email": "wkub@white.com",
"phone": "(985) 774-9696",
"phone_country": "ge",
"device_side": "R",
"created_at": "2026-05-07T15:33:47.000000Z",
"updated_at": "2026-05-07T15:33:47.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:USER_NOT_FOUND"
}
Example response (404, Survey not found):
{
"message": "Survey not found",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:SURVEY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
List all Acadle surveys (SuperAdmin)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/surveys?search=john" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/surveys"
);
const params = {
"search": "john",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"user_id": 298,
"cpo_number": "95954",
"country": "Luxembourg",
"medical_training": "physician",
"myo_exp_zeus": "0",
"has_demo_hand_access": 0,
"wants_demo_hand": 1,
"myo_exp_covvi": 1,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 0,
"myo_exp_steeper": 0,
"myo_exp_taska": 0,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 0,
"myo_exp_other": "Cumque vero tenetur quae.",
"partial_hand_protheses": "1",
"below_elbow_protheses_single_action": "3",
"below_elbow_protheses_multi_action": "1",
"above_elbow_protheses": "3",
"shoulder_protheses": "1",
"zeus_components_description": "Soluta labore voluptatem iusto numquam.",
"contact_name": "Aleen",
"contact_surname": "Schroeder",
"company_name": "Smith-Walker",
"street": "69680 Auer Squares",
"city": "Runolfsdottirfort",
"postal_code": "51229",
"email": "soledad.buckridge@erdman.com",
"phone": "+15414387855",
"phone_country": "pl",
"device_side": "L",
"created_at": "2026-05-07T15:33:48.000000Z",
"updated_at": "2026-05-07T15:33:48.000000Z"
},
{
"id": 4,
"user_id": 299,
"cpo_number": "853042",
"country": "United States of America",
"medical_training": "biomedical_engineer",
"myo_exp_zeus": "1",
"has_demo_hand_access": 1,
"wants_demo_hand": 1,
"myo_exp_covvi": 1,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 0,
"myo_exp_steeper": 1,
"myo_exp_taska": 1,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Animi pariatur voluptas quia veniam distinctio et consequatur.",
"partial_hand_protheses": "3",
"below_elbow_protheses_single_action": "1",
"below_elbow_protheses_multi_action": "0",
"above_elbow_protheses": "2",
"shoulder_protheses": "3",
"zeus_components_description": "Velit quibusdam et aut non incidunt veniam.",
"contact_name": "Marjory",
"contact_surname": "Schneider",
"company_name": "Jones and Sons",
"street": "5674 Lydia Island Suite 947",
"city": "Kochbury",
"postal_code": "23949-6689",
"email": "heaney.charlene@dubuque.info",
"phone": "541-854-5240",
"phone_country": "tm",
"device_side": "R",
"created_at": "2026-05-07T15:33:49.000000Z",
"updated_at": "2026-05-07T15:33:49.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEYS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Send Acadle survey
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/acadle/survey" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"cpo_number\": 2,
\"country\": \"Turkmenistan\",
\"medical_training\": \"clinician\",
\"myo_exp_zeus\": false,
\"myo_exp_covvi\": false,
\"myo_exp_fillauer\": false,
\"myo_exp_ossur\": false,
\"myo_exp_ottobock\": false,
\"myo_exp_steeper\": false,
\"myo_exp_taska\": false,
\"myo_exp_vincent\": false,
\"myo_exp_pattern_recognition\": false,
\"myo_exp_other\": \"Dolor et iusto eos fuga ut dolorem veritatis.\",
\"has_demo_hand_access\": false,
\"wants_demo_hand\": false,
\"partial_hand_protheses\": \"1-5\",
\"below_elbow_protheses_single_action\": \"1-5\",
\"below_elbow_protheses_multi_action\": \"5-10\",
\"above_elbow_protheses\": \"50+\",
\"shoulder_protheses\": \"1-5\",
\"zeus_components_description\": \"Et excepturi officia enim qui ipsam.\",
\"contact_name\": \"Ardith\",
\"company_name\": \"Ledner-Kiehn\",
\"street\": \"59560 Thiel Wells\",
\"city\": \"Parkerhaven\",
\"postal_code\": \"62486\",
\"email\": \"harmon.blick@kuvalis.biz\",
\"phone\": \"+1-240-966-2528\",
\"phone_country\": \"BN\",
\"device_side\": \"L\"
}"
const url = new URL(
"http://localhost:8000/api/acadle/survey"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"cpo_number": 2,
"country": "Turkmenistan",
"medical_training": "clinician",
"myo_exp_zeus": false,
"myo_exp_covvi": false,
"myo_exp_fillauer": false,
"myo_exp_ossur": false,
"myo_exp_ottobock": false,
"myo_exp_steeper": false,
"myo_exp_taska": false,
"myo_exp_vincent": false,
"myo_exp_pattern_recognition": false,
"myo_exp_other": "Dolor et iusto eos fuga ut dolorem veritatis.",
"has_demo_hand_access": false,
"wants_demo_hand": false,
"partial_hand_protheses": "1-5",
"below_elbow_protheses_single_action": "1-5",
"below_elbow_protheses_multi_action": "5-10",
"above_elbow_protheses": "50+",
"shoulder_protheses": "1-5",
"zeus_components_description": "Et excepturi officia enim qui ipsam.",
"contact_name": "Ardith",
"company_name": "Ledner-Kiehn",
"street": "59560 Thiel Wells",
"city": "Parkerhaven",
"postal_code": "62486",
"email": "harmon.blick@kuvalis.biz",
"phone": "+1-240-966-2528",
"phone_country": "BN",
"device_side": "L"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"user_id": 300,
"cpo_number": "9",
"country": "Hungary",
"medical_training": "physiotherapist",
"myo_exp_zeus": "1",
"has_demo_hand_access": 0,
"wants_demo_hand": 1,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 0,
"myo_exp_ossur": 1,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 0,
"myo_exp_taska": 1,
"myo_exp_vincent": 0,
"myo_exp_pattern_recognition": 0,
"myo_exp_other": "Doloribus incidunt dolores et sint dolorem temporibus.",
"partial_hand_protheses": "5",
"below_elbow_protheses_single_action": "1",
"below_elbow_protheses_multi_action": "2",
"above_elbow_protheses": "5",
"shoulder_protheses": "3",
"zeus_components_description": "Ducimus consequatur vero itaque veritatis in eaque omnis.",
"contact_name": "Brionna",
"contact_surname": "Zieme",
"company_name": "Halvorson LLC",
"street": "113 Leopold Track Suite 523",
"city": "Port Lenny",
"postal_code": "14587",
"email": "ewald46@jacobson.biz",
"phone": "+14455452922",
"phone_country": "by",
"device_side": "R",
"created_at": "2026-05-07T15:33:50.000000Z",
"updated_at": "2026-05-07T15:33:50.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_SEND:INSUFFICIENT_PERMISSION"
}
Example response (403, Survey already sent):
{
"message": "Survey already sent",
"code": "ACADLE:SURVEY_SEND:SURVEY_ALREADY_SENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Activation codes
API endpoints for activation codes
Get activation codes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"code": "7XL732",
"created_by": 37,
"used_by": 38,
"used_at": null,
"active": 0,
"created_at": "2026-05-07T15:31:20.000000Z",
"updated_at": "2026-05-07T15:31:20.000000Z"
},
{
"id": 2,
"code": "E26J5W",
"created_by": 39,
"used_by": 40,
"used_at": null,
"active": 0,
"created_at": "2026-05-07T15:31:21.000000Z",
"updated_at": "2026-05-07T15:31:21.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get active activation codes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes/active" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/active"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"code": "6VY7KF",
"created_by": 41,
"used_by": 42,
"used_at": null,
"active": 0,
"created_at": "2026-05-07T15:31:22.000000Z",
"updated_at": "2026-05-07T15:31:22.000000Z"
},
{
"id": 4,
"code": "ZQSTUT",
"created_by": 43,
"used_by": 44,
"used_at": null,
"active": 0,
"created_at": "2026-05-07T15:31:23.000000Z",
"updated_at": "2026-05-07T15:31:23.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:ACTIVE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Find activation code
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes/find/rerum" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/find/rerum"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 5,
"code": "X3YB6H",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 1,
"created_at": "2026-05-07T15:31:23.000000Z",
"updated_at": "2026-05-07T15:31:23.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:FIND:INSUFFICIENT_PERMISSION"
}
Example response (404, Activation code not found):
{
"message": "Activation code not found",
"code": "ACTIVATION_CODE:FIND:CODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Create activation code
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/activation-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 6,
"code": "MW242M",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 1,
"created_at": "2026-05-07T15:31:23.000000Z",
"updated_at": "2026-05-07T15:31:23.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Server error):
{
"message": "Server error: activation code not created",
"code": "ACTIVATION_CODE:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Create activation code (multi-region)
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/activation-codes/6" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/6"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 7,
"code": "HAQT7D",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 0,
"created_at": "2026-05-07T15:31:23.000000Z",
"updated_at": "2026-05-07T15:31:23.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Deactivate activation code
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/activation-codes/15" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/15"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202):
{
"id": 8,
"code": "7BXVV2",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 0,
"created_at": "2026-05-07T15:31:23.000000Z",
"updated_at": "2026-05-07T15:31:23.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:DEACTIVATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Activation code is not active):
{
"message": "Cannot deactivate: code is not active",
"code": "ACTIVATION_CODE:DEACTIVATE:CODE_NOT_ACTIVE"
}
Example response (404, Activation code not found):
{
"message": "Activation code not found",
"code": "ACTIVATION_CODE:DEACTIVATE:CODE_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: activation code not deactivated",
"code": "ACTIVATION_CODE:DEACTIVATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Authentication
API endpoints for managing authentication
Login user
Example request:
curl --request POST \
"http://localhost:8000/api/login" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/api/login"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Example response (403, Too many attempts):
{
"message": "Login: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (422, Invalid credentials):
{
"message": "The given data was invalid.",
"errors": {
"email": [
"Given credentials not found"
]
},
"code": "AUTH:LOGIN:INVALID_CREDENTIALS"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Register user
Example request:
curl --request POST \
"http://localhost:8000/api/register" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"region\": \"us\",
\"name\": \"Tom Smith\",
\"email\": \"name@domain.com\",
\"password\": \"Test123!\",
\"phone\": \"(512) 308-0106\",
\"phone_country\": \"US\",
\"language\": \"en\",
\"clinic_name\": \"McClure-Walter\",
\"clinic_location\": \"West Emmalee\",
\"address1\": \"4456 Skiles Knolls\",
\"address2\": \"New Ali, KS 14512\",
\"mfa_enabled\": true,
\"mfa_method\": \"email\",
\"activation_code\": \"1A2B3C\"
}"
const url = new URL(
"http://localhost:8000/api/register"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"region": "us",
"name": "Tom Smith",
"email": "name@domain.com",
"password": "Test123!",
"phone": "(512) 308-0106",
"phone_country": "US",
"language": "en",
"clinic_name": "McClure-Walter",
"clinic_location": "West Emmalee",
"address1": "4456 Skiles Knolls",
"address2": "New Ali, KS 14512",
"mfa_enabled": true,
"mfa_method": "email",
"activation_code": "1A2B3C"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 2,
"mrn": "76Q9L3LY1778167856",
"name": "Damaris Pfeffer MD",
"email": "1778167856nflatley@example.net",
"language": "en",
"phone": "1-551-960-5310",
"phone_country": "KR",
"phone_verified_at": null,
"address1": "30862 Roselyn Roads Apt. 465",
"address2": "South Frankieshire, ID 11335-8107",
"postal_code": "75610-3718",
"city": "Howe-Grady",
"country": "CY",
"clinic_name": "Port Monserrat",
"clinic_location": "68075 Lakin Tunnel Apt. 065\nBurniceview, WV 44116-5051",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:30:56.000000Z",
"updated_at": "2026-05-07T15:30:56.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (403, Too many attempts):
{
"message": "Register: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "AUTH:REGISTER:EMAIL_IN_USE"
}
Example response (403, Activation code is incorrect):
{
"message": "Activation code is incorrect",
"code": "AUTH:REGISTER:INCORRECT_CODE"
}
Example response (500, Server error):
{
"message": "Server error: user not created",
"code": "AUTH:REGISTER:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Register mobile user
Example request:
curl --request POST \
"http://localhost:8000/api/mobile/register" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"region\": \"us\",
\"name\": \"Tom Smith\",
\"email\": \"name@domain.com\",
\"password\": \"Test123!\",
\"language\": \"en\",
\"terms_accepted\": true
}"
const url = new URL(
"http://localhost:8000/api/mobile/register"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"region": "us",
"name": "Tom Smith",
"email": "name@domain.com",
"password": "Test123!",
"language": "en",
"terms_accepted": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"mrn": "CCV5Q4SJ1778167857",
"name": "Thalia Christiansen",
"email": "1778167857reanna18@example.net",
"language": "en",
"phone": "(470) 747-6336",
"phone_country": "LK",
"phone_verified_at": null,
"address1": "1045 Bogisich Fall Apt. 108",
"address2": "Hermannhaven, TN 94180-8261",
"postal_code": "59979",
"city": "Christiansen, Maggio and Davis",
"country": "SI",
"clinic_name": "Aubreefurt",
"clinic_location": "892 Koss Prairie Suite 346\nWest Lyric, HI 93049-3810",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:30:57.000000Z",
"updated_at": "2026-05-07T15:30:57.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (403, Too many attempts):
{
"message": "Register: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "AUTH:MOBILE_REGISTER:EMAIL_IN_USE"
}
Example response (500, Server error):
{
"message": "Server error: user not created",
"code": "AUTH:MOBILE_REGISTER:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Request password reset
Request sending password reset email message with token that allows to change the password
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"code": "passwords.sent",
"message": "Reset password link successfully sent"
}
Example response (400, Throttled request):
{
"code": "passwords.throttled",
"message": "You have requested password reset recently"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify password reset token
Check if token is valid before using it to reset password
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset/verify" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019\",
\"email\": \"test@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset/verify"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019",
"email": "test@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Valid token",
"code": "AUTH:PASSWORD_RESET_VERIFY:VALID_TOKEN"
}
Example response (400, Invalid token):
{
"message": "Invalid token",
"code": "AUTH:PASSWORD_RESET_VERIFY:INVALID_TOKEN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "AUTH:PASSWORD_RESET_VERIFY:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Change password with token
Change user password using password reset token sent to email address
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset/change" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019\",
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset/change"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019",
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"code": "passwords.reset",
"message": "Password changed successfully"
}
Example response (400, Invalid token):
{
"code": "passwords.token",
"message": "Invalid token"
}
Example response (404, User not found):
{
"code": "passwords.user",
"message": "User not found"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logout current device
requires authentication
Logout and delete current access token
Example request:
curl --request POST \
"http://localhost:8000/api/logout" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/logout"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
[]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logout everywhere
requires authentication
Logout and delete all access tokens owned by account
Example request:
curl --request POST \
"http://localhost:8000/api/logout/everywhere" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/logout/everywhere"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
[]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Refresh access token
requires authentication
Refresh the new access token from the expiring token
Example request:
curl --request POST \
"http://localhost:8000/api/token/refresh" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/token/refresh"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Check MFA status
requires authentication
Check any of available MFA methods. Supported methods: email, sms, otp.
Example request:
curl --request GET \
--get "http://localhost:8000/api/mfa/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"enabled": 1,
"method": "email",
"phone": 1,
"otp": 1
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
enabled
string
Determines if user enabled MFA
method
string
Preferred MFA method
phone
string
Determines if user has verified phone number and sms channel could be used
otp
string
Determines if user has setup OTP with authenticator application
Use recovery code
requires authentication
Use generated recovery code in order to access account in case when other MFA methods couldn't be used. This method only checks if code is valid, implement account access scenario on your own. Sent code is removed and couldn't be used anymore. If remaining_codes counter equals zero, generate a new set.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/recovery-code" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"ZZASRM6S\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/recovery-code"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "ZZASRM6S"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25",
"remaining_codes": 9
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:USE_RECOVERY_CODE:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send MFA code
requires authentication
Send multi-factor authentication code via selected channel. Code is valid for 15 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"channel\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"channel": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Code sent",
"code": "AUTH:SEND_MFA:SENT"
}
Example response (400, Channel SMS, phone number not verified):
{
"message": "Phone number is not verified",
"code": "AUTH:SEND_MFA:PHONE_NUMBER_NOT_VERIFIED"
}
Example response (500, Channel SMS, provider problem):
{
"message": "Code sending failed",
"code": "AUTH:SEND_MFA:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify MFA code
requires authentication
Verify multi-factor code obtained from selected channel.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"channel\": \"email\",
\"remember_mfa_session\": true,
\"code\": \"445566\",
\"machine_key\": \"35282880-244a-4328-9435-2aaf432f3619\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"channel": "email",
"remember_mfa_session": true,
"code": "445566",
"machine_key": "35282880-244a-4328-9435-2aaf432f3619"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK, token auth):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25",
"mfa_token": "fd63e55c-2a67-44b2-95b9-a771778e9971",
"mfa_expires": "2023-04-25 21:00:00"
}
Example response (200, OK, cookie auth):
{
"message": "OK",
"mfa_token": "fd63e55c-2a67-44b2-95b9-a771778e9971",
"mfa_expires": "2023-04-25 21:00:00"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_MFA:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify phone number
requires authentication
Verify phone number with text message
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/phone/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"445566\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/phone/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "445566"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Phone number verified",
"code": "AUTH:VERIFY_PHONE:VERIFIED"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_PHONE:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify MFA OTP
requires authentication
Verify one-time password (OTP). If verification is successful, new access token with additional permissions will be generated.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/otp/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"445566\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/otp/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "445566"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK, token auth):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Example response (200, OK, cookie auth):
{
"message": "OK"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_MFA_OTP:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Change password
requires authentication
Change authenticated user password
Example request:
curl --request POST \
"http://localhost:8000/api/password/change" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"old_password\": \"oldpassword\",
\"new_password\": \"newpassword\"
}"
const url = new URL(
"http://localhost:8000/api/password/change"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"old_password": "oldpassword",
"new_password": "newpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Password changed successfully",
"code": "AUTH:PASSWORD_CHANGE:CHANGED"
}
Example response (422, Invalid old password):
{
"message": "The given data was invalid.",
"errors": {
"old_password": [
"Old password is incorrect"
]
},
"code": "AUTH:PASSWORD_CHANGE:INVALID_OLD_PASSWORD"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Set MFA status
requires authentication
Set MFA status and preferred method. Supported methods: email, sms, otp.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"enabled\": true,
\"method\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"enabled": true,
"method": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"enabled": 1,
"method": "email",
"phone": 1,
"otp": 1
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Generate recovery codes
requires authentication
Generate recovery codes for authenticated user and revoke old ones. User could use these codes in case when couldn't use any of MFA methods (e.g. lost device with OTP app or device is not accessible right now).
Example request:
curl --request GET \
--get "http://localhost:8000/api/mfa/recovery-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/recovery-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"recovery_codes": [
"A3H8PF8P",
"IZ8CGK2H",
"DTYENLLT",
"0RKEZFST",
"9MPW91BS",
"S38Z6HS6",
"UF5ATOKP",
"HSZXP8EL",
"ZZASRM6S",
"07GR4CD1"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Setup MFA OTP
requires authentication
Setup multi-factor authentication with one-time passwords (OTP). Use secret on your own or generate QR code with given url. Then user could scan QR code with authentication app (e.g. Microsoft Authenticator, Authy). If secret has been already generated, new secret will override existing one and revoke previous setup.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/otp/setup" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/otp/setup"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"secret": "VXGJ6JMIAWWDFXYDLKO3VG3RSGTS34BGMVTGQIEHMVVMJ2JBGCSNPQZDV4B6OMDIGI4UKCVCVKVMA7EASLHZEJWW4ZNKLAUTSZYN7EA",
"url": "otpauth://totp/AetherDigitalTherapy?issuer=AetherDigitalTherapy&secret=VXGJ6JMIAWWDFXYDLKO3VG3RSGTS34BGMVTGQIEHMVVMJ2JBGCSNPQZDV4B6OMDIGI4UKCVCVKVMA7EASLHZEJWW4ZNKLAUTSZYN7EA",
"recovery_codes": [
"A3H8PF8P",
"IZ8CGK2H",
"DTYENLLT",
"0RKEZFST",
"9MPW91BS",
"S38Z6HS6",
"UF5ATOKP",
"HSZXP8EL",
"ZZASRM6S",
"07GR4CD1"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Login user (SPA)
Authorize user and create cookie-based session. Hit GET /sanctum/csrf-cookie endpoint to retrieve XSRF-TOKEN cookie. Then attach X-XSRF-TOKEN HTTP header to any request to authorize. See more: Laravel Sanctum documentation
Example request:
curl --request POST \
"http://localhost:8000/login" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/login"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 326,
"mrn": "QVCX86L21778168044",
"name": "Elisabeth Mayert",
"email": "1778168044dave19@example.net",
"language": "en",
"phone": "(870) 368-2411",
"phone_country": "LR",
"phone_verified_at": null,
"address1": "4311 Durgan Shoals Apt. 686",
"address2": "Port Chadd, MN 39076-6580",
"postal_code": "78435-4556",
"city": "Heller-Marks",
"country": "SE",
"clinic_name": "East Vidalview",
"clinic_location": "264 Kaycee Roads\nNew Martinehaven, SD 68073-7825",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:34:04.000000Z",
"updated_at": "2026-05-07T15:34:04.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
Example response (403, Too many attempts):
{
"message": "Login: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (422, Invalid credentials):
{
"message": "The given data was invalid.",
"errors": {
"email": [
"Given credentials not found"
]
},
"code": "AUTH:LOGIN_COOKIE:INVALID_CREDENTIALS"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Chat
API endpoints for chat management
Authorize a user
requires authentication
This method authorizes a user using Ably service. Endpoint used only by Ably SDK
Check more details on https://ably.com/docs/auth/token
List all chat rooms
requires authentication
This method retrieves all chat rooms. Possible extend options:
- participants - user assigned to chat room
- participants.roles - roles assigned to chat participants
- owner - the clinician assigned to patient
- patient - the patient for whom the chat was created
- messages - the messages related to chat room
- messages.author - the author of message/li>
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/rooms" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/rooms"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"owner": null,
"patient_id": null,
"encryption_key": "1hKSMfz2P/Xlaol5PM9S6ChPYD4UEYAJAyrB/PuKNFE=",
"name": "voluptas",
"friendly_name": "voluptas",
"created_at": "2026-05-07T15:33:40.000000Z",
"deleted_at": null,
"updated_at": "2026-05-07T15:33:40.000000Z"
},
{
"id": 2,
"owner": null,
"patient_id": null,
"encryption_key": "fyByeU/Iv2xDF8M8YjeHlONKlZYFCmCg9oa1Knh01hs=",
"name": "reiciendis",
"friendly_name": "reiciendis",
"created_at": "2026-05-07T15:33:40.000000Z",
"deleted_at": null,
"updated_at": "2026-05-07T15:33:40.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list chat room",
"code": "CHAT:LIST_ROOMS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Retrieve a chat room
requires authentication
This method retrieves a single chat room identified by roomId. Possible extend options:
- participants - user assigned to chat room
- owner - the clinician assigned to patient
- patient - the patient for whom the chat was created
- messages - the messages related to chat room
- messages.author - the author of message/li>
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/voluptatum" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/voluptatum"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"owner": null,
"patient_id": null,
"encryption_key": "EJDZjyBBPScI/qbztTVQDVImIQfaSkNAT3Jw1dMhkEo=",
"name": "nam",
"friendly_name": "nam",
"created_at": "2026-05-07T15:33:40.000000Z",
"deleted_at": null,
"updated_at": "2026-05-07T15:33:40.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room",
"code": "CHAT:GET_ROOM:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:GET_ROOM:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
Create a new chat room
requires authentication
This method creates a new chat room using the authenticated user's ID, a name for the room, and a list of participants.
The list of participants should contain the IDs of the users who will be participants in the room.Example request:
curl --request POST \
"http://localhost:8000/api/chat/room" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"owner\": 1,
\"name\": \"my-chat\",
\"patient_id\": 1,
\"participants\": [
\"1\"
]
}"
const url = new URL(
"http://localhost:8000/api/chat/room"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"owner": 1,
"name": "my-chat",
"patient_id": 1,
"participants": [
"1"
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"owner": null,
"patient_id": null,
"encryption_key": "6nieVwQ2UJkCRLpvzSMJfO29gEqKi0hNAowbCSo3Kmw=",
"name": "nemo",
"friendly_name": "nemo",
"created_at": "2026-05-07T15:33:40.000000Z",
"deleted_at": null,
"updated_at": "2026-05-07T15:33:40.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room",
"code": "CHAT:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
Update an existing chat room
requires authentication
This method updates an existing chat room using the authenticated user's ID, a new name for the room, and a list of participants.
The list of participants should contain the IDs of the users who will be participants in the room.Example request:
curl --request PUT \
"http://localhost:8000/api/chat/room/officiis" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"owner\": 1,
\"name\": \"my-chat\",
\"participants\": [
\"1\"
],
\"participants_del\": [
\"1\"
]
}"
const url = new URL(
"http://localhost:8000/api/chat/room/officiis"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"owner": 1,
"name": "my-chat",
"participants": [
"1"
],
"participants_del": [
"1"
]
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"owner": null,
"patient_id": null,
"encryption_key": "OMqftkeFPSyKmbMjpkArnQfTck7KeFO8OzDTlyfEXTc=",
"name": "qui",
"friendly_name": "qui",
"created_at": "2026-05-07T15:33:40.000000Z",
"deleted_at": null,
"updated_at": "2026-05-07T15:33:40.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update chat room",
"code": "CHAT:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:UPDATE:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
Chat room archives
requires authentication
Get archived messages for room Possible extend options:
- author - this field represent user who send message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/eum/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/eum/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view archived messages",
"code": "CHAT:GET_ARCHIVES:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:GET_ARCHIVES:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Unread messages
requires authentication
Get unread messaged for chat room. Possible extend options:
- author - this field represent user who send message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/messages/unread?room=5" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/messages/unread"
);
const params = {
"room": "5",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view unread messages list",
"code": "CHAT:UNREAD_MESSAGES:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete chat message
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/chat/messages/17?msgId=debitis" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/messages/17"
);
const params = {
"msgId": "debitis",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete message",
"code": "CHAT:DELETE_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Chat message not found",
"code": "CHAT:DELETE_MESSAGE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get tickets list for chat room
requires authentication
Possible extend options:
- sender - the user who created ticket
- recipient - the user who was ticket recipient
- messages - message allocated to ticket
- messages.attachments - list of attachments assigned to message and ticket
- messages.sender - the user who wrote the message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/tickets/qui?status=recusandae&sender=12&recipient=20" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/tickets/qui"
);
const params = {
"status": "recusandae",
"sender": "12",
"recipient": "20",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 87,
"sender_id": 288,
"recipient_id": 289,
"device_id": null,
"meeting_date": "2026-05-07 15:33:41",
"meeting_type": "online_meeting",
"contact_email": "satterfield.mariano@greenfelder.com",
"status": "new",
"created_at": "2026-05-07T15:33:41.000000Z",
"updated_at": "2026-05-07T15:33:41.000000Z",
"sender": {
"id": 288,
"mrn": "73X5EUVZ1778168020",
"name": "Jakob Bernier",
"email": "1778168020dominique04@example.com",
"language": "en",
"phone": "+1-912-463-7526",
"phone_country": "TL",
"phone_verified_at": null,
"address1": "8666 Micah Fall",
"address2": "West Clementinaberg, MO 01232",
"postal_code": "94098",
"city": "O'Conner LLC",
"country": "GB",
"clinic_name": "West Judson",
"clinic_location": "4326 Jacques Cliffs Apt. 815\nSouth Rickfurt, ID 07538-9551",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:41.000000Z",
"updated_at": "2026-05-07T15:33:41.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 289,
"mrn": "G64PZJUM1778168021",
"name": "Lorenza Bins DVM",
"email": "1778168021dmorar@example.net",
"language": "en",
"phone": "+1 (609) 930-4903",
"phone_country": "GP",
"phone_verified_at": null,
"address1": "686 Kertzmann Valleys Apt. 943",
"address2": "North Gregoriamouth, NM 67330-5879",
"postal_code": "06845-4919",
"city": "Rippin-Barrows",
"country": "DK",
"clinic_name": "Haileyport",
"clinic_location": "8261 Stehr Mill\nDeannaport, RI 65002-3099",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:41.000000Z",
"updated_at": "2026-05-07T15:33:41.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": []
},
{
"id": 88,
"sender_id": 290,
"recipient_id": 291,
"device_id": null,
"meeting_date": "2026-05-07 15:33:42",
"meeting_type": "online_meeting",
"contact_email": "reina56@oreilly.com",
"status": "new",
"created_at": "2026-05-07T15:33:43.000000Z",
"updated_at": "2026-05-07T15:33:43.000000Z",
"sender": {
"id": 290,
"mrn": "8HRNBTHX1778168022",
"name": "Demarco Bogan",
"email": "1778168022vmiller@example.org",
"language": "en",
"phone": "1-830-627-9510",
"phone_country": "AF",
"phone_verified_at": null,
"address1": "124 Emard Locks Suite 656",
"address2": "South Ellsworth, OK 19662",
"postal_code": "04788-8203",
"city": "Hermiston, Stoltenberg and Runte",
"country": "GR",
"clinic_name": "North Londonmouth",
"clinic_location": "563 Huel Cove\nLake Jaeden, NC 29149",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:42.000000Z",
"updated_at": "2026-05-07T15:33:42.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 291,
"mrn": "EXW2LSAW1778168022",
"name": "John Nienow",
"email": "1778168022gabrielle.price@example.com",
"language": "en",
"phone": "248.400.3536",
"phone_country": "ZW",
"phone_verified_at": null,
"address1": "36060 Rau Row Apt. 248",
"address2": "Wilmerberg, PA 73773-6110",
"postal_code": "06308",
"city": "Upton-Powlowski",
"country": "BG",
"clinic_name": "New Kyliestad",
"clinic_location": "7968 Mohr Island Apt. 683\nDooleyfort, VA 10042-8147",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:42.000000Z",
"updated_at": "2026-05-07T15:33:42.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": []
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room tickets",
"code": "CHAT:LIST_TICKETS:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:LIST_TICKETS:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List of available patients for chat
requires authentication
Possible extend options:
- clinician - clinician assigned to this user
- devices - products assigned to user
- roles - user roles
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/available-patients" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/available-patients"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 292,
"mrn": "AAVKZ3VR1778168023",
"name": "Ethyl Muller",
"email": "1778168023heather15@example.com",
"language": "en",
"phone": "+1-720-220-4612",
"phone_country": "BH",
"phone_verified_at": null,
"address1": "78860 Elinor Island Suite 054",
"address2": "Erdmanfort, PA 51019-5059",
"postal_code": "31046",
"city": "Goldner-Leffler",
"country": "LU",
"clinic_name": "Bofurt",
"clinic_location": "183 Kihn Islands\nLake Anita, ID 77685-2685",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:43.000000Z",
"updated_at": "2026-05-07T15:33:43.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"devices": [
{
"id": 141,
"serial": "d8cb5a54-db86-3e17-a454-16a88984bbe6",
"bluetooth_id": "0388c7ee-5f79-3725-893e-a4dafebc49db",
"company_id": null,
"model_id": null,
"amputee_id": 292,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:33:43.000000Z",
"updated_at": "2026-05-07T15:33:43.000000Z"
}
],
"roles": [
{
"id": 5,
"name": "Amputee"
}
]
},
{
"id": 293,
"mrn": "6Q335NEY1778168023",
"name": "Germaine Schuster",
"email": "1778168023storphy@example.net",
"language": "en",
"phone": "+1 (325) 591-5283",
"phone_country": "MT",
"phone_verified_at": null,
"address1": "1989 Breana Circle",
"address2": "West Kali, SC 20012-8340",
"postal_code": "45514-1265",
"city": "Donnelly Inc",
"country": "FR",
"clinic_name": "New Taryn",
"clinic_location": "969 Lynch Oval Apt. 140\nPort Bertram, NH 01430",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:43.000000Z",
"updated_at": "2026-05-07T15:33:43.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"devices": [
{
"id": 142,
"serial": "7d9acc36-3853-3360-bf25-d3d1bd005d3e",
"bluetooth_id": "3303b5a1-5c74-3d38-8351-31c6a7bcc6d8",
"company_id": null,
"model_id": null,
"amputee_id": 293,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:33:44.000000Z",
"updated_at": "2026-05-07T15:33:44.000000Z"
}
],
"roles": [
{
"id": 1,
"name": "SuperAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list available patients",
"code": "CHAT:LIST_PATIENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List of available participants for chat
requires authentication
Possible extend options:
- roles - user roles
- permissions - user permissions
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/1/available-participants" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/1/available-participants"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 294,
"mrn": "K3C3YLY31778168024",
"name": "Prof. Kirstin Nienow V",
"email": "1778168024rashad.pfeffer@example.org",
"language": "en",
"phone": "478-417-0801",
"phone_country": "BZ",
"phone_verified_at": null,
"address1": "8357 Brown Tunnel Suite 483",
"address2": "Torpberg, IL 57607-9723",
"postal_code": "44026",
"city": "Quigley and Sons",
"country": "IT",
"clinic_name": "West Cloydberg",
"clinic_location": "219 Sanford Rue\nVivienneton, NH 71054",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:44.000000Z",
"updated_at": "2026-05-07T15:33:44.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
},
{
"id": 295,
"mrn": "GT8UVKQ71778168024",
"name": "Prof. Emmanuelle Mills",
"email": "1778168024abner71@example.net",
"language": "en",
"phone": "+17267040659",
"phone_country": "DK",
"phone_verified_at": null,
"address1": "2714 Leannon Viaduct Suite 539",
"address2": "Liamtown, IL 93872",
"postal_code": "04633-2526",
"city": "O'Conner and Sons",
"country": "SK",
"clinic_name": "West Peggiefurt",
"clinic_location": "2632 Gabriella Plain Apt. 531\nEast Macey, UT 96320",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:44.000000Z",
"updated_at": "2026-05-07T15:33:44.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list available participants",
"code": "CHAT:LIST_PARTICIPANTS:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:LIST_PARTICIPANTS:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Config
API endpoints for device config management
Get device config
requires authentication
Definitions:
- config - current config entries
- config history entry - set of changes in config, updated during the session
- config history change - single change made to config (part of config history entry)
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config?_format=omnis" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config"
);
const params = {
"_format": "omnis",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (200):
[
{
"id": 1,
"user_id": null,
"device_id": 14,
"mode_id": 1,
"key": "rerum",
"value": "qui",
"created_at": "2026-05-07T15:31:24.000000Z",
"updated_at": "2026-05-07T15:31:24.000000Z",
"mode": {
"id": 1,
"device_id": 15,
"slot": null,
"name": "Iure necessitatibus hic sint nesciunt laborum temporibus sed nisi.",
"active": 1,
"created_at": "2026-05-07T15:31:24.000000Z",
"updated_at": "2026-05-07T15:31:24.000000Z"
}
},
{
"id": 2,
"user_id": null,
"device_id": 16,
"mode_id": 2,
"key": "ipsa",
"value": "fugit",
"created_at": "2026-05-07T15:31:24.000000Z",
"updated_at": "2026-05-07T15:31:24.000000Z",
"mode": {
"id": 2,
"device_id": 17,
"slot": null,
"name": "Suscipit dolores unde est laborum totam soluta ut.",
"active": 1,
"created_at": "2026-05-07T15:31:24.000000Z",
"updated_at": "2026-05-07T15:31:24.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:GET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config entry ID.
device_id
integer
Associated device ID.
mode_id
integer
Associated config mode ID.
key
string
Config key.
value
string
Config value.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
mode
object
Associated config mode.
Update device config
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote session 2022-05-30\",
\"common\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\",
\"updateNote\": true,
\"modes\": [
{
\"id\": 1,
\"config\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/device/1/config"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote session 2022-05-30",
"common": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]",
"updateNote": true,
"modes": [
{
"id": 1,
"config": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]"
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:UPDATE:DEVICE_NOT_FOUND"
}
Example response (422, Invalid config):
{
"message": "Config has some problems and cannot be saved.",
"errors": {
"modes": {
"mode_3": "Config mode 3 does not belong to device 12."
},
"values": {
"common.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"common.gripsPositions.1.initial": "Invalid value [200,\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values.",
"mode_1.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"mode_1.gripsPositions.0.initial": "Invalid value [\"200\",\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values."
}
},
"code": "CONFIG:UPDATE:INVALID_CONFIG"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get device config history
requires authentication
For amputees only restore points are returned.
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/history?restore_point=1&factory_reset_point=1&date_from=1642003200&date_to=1642003200" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"restore_point\": true,
\"factory_reset_point\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/history"
);
const params = {
"restore_point": "1",
"factory_reset_point": "1",
"date_from": "1642003200",
"date_to": "1642003200",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"restore_point": true,
"factory_reset_point": true
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": null,
"device_id": 18,
"index": null,
"name": "Rerum facilis modi cum minus aliquid explicabo.",
"config": "{\"common\":{\"fingerStrength\":[1,100],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[37,37,67,1,18],\"limit\":[57,53,82,35,92]},\"1\":{\"initial\":[58,19,12,70,23],\"limit\":[86,64,82,78,25]},\"2\":{\"initial\":[1,56,13,36,44],\"limit\":[43,69,80,54,69]},\"3\":{\"initial\":[26,33,7,50,15],\"limit\":[56,89,82,66,34]},\"4\":{\"initial\":[52,58,2,32,8],\"limit\":[92,90,70,72,28]},\"5\":{\"initial\":[23,13,9,51,14],\"limit\":[38,43,43,71,91]},\"6\":{\"initial\":[14,48,10,8,9],\"limit\":[17,64,79,56,23]},\"7\":{\"initial\":[43,46,18,91,70],\"limit\":[66,82,85,94,73]},\"8\":{\"initial\":[17,19,36,21,56],\"limit\":[91,48,48,70,66]},\"9\":{\"initial\":[30,15,2,83,41],\"limit\":[80,90,9,88,74]},\"10\":{\"initial\":[51,60,43,9,32],\"limit\":[94,73,45,29,72]},\"11\":{\"initial\":[4,40,8,88,23],\"limit\":[84,73,91,92,92]},\"12\":{\"initial\":[11,45,11,6,27],\"limit\":[81,72,85,85,31]},\"13\":{\"initial\":[5,43,3,35,71],\"limit\":[87,74,23,64,93]}},\"inputSite\":[0]},\"modes\":[{\"id\":3,\"name\":\"Sunt sunt quasi voluptatem temporibus ea.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[300,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[80,90,0,30,60,30,10,20,50,50],\"gripPairsConfig\":[6,7,12,1,2,9,3,8],\"gripSequentialConfig\":[7,9,8,255,5,255,13,4,12,11,255,6],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2500],\"pulseTimings\":[630,10,150,400],\"softGrip\":[1],\"speedControlStrategy\":[0]}},{\"id\":4,\"name\":\"Ipsam velit eos at eos ut quas placeat.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[400,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[100,100,90,90,50,20,10,40,30,60],\"gripPairsConfig\":[8,6,2,7,12,13,3,4],\"gripSequentialConfig\":[5,255,11,2,12,13,255,8,255,10,3,255],\"gripSwitchingMode\":[3],\"holdOpen\":[2000,2000],\"pulseTimings\":[950,150,130,530],\"softGrip\":[1],\"speedControlStrategy\":[0]}},{\"id\":5,\"name\":\"Aliquid placeat nihil fugit atque.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[400,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[80,40,10,50,30,10,90,100,40,20],\"gripPairsConfig\":[4,9,7,6,1,11,2,12],\"gripSequentialConfig\":[4,9,255,13,2,255,255,255,7,10,255,6],\"gripSwitchingMode\":[1],\"holdOpen\":[2000,2500],\"pulseTimings\":[120,100,50,530],\"softGrip\":[1],\"speedControlStrategy\":[1]}}]}",
"restore_point": 0,
"factory_reset_point": 0,
"changed_by": 46,
"created_at": "2026-05-07T15:31:25.000000Z",
"updated_at": "2026-05-07T15:31:25.000000Z",
"author": {
"id": 46,
"mrn": "KGD87Z741778167884",
"name": "Edd Bechtelar",
"email": "1778167884flatley.tia@example.org",
"language": "en",
"phone": "+1-908-319-7845",
"phone_country": "SN",
"phone_verified_at": null,
"address1": "90134 Connelly Forge",
"address2": "Port Mattmouth, MI 13189",
"postal_code": "84674-1557",
"city": "Volkman, Gutmann and Effertz",
"country": "FR",
"clinic_name": "East Malloryborough",
"clinic_location": "43377 Doyle Rapid Apt. 333\nLabadieberg, WY 89078",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:24.000000Z",
"updated_at": "2026-05-07T15:31:24.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"entries": [
{
"id": 1,
"config_history_id": 1,
"config_id": 3,
"old_value": "quo",
"new_value": "rerum",
"created_at": "2026-05-07T15:31:25.000000Z",
"updated_at": "2026-05-07T15:31:25.000000Z",
"config_entry": {
"id": 3,
"user_id": null,
"device_id": 26,
"mode_id": null,
"key": "qui",
"value": "ex",
"created_at": "2026-05-07T15:31:25.000000Z",
"updated_at": "2026-05-07T15:31:25.000000Z"
}
}
]
},
{
"id": 3,
"user_id": null,
"device_id": 27,
"index": null,
"name": "Perspiciatis dolor minima excepturi impedit sunt itaque quisquam.",
"config": "{\"common\":{\"fingerStrength\":[1,400],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[52,5,29,8,48],\"limit\":[59,90,53,61,88]},\"1\":{\"initial\":[28,57,11,36,62],\"limit\":[95,58,33,66,63]},\"2\":{\"initial\":[50,28,80,89,32],\"limit\":[90,61,85,92,86]},\"3\":{\"initial\":[75,28,31,15,23],\"limit\":[92,35,36,30,23]},\"4\":{\"initial\":[9,18,37,31,72],\"limit\":[62,35,55,74,88]},\"5\":{\"initial\":[4,64,6,34,82],\"limit\":[25,75,34,72,91]},\"6\":{\"initial\":[25,7,11,3,21],\"limit\":[67,8,38,28,51]},\"7\":{\"initial\":[75,35,21,35,19],\"limit\":[88,44,82,68,52]},\"8\":{\"initial\":[49,54,84,56,24],\"limit\":[75,72,91,72,36]},\"9\":{\"initial\":[84,14,27,48,68],\"limit\":[93,52,83,86,86]},\"10\":{\"initial\":[27,10,6,3,14],\"limit\":[78,94,57,21,92]},\"11\":{\"initial\":[1,8,69,62,40],\"limit\":[60,19,81,69,66]},\"12\":{\"initial\":[53,86,12,54,39],\"limit\":[87,94,59,93,78]},\"13\":{\"initial\":[47,6,8,36,22],\"limit\":[62,66,32,61,26]}},\"inputSite\":[1]},\"modes\":[{\"id\":9,\"name\":\"Est et quia harum vel.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[500,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[0,100,0,10,90,30,20,40,10,70],\"gripPairsConfig\":[3,13,2,11,9,5,4,12],\"gripSequentialConfig\":[12,7,10,11,13,3,5,1,6,255,255,255],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2500],\"pulseTimings\":[910,490,440,520],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":10,\"name\":\"Autem nam sit ea ea et.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[400,400],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[10,40,30,10,0,90,100,20,30,0],\"gripPairsConfig\":[8,4,6,1,9,2,11,12],\"gripSequentialConfig\":[12,8,255,5,7,10,11,1,255,255,255,255],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2500],\"pulseTimings\":[640,520,950,940],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":11,\"name\":\"Consequatur aut cumque eum eos accusantium.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[200,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[0,60,10,100,60,60,50,50,10,50],\"gripPairsConfig\":[8,1,7,2,5,12,3,13],\"gripSequentialConfig\":[255,1,7,11,8,12,9,255,6,255,5,2],\"gripSwitchingMode\":[1],\"holdOpen\":[2000,2000],\"pulseTimings\":[630,870,440,990],\"softGrip\":[1],\"speedControlStrategy\":[0]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 49,
"created_at": "2026-05-07T15:31:26.000000Z",
"updated_at": "2026-05-07T15:31:26.000000Z",
"author": {
"id": 49,
"mrn": "L9ME7MCB1778167886",
"name": "Aaliyah Fisher",
"email": "1778167886kiehn.kaya@example.org",
"language": "en",
"phone": "770.941.0206",
"phone_country": "CY",
"phone_verified_at": null,
"address1": "39237 King Knolls",
"address2": "Demondstad, UT 45967",
"postal_code": "64345",
"city": "Ondricka, Zieme and Yost",
"country": "FR",
"clinic_name": "West Israelstad",
"clinic_location": "5708 Lynn Flat\nAgustinton, IL 75882",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:26.000000Z",
"updated_at": "2026-05-07T15:31:26.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"entries": [
{
"id": 2,
"config_history_id": 3,
"config_id": 4,
"old_value": "quaerat",
"new_value": "cumque",
"created_at": "2026-05-07T15:31:27.000000Z",
"updated_at": "2026-05-07T15:31:27.000000Z",
"config_entry": {
"id": 4,
"user_id": null,
"device_id": 35,
"mode_id": null,
"key": "atque",
"value": "aut",
"created_at": "2026-05-07T15:31:27.000000Z",
"updated_at": "2026-05-07T15:31:27.000000Z"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:HISTORY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Config history entry ID.
device_id
integer
Associated device ID.
index
integer
Config history index.
name
string
Config snapshot name.
config
string
Serialized config data.
restore_point
boolean
Whether this entry is a restore point.
factory_reset_point
boolean
Whether this entry is a factory reset point.
changed_by
integer
ID of the user who made the change.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made the change.
entries
object[]
Individual config history entries.
notes
object[]
Notes attached to this history entry.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get device config history entry
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/history/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/history/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 5,
"user_id": null,
"device_id": 36,
"index": null,
"name": "In quis molestias nihil quae aut perspiciatis.",
"config": "{\"common\":{\"fingerStrength\":[1,100],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[15,42,52,75,13],\"limit\":[24,68,90,80,15]},\"1\":{\"initial\":[14,45,22,80,90],\"limit\":[85,55,45,81,92]},\"2\":{\"initial\":[82,27,32,6,54],\"limit\":[85,66,70,43,65]},\"3\":{\"initial\":[45,12,43,52,6],\"limit\":[75,30,66,78,59]},\"4\":{\"initial\":[7,10,21,37,57],\"limit\":[54,48,88,94,80]},\"5\":{\"initial\":[49,24,79,7,2],\"limit\":[89,88,81,11,87]},\"6\":{\"initial\":[27,44,54,26,17],\"limit\":[95,67,60,27,60]},\"7\":{\"initial\":[22,1,70,40,21],\"limit\":[35,47,89,95,37]},\"8\":{\"initial\":[62,2,22,56,57],\"limit\":[68,49,67,60,90]},\"9\":{\"initial\":[42,1,11,1,75],\"limit\":[87,21,86,26,90]},\"10\":{\"initial\":[94,66,18,9,40],\"limit\":[95,82,50,9,62]},\"11\":{\"initial\":[61,32,15,55,8],\"limit\":[62,85,32,94,12]},\"12\":{\"initial\":[44,26,7,18,13],\"limit\":[83,71,29,67,71]},\"13\":{\"initial\":[76,45,11,19,37],\"limit\":[85,56,65,57,59]}},\"inputSite\":[0]},\"modes\":[{\"id\":15,\"name\":\"Molestiae consectetur dicta quod.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[60,0,0,100,10,0,30,50,100,50],\"gripPairsConfig\":[9,13,4,1,6,3,10,11],\"gripSequentialConfig\":[5,255,255,12,10,4,9,255,7,6,8,3],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2000],\"pulseTimings\":[550,360,720,760],\"softGrip\":[0],\"speedControlStrategy\":[1]}},{\"id\":16,\"name\":\"Nulla dolorum quia et architecto deleniti et.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[500,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[0,100,20,0,40,70,20,80,70,0],\"gripPairsConfig\":[13,5,6,11,12,1,10,3],\"gripSequentialConfig\":[9,255,255,12,10,7,4,2,5,6,3,1],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2000],\"pulseTimings\":[930,940,320,40],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":17,\"name\":\"Incidunt labore in dolorum in aliquid explicabo porro.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[300,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[50,0,90,10,80,70,80,100,100,90],\"gripPairsConfig\":[5,12,9,8,7,3,10,13],\"gripSequentialConfig\":[6,255,255,255,13,255,3,255,2,7,11,12],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2000],\"pulseTimings\":[60,770,560,710],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 51,
"created_at": "2026-05-07T15:31:28.000000Z",
"updated_at": "2026-05-07T15:31:28.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:HISTORY_ENTRY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY_ENTRY:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:HISTORY_ENTRY:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config history entry ID.
device_id
integer
Associated device ID.
index
integer
Config history index.
name
string
Config snapshot name.
config
string
Serialized config data.
restore_point
boolean
Whether this entry is a restore point.
factory_reset_point
boolean
Whether this entry is a factory reset point.
changed_by
integer
ID of the user who made the change.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made the change.
entries
object[]
Individual config history entries.
notes
object[]
Notes attached to this history entry.
Update config history
requires authentication
Returns updated config history in response.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/history/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote session 2022-05-30\",
\"restore_point\": true,
\"factory_reset_point\": false
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/history/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote session 2022-05-30",
"restore_point": true,
"factory_reset_point": false
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 6,
"user_id": null,
"device_id": 40,
"index": null,
"name": "Et quia ea voluptas eum sed porro a.",
"config": "{\"common\":{\"fingerStrength\":[1,400],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[34,1,8,33,38],\"limit\":[49,85,20,65,92]},\"1\":{\"initial\":[38,22,47,12,20],\"limit\":[54,49,90,83,32]},\"2\":{\"initial\":[19,62,49,82,64],\"limit\":[49,94,58,86,88]},\"3\":{\"initial\":[35,19,22,10,49],\"limit\":[76,49,26,81,80]},\"4\":{\"initial\":[19,53,4,10,56],\"limit\":[28,72,94,87,92]},\"5\":{\"initial\":[20,19,13,1,30],\"limit\":[34,76,45,48,94]},\"6\":{\"initial\":[16,14,36,74,37],\"limit\":[16,42,43,77,38]},\"7\":{\"initial\":[18,9,9,36,63],\"limit\":[62,15,86,86,67]},\"8\":{\"initial\":[8,86,86,25,48],\"limit\":[63,88,93,85,59]},\"9\":{\"initial\":[25,23,33,37,33],\"limit\":[78,39,37,59,84]},\"10\":{\"initial\":[22,23,8,44,27],\"limit\":[67,65,36,89,60]},\"11\":{\"initial\":[5,57,72,18,50],\"limit\":[54,91,84,36,69]},\"12\":{\"initial\":[16,7,20,51,20],\"limit\":[64,10,87,57,21]},\"13\":{\"initial\":[1,3,10,79,25],\"limit\":[90,87,37,87,86]}},\"inputSite\":[1]},\"modes\":[{\"id\":18,\"name\":\"Corporis sunt praesentium dicta delectus.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[300,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[90,20,80,30,10,30,70,40,0,90],\"gripPairsConfig\":[2,9,13,5,10,1,8,11],\"gripSequentialConfig\":[255,255,13,255,255,2,8,12,6,10,255,255],\"gripSwitchingMode\":[1],\"holdOpen\":[2500,2500],\"pulseTimings\":[870,670,150,940],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":19,\"name\":\"Ipsam ea itaque optio repellendus.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[400,400],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[50,0,100,10,100,80,0,0,80,0],\"gripPairsConfig\":[8,4,6,7,1,5,10,13],\"gripSequentialConfig\":[13,3,2,255,7,4,6,10,11,255,5,8],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2000],\"pulseTimings\":[110,620,370,800],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":20,\"name\":\"Accusantium accusantium est aspernatur ipsum nihil accusamus.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[400,300],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[30,30,60,0,80,30,60,30,10,50],\"gripPairsConfig\":[8,11,3,5,2,10,9,13],\"gripSequentialConfig\":[1,2,255,6,12,4,5,255,255,10,255,3],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2000],\"pulseTimings\":[410,250,350,330],\"softGrip\":[1],\"speedControlStrategy\":[0]}}]}",
"restore_point": 0,
"factory_reset_point": 0,
"changed_by": 52,
"created_at": "2026-05-07T15:31:28.000000Z",
"updated_at": "2026-05-07T15:31:28.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:HISTORY_UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Factory reset point already exists):
{
"message": "Factory reset point does not exist",
"code": "CONFIG:HISTORY_UPDATE:FACTORY_RESET_POINT_ALREADY_EXISTS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY_UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:HISTORY_UPDATE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config history entry ID.
device_id
integer
Associated device ID.
index
integer
Config history index.
name
string
Config snapshot name.
config
string
Serialized config data.
restore_point
boolean
Whether this entry is a restore point.
factory_reset_point
boolean
Whether this entry is a factory reset point.
changed_by
integer
ID of the user who made the change.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made the change.
entries
object[]
Individual config history entries.
notes
object[]
Notes attached to this history entry.
Undo single config history change
requires authentication
Returns updated config in response.
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/config/history/undo/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/history/undo/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:UNDO:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:UNDO:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:UNDO:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Restore config history entry
requires authentication
Restores config from given config history entry (all changes). Sends support ticket if patient is assigned to device, returns config instead.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/restore/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/restore/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, Patient not assigned, returns config):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (202):
{
"id": 1,
"sender_id": 53,
"recipient_id": 54,
"device_id": null,
"meeting_date": "2026-05-07 15:31:29",
"meeting_type": "online_meeting",
"contact_email": "ischroeder@thompson.biz",
"status": "new",
"created_at": "2026-05-07T15:31:29.000000Z",
"updated_at": "2026-05-07T15:31:29.000000Z",
"sender": {
"id": 53,
"mrn": "8H5KZETF1778167888",
"name": "Jedediah Mann",
"email": "1778167888shields.blaise@example.org",
"language": "en",
"phone": "+17243830955",
"phone_country": "PG",
"phone_verified_at": null,
"address1": "226 Leuschke Hills Suite 816",
"address2": "Lake Justyn, IN 19033-5396",
"postal_code": "18033-3792",
"city": "Howell-Sipes",
"country": "PL",
"clinic_name": "North Natashaview",
"clinic_location": "8705 Ward Point Suite 651\nHeidenreichhaven, FL 55306-2423",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:28.000000Z",
"updated_at": "2026-05-07T15:31:28.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 54,
"mrn": "QESBLGUT1778167889",
"name": "Ms. Carli O'Keefe I",
"email": "1778167889carleton.murazik@example.org",
"language": "en",
"phone": "1-769-528-7319",
"phone_country": "NR",
"phone_verified_at": null,
"address1": "97338 Wilderman Lights",
"address2": "Conradburgh, HI 02215",
"postal_code": "75307-9256",
"city": "Sawayn LLC",
"country": "UA",
"clinic_name": "West Ignacioburgh",
"clinic_location": "30299 Heaney Ridges Apt. 689\nPort Domenico, NY 72376-5200",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:29.000000Z",
"updated_at": "2026-05-07T15:31:29.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 55,
"title": "Prof.",
"content": "Sunt doloribus architecto qui eius non ea quisquam aut.",
"is_read": false,
"created_at": "2026-05-07T15:31:31.000000Z",
"updated_at": "2026-05-07T15:31:31.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:RESTORE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:RESTORE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:RESTORE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Restore to factory reset point
requires authentication
Restores config from the device's factory reset point. Sends a support ticket if the patient is assigned to the device. Returns the array that contains:
config- The factory reset config. It might be updated with current config entries when the restored config does not contain a key or its value is false, but the key is available in the current config, has a non-false value, and is required by the config schema.not_modified- The part of the current config that contains keys which were ignored (because they’re on the ignore list, such as custom grips settings), or were not updated with values from the factory reset config (because the values are the same in both configs, or missing in the factory reset config but present and non-false in the current config). These are included in theconfigto ensure their values remain unchanged and are not replaced with defaults.ticket- Support ticket entity, if patient is assigned, null otherwise.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/restore-factory-reset" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/restore-factory-reset"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"config": {
"common": {
"inputSite": [
1
],
"generalHandSettings": false,
"batteryBeep": [
1,
0
],
"emgGains": false,
"autoGrasp": false
},
"modes": [
{
"id": 1,
"name": "Mode 0",
"slot": 0,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
},
{
"id": 1530,
"name": "Mode 1",
"slot": 1,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
},
{
"id": 1531,
"name": "Mode 2",
"slot": 2,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
}
]
},
"not_modified": {
"common": {
"inputSite": [
1
],
"batteryBeep": [
1,
0
],
"generalHandSettings": [
1,
2,
3,
4
]
},
"modes": [
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
},
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
},
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
}
]
},
"ticket": {
"id": 1,
"sender_id": 1,
"recipient_id": 2,
"device_id": 1,
"meeting_date": "2025-07-22T15:00:00.000000Z",
"meeting_type": "none",
"contact_email": null,
"status": "new",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z",
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 1,
"title": "New config update",
"content": "",
"is_read": false,
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z",
"attachments": [
{
"id": 6629,
"ticket_id": 12973,
"ticket_message_id": 6517,
"type": "json",
"title": "Current config",
"attachment": "{\"common\":{},\"modes\":[{\"id\":1,\"name\":\"Mode 0\",\"slot\":0,\"config\":{}},{\"id\":2,\"name\":\"Mode 1\",\"slot\":1,\"config\":{}},{\"id\":3,\"name\":\"Mode 2\",\"slot\":2,\"config\":{}}]}",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z"
},
{
"id": 6630,
"ticket_id": 12973,
"ticket_message_id": 6517,
"type": "json",
"title": "New config",
"attachment": "{\"common\":{},\"modes\":[{\"id\":1,\"name\":\"Mode 0\",\"slot\":0,\"config\":{}},{\"id\":2,\"name\":\"Mode 1\",\"slot\":1,\"config\":{}},{\"id\":3,\"name\":\"Mode 2\",\"slot\":2,\"config\":{}}]}",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z"
}
]
}
]
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:RESTORE_FACTORY_RESET:INSUFFICIENT_PERMISSION"
}
Example response (403, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:RESTORE_FACTORY_RESET:NO_RESTORE_POINT"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:RESTORE_FACTORY_RESET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send test config
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"description\": \"Fixed problem with grips.\",
\"p2p_session\": 1,
\"updateConfig\": false,
\"common\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\",
\"modes\": [
{
\"id\": 1,
\"config\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"description": "Fixed problem with grips.",
"p2p_session": 1,
"updateConfig": false,
"common": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]",
"modes": [
{
"id": 1,
"config": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]"
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 7,
"sender_id": 64,
"recipient_id": 65,
"device_id": null,
"meeting_date": "2026-05-07 15:31:35",
"meeting_type": "online_meeting",
"contact_email": "fklocko@kreiger.com",
"status": "new",
"created_at": "2026-05-07T15:31:36.000000Z",
"updated_at": "2026-05-07T15:31:36.000000Z",
"sender": {
"id": 64,
"mrn": "B2X5HQXS1778167894",
"name": "Bobbie McGlynn",
"email": "1778167894wisozk.onie@example.com",
"language": "en",
"phone": "580-413-3586",
"phone_country": "GI",
"phone_verified_at": null,
"address1": "2066 Lyla Club Apt. 595",
"address2": "Medhurstshire, TN 66960-0524",
"postal_code": "70885",
"city": "Dooley-Russel",
"country": "CZ",
"clinic_name": "New Hardy",
"clinic_location": "7594 Jaylen Ford Apt. 687\nWest Dell, VT 15879-5250",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:35.000000Z",
"updated_at": "2026-05-07T15:31:35.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 65,
"mrn": "BADRZ2551778167895",
"name": "Dr. Marquis Lesch III",
"email": "1778167895blair70@example.com",
"language": "en",
"phone": "+1 (973) 510-3423",
"phone_country": "ML",
"phone_verified_at": null,
"address1": "18842 Marcella Track",
"address2": "Finnmouth, CO 96959",
"postal_code": "93221",
"city": "Rogahn, Beatty and Gleason",
"country": "PL",
"clinic_name": "Port Spencer",
"clinic_location": "5419 Adelle River Apt. 854\nHandview, MT 93086-7217",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:35.000000Z",
"updated_at": "2026-05-07T15:31:35.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 4,
"ticket_id": 7,
"sender_id": 66,
"title": "Mrs.",
"content": "Dolores vel sed repellat.",
"is_read": false,
"created_at": "2026-05-07T15:31:37.000000Z",
"updated_at": "2026-05-07T15:31:37.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:SEND:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:SEND:DEVICE_NOT_FOUND"
}
Example response (422, Device does not have an amputee assigned):
{
"message": "Device does not have an amputee assigned",
"code": "CONFIG:SEND:NO_PATIENT"
}
Example response (422, Invalid P2P session):
{
"message": "Invalid P2P session",
"code": "CONFIG:SEND:INVALID_P2P_SESSION"
}
Example response (422, Invalid config):
{
"message": "Config has some problems and cannot be saved.",
"errors": {
"modes": {
"mode_3": "Config mode 3 does not belong to device 12."
},
"values": {
"common.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"common.gripsPositions.1.initial": "Invalid value [200,\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values.",
"mode_1.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"mode_1.gripsPositions.0.initial": "Invalid value [\"200\",\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values."
}
},
"code": "CONFIG:SEND:INVALID_CONFIG"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Convert config
requires authentication
Convert config JSON to match given Firmware Version. Keys are moved between common config and modes.
Example request:
curl --request POST \
"http://localhost:8000/api/config/convert" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"config\": \"[\\\"optio\\\",\\\"voluptatum\\\"]\",
\"firmware\": 1
}"
const url = new URL(
"http://localhost:8000/api/config/convert"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"config": "[\"optio\",\"voluptatum\"]",
"firmware": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:CONVERT:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG:CONVERT:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Demo
API endpoints for managing config demos
List config demos
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/demos?accepted=6" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/demos"
);
const params = {
"accepted": "6",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": null,
"device_id": 72,
"message_id": 8,
"config": "Sed est rem ut nam maxime.",
"is_accepted": 0,
"notes": "Occaecati nihil nihil consequuntur et velit neque.",
"created_at": "2026-05-07T15:31:48.000000Z",
"updated_at": "2026-05-07T15:31:48.000000Z",
"message": {
"id": 8,
"ticket_id": 15,
"sender_id": 87,
"title": "Prof.",
"content": "Qui impedit accusantium distinctio assumenda.",
"is_read": false,
"created_at": "2026-05-07T15:31:48.000000Z",
"updated_at": "2026-05-07T15:31:48.000000Z"
}
},
{
"id": 2,
"user_id": null,
"device_id": 73,
"message_id": 10,
"config": "Dolores nesciunt recusandae et.",
"is_accepted": 1,
"notes": "Et voluptatem voluptatibus est ratione qui accusantium minima.",
"created_at": "2026-05-07T15:31:51.000000Z",
"updated_at": "2026-05-07T15:31:51.000000Z",
"message": {
"id": 10,
"ticket_id": 18,
"sender_id": 92,
"title": "Mr.",
"content": "Eos sit ex officia voluptate laboriosam molestiae perspiciatis.",
"is_read": false,
"created_at": "2026-05-07T15:31:51.000000Z",
"updated_at": "2026-05-07T15:31:51.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config demos",
"code": "CONFIG_DEMO:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_DEMO:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update config demo
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/config/demos/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"is_accepted\": false,
\"notes\": \"Something is still not working\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/demos/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"is_accepted": false,
"notes": "Something is still not working"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"user_id": null,
"device_id": 74,
"message_id": 11,
"config": "Occaecati et voluptate qui error sunt vitae dolores.",
"is_accepted": 0,
"notes": "Eius in quia reprehenderit delectus.",
"created_at": "2026-05-07T15:31:52.000000Z",
"updated_at": "2026-05-07T15:31:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config demos",
"code": "CONFIG_DEMO:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_DEMO:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config demo not found):
{
"message": "Config demo not found",
"code": "CONFIG_DEMO:UPDATE:DEMO_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Modes
API endpoints for managing config modes
List config modes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config-modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 72,
"device_id": 103,
"slot": null,
"name": "Voluptatum omnis velit quidem.",
"active": 1,
"created_at": "2026-05-07T15:31:58.000000Z",
"updated_at": "2026-05-07T15:31:58.000000Z",
"device": {
"id": 103,
"serial": "0b7b3a3e-e87c-3bb7-bf0c-4113e796c0da",
"bluetooth_id": "c94166bc-f6e5-3c25-8136-1d501aa4a339",
"company_id": null,
"model_id": null,
"amputee_id": 105,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:58.000000Z",
"updated_at": "2026-05-07T15:31:58.000000Z",
"amputee": {
"id": 105,
"mrn": "9KHNRBW41778167918",
"name": "Josue Kiehn MD",
"email": "1778167918bpaucek@example.org",
"language": "en",
"phone": "1-458-839-5301",
"phone_country": "SL",
"phone_verified_at": null,
"address1": "888 Deckow Heights",
"address2": "Port Lambert, RI 60588-9149",
"postal_code": "58474-1659",
"city": "Abshire Group",
"country": "US",
"clinic_name": "Stantonborough",
"clinic_location": "5613 Isadore Hollow\nElmiratown, NV 05525-3857",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:58.000000Z",
"updated_at": "2026-05-07T15:31:58.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
},
{
"id": 73,
"device_id": 105,
"slot": null,
"name": "Nihil amet eum odit quis voluptas accusamus voluptas.",
"active": 0,
"created_at": "2026-05-07T15:31:59.000000Z",
"updated_at": "2026-05-07T15:31:59.000000Z",
"config": {}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config modes",
"code": "CONFIG_MODES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get config mode
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config-modes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 74,
"device_id": 106,
"slot": null,
"name": "Aut qui cumque molestiae recusandae.",
"active": 0,
"created_at": "2026-05-07T15:31:59.000000Z",
"updated_at": "2026-05-07T15:31:59.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config modes",
"code": "CONFIG_MODES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:GET:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:GET:MODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create config mode
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config-modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"slot\": 0,
\"name\": \"Sport mode\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config-modes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"slot": 0,
"name": "Sport mode",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 75,
"device_id": 107,
"slot": null,
"name": "In molestias aliquam velit et ut.",
"active": 1,
"created_at": "2026-05-07T15:31:59.000000Z",
"updated_at": "2026-05-07T15:31:59.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create config modes",
"code": "CONFIG_MODES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:CREATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update config mode
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/config-modes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"slot\": 0,
\"name\": \"Sport mode\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"slot": 0,
"name": "Sport mode",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 76,
"device_id": 108,
"slot": null,
"name": "Eum qui facere officia corrupti ipsam similique.",
"active": 0,
"created_at": "2026-05-07T15:31:59.000000Z",
"updated_at": "2026-05-07T15:31:59.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config mode",
"code": "CONFIG_MODES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:UPDATE:MODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Copy device config from template
requires authentication
Copy config template into selected config mode. Sends support ticket if patient is assigned to device, returns config instead.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config-modes/1/from-template/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1/from-template/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, Patient not assigned, returns config):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (202):
{
"id": 21,
"sender_id": 107,
"recipient_id": 108,
"device_id": null,
"meeting_date": "2026-05-07 15:31:59",
"meeting_type": "online_meeting",
"contact_email": "sigmund.rosenbaum@johnson.com",
"status": "new",
"created_at": "2026-05-07T15:32:00.000000Z",
"updated_at": "2026-05-07T15:32:00.000000Z",
"sender": {
"id": 107,
"mrn": "3RJXM3QC1778167919",
"name": "Kaylie Kiehn DVM",
"email": "1778167919bcollins@example.com",
"language": "en",
"phone": "801-976-2290",
"phone_country": "NP",
"phone_verified_at": null,
"address1": "6296 O'Conner Cove",
"address2": "North Casandraport, CT 75911-7003",
"postal_code": "86094-1379",
"city": "Orn Ltd",
"country": "NL",
"clinic_name": "Port Darrelville",
"clinic_location": "5720 Osinski Rue Apt. 976\nConsueloburgh, MA 84696-0717",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:59.000000Z",
"updated_at": "2026-05-07T15:31:59.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 108,
"mrn": "7NPPEJUH1778167919",
"name": "Prof. Eve Goyette",
"email": "1778167919willy.blick@example.org",
"language": "en",
"phone": "737-281-4572",
"phone_country": "SJ",
"phone_verified_at": null,
"address1": "37000 Tad Trail",
"address2": "Leuschkestad, KS 48133",
"postal_code": "28955-6790",
"city": "Langworth Ltd",
"country": "CY",
"clinic_name": "Quintenborough",
"clinic_location": "296 Bruen Centers\nBartolettiberg, NY 42738",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:59.000000Z",
"updated_at": "2026-05-07T15:31:59.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 12,
"ticket_id": 21,
"sender_id": 109,
"title": "Dr.",
"content": "Eum et accusamus rem ut aliquid.",
"is_read": false,
"created_at": "2026-05-07T15:32:01.000000Z",
"updated_at": "2026-05-07T15:32:01.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config mode",
"code": "CONFIG_MODES:COPY_TEMPLATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:MODE_NOT_FOUND"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Config Notes
API endpoints for config history notes
Get config entry notes list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/1/notes?user=1&type=public" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes"
);
const params = {
"user": "1",
"type": "public",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"config_history_id": 7,
"user_id": 76,
"note": "Ut facilis in nobis.",
"type": "public",
"created_at": "2026-05-07T15:31:42.000000Z",
"updated_at": "2026-05-07T15:31:42.000000Z",
"author": {
"id": 76,
"mrn": "ZYDWYUNM1778167901",
"name": "Nettie Hane",
"email": "1778167901amie.marks@example.org",
"language": "en",
"phone": "+1 (267) 679-5610",
"phone_country": "PR",
"phone_verified_at": null,
"address1": "66391 Jacobs Harbor",
"address2": "West Virginietown, LA 26140",
"postal_code": "63799-4562",
"city": "Jacobson-Leannon",
"country": "GR",
"clinic_name": "Blockberg",
"clinic_location": "53061 Ellie Parks\nPort Leestad, WV 14710-1080",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:41.000000Z",
"updated_at": "2026-05-07T15:31:41.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"config_history_id": 8,
"user_id": 78,
"note": "Qui animi eveniet molestiae beatae dolorem provident.",
"type": "public",
"created_at": "2026-05-07T15:31:43.000000Z",
"updated_at": "2026-05-07T15:31:43.000000Z",
"author": {
"id": 78,
"mrn": "L7CBZR5D1778167902",
"name": "Dr. Brandon Watsica IV",
"email": "1778167902opal.nicolas@example.com",
"language": "en",
"phone": "580.524.1021",
"phone_country": "RS",
"phone_verified_at": null,
"address1": "7934 Baumbach Fields Suite 135",
"address2": "East Aureliaton, NC 64328-4020",
"postal_code": "25187",
"city": "Pollich-Reichel",
"country": "FI",
"clinic_name": "South Maximeside",
"clinic_location": "7408 O'Hara Unions Apt. 576\nWest Westonborough, NC 98646",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:43.000000Z",
"updated_at": "2026-05-07T15:31:43.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config notes",
"code": "CONFIG_NOTES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:LIST:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:LIST:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Note ID.
config_history_id
integer
Associated config history entry ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
type
string
Note visibility.
Must be one of:publicprivate
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get config entry note
requires authentication
Returns single config history entry note in response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"config_history_id": 9,
"user_id": 80,
"note": "Optio quo veritatis enim laboriosam magni.",
"type": "public",
"created_at": "2026-05-07T15:31:44.000000Z",
"updated_at": "2026-05-07T15:31:44.000000Z",
"author": {
"id": 80,
"mrn": "LMZP6XD41778167904",
"name": "Kathlyn Orn I",
"email": "1778167904trystan.reilly@example.com",
"language": "en",
"phone": "+12816729176",
"phone_country": "MP",
"phone_verified_at": null,
"address1": "86703 Dorthy Island Apt. 483",
"address2": "Flatleyside, MN 90941-5678",
"postal_code": "05498",
"city": "Witting, Hyatt and Kutch",
"country": "SI",
"clinic_name": "Port Kirsten",
"clinic_location": "4280 Dell Road\nMaymieborough, OK 95002-7584",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:44.000000Z",
"updated_at": "2026-05-07T15:31:44.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config notes",
"code": "CONFIG_NOTES:GET_ENTRY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:GET_ENTRY:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:GET_ENTRY:HISTORY_ENTRY_NOT_FOUND"
}
Example response (404, Config history note not found):
{
"message": "Config history note not found",
"code": "CONFIG_NOTES:GET_ENTRY:HISTORY_NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Note ID.
config_history_id
integer
Associated config history entry ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
type
string
Note visibility.
Must be one of:publicprivate
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Create config entry note
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/1/notes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"note\": \"Quidem aspernatur aliquid soluta veniam explicabo repudiandae eaque.\",
\"type\": \"public\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"note": "Quidem aspernatur aliquid soluta veniam explicabo repudiandae eaque.",
"type": "public"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 4,
"config_history_id": 10,
"user_id": 82,
"note": "Et quae minus vitae soluta voluptatem.",
"type": "public",
"created_at": "2026-05-07T15:31:45.000000Z",
"updated_at": "2026-05-07T15:31:45.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add config notes",
"code": "CONFIG_NOTES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:CREATE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:CREATE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Note ID.
config_history_id
integer
Associated config history entry ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
type
string
Note visibility.
Must be one of:publicprivate
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Delete config note
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/config/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config history note deleted",
"code": "CONFIG_NOTES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config notes",
"code": "CONFIG_NOTES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:DELETE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:DELETE:HISTORY_ENTRY_NOT_FOUND"
}
Example response (404, Config history note not found):
{
"message": "Config history note not found",
"code": "CONFIG_NOTES:DELETE:HISTORY_NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Schema
API endpoints for config schema management
Get config schema
requires authentication
Returns list of config schema entries for given firmware version.
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/firmware/1/schema?filter=modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1/schema"
);
const params = {
"filter": "modes",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"firmware_id": 7,
"key": "repellendus",
"is_common": 0,
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
},
{
"id": 2,
"firmware_id": 9,
"key": "architecto",
"is_common": 1,
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view config schema",
"code": "CONFIG_SCHEMA:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:GET:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config schema ID.
firmware_id
integer
Associated firmware version ID.
key
string
Config schema key.
is_common
boolean
Whether this key is shared across all modes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
firmware
object
Associated firmware version.
Add config schema
requires authentication
Add one or many config schema entries. Each entry is one key in config. Body of this request is simple array of objects:
[
{"key": "key_name", "is_common": 1},
{"key": "another_name", "is_common": 0},
...
]
Example request:
curl --request POST \
"http://localhost:8000/api/versions/firmware/cumque/schema" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "[
{
\"key\": \"gripsPosition.0.initial\",
\"is_common\": 1
}
]"
const url = new URL(
"http://localhost:8000/api/versions/firmware/cumque/schema"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = [
{
"key": "gripsPosition.0.initial",
"is_common": 1
}
];
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"firmware_id": 11,
"key": "excepturi",
"is_common": 1,
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
},
{
"id": 4,
"firmware_id": 13,
"key": "et",
"is_common": 1,
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage config schema",
"code": "CONFIG_SCHEMA:ADD:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:ADD:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config schema ID.
firmware_id
integer
Associated firmware version ID.
key
string
Config schema key.
is_common
boolean
Whether this key is shared across all modes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
firmware
object
Associated firmware version.
Delete config schema
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/firmware/1/schema/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1/schema/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config schema entry deleted",
"code": "CONFIG_SCHEMA:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage config schema",
"code": "CONFIG_SCHEMA:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:DELETE:FIRMWARE_NOT_FOUND"
}
Example response (404, Config schema entry not found):
{
"message": "Config schema entry not found",
"code": "CONFIG_SCHEMA:DELETE:SCHEMA_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Templates
API endpoints for managing config templates
Get config templates list
requires authentication
Entries where author is present are private and owned by its author. Entries where author is null should be considered as global templates prepared by Aether team.
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates?search=sport&author=1&scope=me" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates"
);
const params = {
"search": "sport",
"author": "1",
"scope": "me",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Debitis enim dolor ea quia sit.",
"description": "Nisi dolor voluptates saepe.",
"author_id": 96,
"company_id": null,
"config": "{\"autoGrasp\":[0,100],\"coContractionTimings\":[300,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[40,90,50,0,10,30,50,90,30,20],\"gripPairsConfig\":[3,9,7,5,11,4,10,13],\"gripSequentialConfig\":[255,11,6,255,7,255,13,8,12,4,10,1],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,1500],\"pulseTimings\":[650,70,370,770],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-05-07T15:31:53.000000Z",
"updated_at": "2026-05-07T15:31:53.000000Z",
"author": {
"id": 96,
"mrn": "WSF57FPK1778167912",
"name": "Dr. Jerrell Adams DVM",
"email": "1778167912jkuphal@example.org",
"language": "en",
"phone": "1-732-636-7673",
"phone_country": "NC",
"phone_verified_at": null,
"address1": "867 Nitzsche Views Apt. 385",
"address2": "East Tatyanaville, SD 37684-8523",
"postal_code": "31292",
"city": "West, Wehner and Effertz",
"country": "CZ",
"clinic_name": "Ruthieborough",
"clinic_location": "3876 Hermiston Mall Suite 783\nLake Kevonstad, IN 84138-6341",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:52.000000Z",
"updated_at": "2026-05-07T15:31:52.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"name": "Quo porro blanditiis nobis dicta.",
"description": "In consequuntur est voluptas quisquam debitis sit delectus ducimus.",
"author_id": 97,
"company_id": null,
"config": "{\"autoGrasp\":[0,0],\"coContractionTimings\":[500,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[90,70,50,30,20,90,80,40,60,70],\"gripPairsConfig\":[11,2,10,3,9,12,7,4],\"gripSequentialConfig\":[255,5,9,11,1,255,10,3,8,12,2,4],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2000],\"pulseTimings\":[750,130,750,520],\"softGrip\":[1],\"speedControlStrategy\":[0]}",
"created_at": "2026-05-07T15:31:53.000000Z",
"updated_at": "2026-05-07T15:31:53.000000Z",
"author": {
"id": 97,
"mrn": "CUVSHQW61778167913",
"name": "Prof. Vance Carter DDS",
"email": "1778167913wdonnelly@example.net",
"language": "en",
"phone": "+1-680-306-5393",
"phone_country": "LT",
"phone_verified_at": null,
"address1": "11584 Osinski Spur",
"address2": "East Rosalyn, SD 98848-1599",
"postal_code": "56855-3295",
"city": "Mohr, Gleichner and Reilly",
"country": "BG",
"clinic_name": "Beatricetown",
"clinic_location": "2556 Hermann Path Apt. 293\nWildermanside, OK 94607-8150",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:53.000000Z",
"updated_at": "2026-05-07T15:31:53.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config templates",
"code": "CONFIG_TEMPLATES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get config template
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"name": "Non explicabo molestiae alias consequuntur eligendi.",
"description": "Reiciendis laborum est sed quo voluptatum rem ratione.",
"author_id": 98,
"company_id": null,
"config": "{\"autoGrasp\":[1,0],\"coContractionTimings\":[300,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[40,50,50,30,90,20,20,20,100,20],\"gripPairsConfig\":[3,11,10,8,9,12,13,1],\"gripSequentialConfig\":[1,4,10,6,13,2,5,12,11,7,255,9],\"gripSwitchingMode\":[1],\"holdOpen\":[2000,2000],\"pulseTimings\":[170,60,270,540],\"softGrip\":[1],\"speedControlStrategy\":[1]}",
"created_at": "2026-05-07T15:31:54.000000Z",
"updated_at": "2026-05-07T15:31:54.000000Z",
"author": {
"id": 98,
"mrn": "M6N66YKG1778167913",
"name": "Oscar Sipes",
"email": "1778167913rjakubowski@example.org",
"language": "en",
"phone": "727-512-6706",
"phone_country": "NR",
"phone_verified_at": null,
"address1": "66005 Melba Lane",
"address2": "West Tyson, ID 79623",
"postal_code": "35448",
"city": "Hayes-Eichmann",
"country": "PT",
"clinic_name": "Schaeferland",
"clinic_location": "5913 Keith Ranch Suite 514\nKubview, VT 62885",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:54.000000Z",
"updated_at": "2026-05-07T15:31:54.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view config template",
"code": "CONFIG_TEMPLATES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:GET:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
Create new config template
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/config/templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Default config for Aether Zeus\",
\"description\": \"Description of the config template.\",
\"owner\": \"company\",
\"author\": 1,
\"config\": \"{\\\"param_1\\\": [100, 200], \\\"param_2\\\": [100, 200, 300]}\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Default config for Aether Zeus",
"description": "Description of the config template.",
"owner": "company",
"author": 1,
"config": "{\"param_1\": [100, 200], \"param_2\": [100, 200, 300]}"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "In a non blanditiis ea.",
"description": "Voluptas labore harum vitae assumenda voluptatem.",
"author_id": 99,
"company_id": null,
"config": "{\"autoGrasp\":[0,0],\"coContractionTimings\":[400,200],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[40,70,40,20,90,80,20,60,60,0],\"gripPairsConfig\":[13,11,6,5,2,9,1,3],\"gripSequentialConfig\":[8,12,7,3,10,2,255,1,4,5,11,255],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,1500],\"pulseTimings\":[560,650,450,940],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-05-07T15:31:55.000000Z",
"updated_at": "2026-05-07T15:31:55.000000Z",
"author": {
"id": 99,
"mrn": "EN4DWA461778167914",
"name": "Angelica Walsh DDS",
"email": "1778167914ariel.stark@example.org",
"language": "en",
"phone": "909-588-7682",
"phone_country": "PS",
"phone_verified_at": null,
"address1": "3921 Schuppe Harbors",
"address2": "Torphyside, ND 88513",
"postal_code": "18075-3632",
"city": "Gutkowski LLC",
"country": "HR",
"clinic_name": "Rodrickton",
"clinic_location": "2220 Miguel Fords Suite 367\nNew Eldridgetown, IL 79194",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:54.000000Z",
"updated_at": "2026-05-07T15:31:54.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create config template",
"code": "CONFIG_TEMPLATES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
Update config template
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Default config for Aether Zeus\",
\"description\": \"Description of the config template.\",
\"owner\": \"company\",
\"author\": 1,
\"config\": \"{\\\"param_1\\\": [100, 200], \\\"param_2\\\": [100, 200, 300]}\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Default config for Aether Zeus",
"description": "Description of the config template.",
"owner": "company",
"author": 1,
"config": "{\"param_1\": [100, 200], \"param_2\": [100, 200, 300]}"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"name": "Quia quis vero doloremque sint quam quas reiciendis.",
"description": "Maiores qui assumenda reiciendis quam dolor rerum optio.",
"author_id": 100,
"company_id": null,
"config": "{\"autoGrasp\":[1,0],\"coContractionTimings\":[400,400],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[80,30,50,90,70,30,70,80,40,50],\"gripPairsConfig\":[4,5,10,8,1,9,3,2],\"gripSequentialConfig\":[255,255,13,255,8,4,2,11,7,6,255,255],\"gripSwitchingMode\":[2],\"holdOpen\":[2000,2500],\"pulseTimings\":[180,800,910,240],\"softGrip\":[0],\"speedControlStrategy\":[1]}",
"created_at": "2026-05-07T15:31:55.000000Z",
"updated_at": "2026-05-07T15:31:55.000000Z",
"author": {
"id": 100,
"mrn": "L5NFFMQ51778167915",
"name": "Miss Flossie Kihn MD",
"email": "1778167915alana.dickens@example.com",
"language": "en",
"phone": "(330) 233-6987",
"phone_country": "AL",
"phone_verified_at": null,
"address1": "5827 Schimmel River Apt. 935",
"address2": "Lubowitzborough, ND 14201-0139",
"postal_code": "25226-3197",
"city": "Yundt PLC",
"country": "PT",
"clinic_name": "West Reid",
"clinic_location": "8231 Treutel Gardens\nBayerport, LA 81456",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:55.000000Z",
"updated_at": "2026-05-07T15:31:55.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config template",
"code": "CONFIG_TEMPLATES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:UPDATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
Delete config template
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config template deleted",
"code": "CONFIG_TEMPLATES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config template",
"code": "CONFIG_TEMPLATES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:DELETE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Templates Notes
API endpoints for config templates notes
Get config templates notes list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1/notes?user=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes"
);
const params = {
"user": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"template_id": 6,
"user_id": 101,
"note": "Modi et veniam odio omnis aut.",
"created_at": "2026-05-07T15:31:56.000000Z",
"updated_at": "2026-05-07T15:31:56.000000Z",
"author": {
"id": 101,
"mrn": "SKR98RL91778167915",
"name": "Theodora Reynolds",
"email": "1778167915hammes.leone@example.org",
"language": "en",
"phone": "+1.631.733.3448",
"phone_country": "SA",
"phone_verified_at": null,
"address1": "302 Carrie Village",
"address2": "Mistybury, NY 67009",
"postal_code": "11089",
"city": "Lehner-Batz",
"country": "LV",
"clinic_name": "Korbinton",
"clinic_location": "3049 Frederik Greens\nNew Lomaburgh, AK 57778-0305",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:55.000000Z",
"updated_at": "2026-05-07T15:31:55.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"template_id": 7,
"user_id": 102,
"note": "Suscipit voluptatum et voluptatem est amet a unde dolor.",
"created_at": "2026-05-07T15:31:56.000000Z",
"updated_at": "2026-05-07T15:31:56.000000Z",
"author": {
"id": 102,
"mrn": "EEGPJT5B1778167916",
"name": "Terry Dare",
"email": "1778167916nullrich@example.org",
"language": "en",
"phone": "1-878-897-0769",
"phone_country": "ZW",
"phone_verified_at": null,
"address1": "22734 Breanne Forest Suite 945",
"address2": "Port Miltonland, MN 87392-0735",
"postal_code": "98743-9796",
"city": "Toy PLC",
"country": "IT",
"clinic_name": "East Raheem",
"clinic_location": "42971 Janie Road Suite 645\nGarnettside, NC 93137-9386",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:56.000000Z",
"updated_at": "2026-05-07T15:31:56.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:LIST:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Note ID.
template_id
integer
Associated config template ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get config template note
requires authentication
Returns single config template note in response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"template_id": 8,
"user_id": 103,
"note": "Adipisci reprehenderit distinctio numquam provident ea reiciendis.",
"created_at": "2026-05-07T15:31:57.000000Z",
"updated_at": "2026-05-07T15:31:57.000000Z",
"author": {
"id": 103,
"mrn": "D3M62WQZ1778167916",
"name": "Garland Boyer",
"email": "1778167916brionna47@example.com",
"language": "en",
"phone": "(479) 973-9048",
"phone_country": "IR",
"phone_verified_at": null,
"address1": "992 Brendan Bypass",
"address2": "Lake Jeremy, AZ 96409-3868",
"postal_code": "11690-4289",
"city": "Nienow, Roob and Pollich",
"country": "FR",
"clinic_name": "North Domenicaside",
"clinic_location": "638 Douglas Pass\nDaphneeton, IA 10896",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:56.000000Z",
"updated_at": "2026-05-07T15:31:56.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:GET:TEMPLATE_NOT_FOUND"
}
Example response (404, Config template note not found):
{
"message": "Config template note not found",
"code": "CONFIG_TEMPLATE_NOTES:GET:NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Note ID.
template_id
integer
Associated config template ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Create new config template note
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/config/templates/1/notes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"note\": \"Ut laboriosam harum doloremque.\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates/1/notes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"note": "Ut laboriosam harum doloremque."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"template_id": 9,
"user_id": 104,
"note": "Blanditiis veritatis ut eum perferendis sapiente totam.",
"created_at": "2026-05-07T15:31:57.000000Z",
"updated_at": "2026-05-07T15:31:57.000000Z",
"author": {
"id": 104,
"mrn": "KJ4KAZ2L1778167917",
"name": "Marion Kshlerin",
"email": "1778167917thaddeus82@example.org",
"language": "en",
"phone": "1-567-944-6596",
"phone_country": "MA",
"phone_verified_at": null,
"address1": "3392 Jacobi Fall Suite 909",
"address2": "Connerburgh, WY 72507",
"postal_code": "09997-8277",
"city": "Langosh-Cummings",
"country": "GB",
"clinic_name": "West Makaylaborough",
"clinic_location": "84920 Fahey Track Suite 360\nNew Madgeburgh, FL 60566",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:57.000000Z",
"updated_at": "2026-05-07T15:31:57.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:CREATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Note ID.
template_id
integer
Associated config template ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Delete config template note
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/config/templates/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config template note deleted",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:TEMPLATE_NOT_FOUND"
}
Example response (404, Config template note not found):
{
"message": "Config template note not found",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Custom Grips
API endpoints for custom grips management
List custom grips templates
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/custom-grips-templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/custom-grips-templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": 255,
"name": "lwuckert",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-05-07T15:33:22.000000Z",
"updated_at": "2026-05-07T15:33:22.000000Z"
},
{
"id": 2,
"user_id": 256,
"name": "shanny.wisoky",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-05-07T15:33:23.000000Z",
"updated_at": "2026-05-07T15:33:23.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Custom grip template ID.
user_id
integer
Owner user ID.
name
string
Template name.
initial_position
string
Initial finger positions.
limit_position
string
Limit finger positions.
active_fingers
string
Active fingers configuration.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create custom grip template
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/custom-grips-templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip Template 1\",
\"initial_position\": \"[50, 50, 50, 50, 50]\",
\"limit_position\": \"[900, 900, 900, 900, 900]\",
\"active_fingers\": \"[0, 1, 1, 1, 1]\"
}"
const url = new URL(
"http://localhost:8000/api/custom-grips-templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip Template 1",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"user_id": 257,
"name": "fwuckert",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-05-07T15:33:24.000000Z",
"updated_at": "2026-05-07T15:33:24.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip template name in use):
{
"message": "Custom grip template name already in use",
"code": "CUSTOM_GRIPS_TEMPLATES:CREATE:NAME_IN_USE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Custom grip template ID.
user_id
integer
Owner user ID.
name
string
Template name.
initial_position
string
Initial finger positions.
limit_position
string
Limit finger positions.
active_fingers
string
Active fingers configuration.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete custom grip template
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/custom-grips-templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/custom-grips-templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Custom grip deleted",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Custom grip template not found):
{
"message": "Custom grip template not found",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List custom grips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/custom-grips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/custom-grips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": null,
"device_id": 130,
"name": "boyer.audra",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-05-07T15:33:24.000000Z",
"updated_at": "2026-05-07T15:33:24.000000Z"
},
{
"id": 2,
"user_id": null,
"device_id": 131,
"name": "shields.wilfrid",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-05-07T15:33:24.000000Z",
"updated_at": "2026-05-07T15:33:24.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view custom grips",
"code": "CUSTOM_GRIPS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Custom grip ID.
device_id
integer
Associated device ID.
name
string
Custom grip name.
opposed
boolean
Whether the grip is opposed.
grip_number
integer
Grip slot number.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create custom grip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/custom-grips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip 1\",
\"opposed\": true,
\"grip_number\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/1/custom-grips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip 1",
"opposed": true,
"grip_number": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"user_id": null,
"device_id": 132,
"name": "nbarton",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-05-07T15:33:24.000000Z",
"updated_at": "2026-05-07T15:33:24.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip name in use):
{
"message": "Custom grip name already in use",
"code": "CUSTOM_GRIPS:CREATE:NAME_IN_USE"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:CREATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Custom grip ID.
device_id
integer
Associated device ID.
name
string
Custom grip name.
opposed
boolean
Whether the grip is opposed.
grip_number
integer
Grip slot number.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update custom grip
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/custom-grips/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip 1\",
\"opposed\": true,
\"grip_number\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/1/custom-grips/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip 1",
"opposed": true,
"grip_number": 1
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"user_id": null,
"device_id": 133,
"name": "swaniawski.miracle",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-05-07T15:33:24.000000Z",
"updated_at": "2026-05-07T15:33:24.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip name in use):
{
"message": "Custom grip name already in use",
"code": "CUSTOM_GRIPS:UPDATE:NAME_IN_USE"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Custom grip not found):
{
"message": "Custom grip not found",
"code": "CUSTOM_GRIPS:UPDATE:GRIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Custom grip ID.
device_id
integer
Associated device ID.
name
string
Custom grip name.
opposed
boolean
Whether the grip is opposed.
grip_number
integer
Grip slot number.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete custom grip
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/custom-grips/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/custom-grips/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Custom grip template deleted",
"code": "CUSTOM_GRIPS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:DELETE:DEVICE_NOT_FOUND"
}
Example response (404, Custom grip not found):
{
"message": "Custom grip not found",
"code": "CUSTOM_GRIPS:DELETE:GRIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Device Models
API endpoints for device models management
Get device models list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/devices/models?active=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/devices/models"
);
const params = {
"active": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "right",
"active": 1,
"created_at": "2026-05-07T15:31:17.000000Z",
"updated_at": "2026-05-07T15:31:17.000000Z"
},
{
"id": 4,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-05-07T15:31:17.000000Z",
"updated_at": "2026-05-07T15:31:17.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list device models",
"code": "DEVICE_MODELS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create device model
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/devices/models" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Zeus hand v1\",
\"type\": \"hand\",
\"orientation\": \"right\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/devices/models"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Zeus hand v1",
"type": "hand",
"orientation": "right",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "left",
"active": 1,
"created_at": "2026-05-07T15:31:17.000000Z",
"updated_at": "2026-05-07T15:31:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create device model",
"code": "DEVICE_MODELS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update device model
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/devices/models/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Zeus hand v1\",
\"type\": \"hand\",
\"orientation\": \"left\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/devices/models/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Zeus hand v1",
"type": "hand",
"orientation": "left",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 6,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "right",
"active": 1,
"created_at": "2026-05-07T15:31:17.000000Z",
"updated_at": "2026-05-07T15:31:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device model",
"code": "DEVICE_MODELS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device model not found):
{
"message": "Device model not found",
"code": "DEVICE_MODELS:UPDATE:MODEL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Devices
API endpoints for devices management
Check serial number or bluetooth ID
Public endpoint responding with status of given device serial number or bluetooth ID. If any of these numbers can be found in database, status will be true. Otherwise, status will be false (device does not exist).
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/check/S3R1AL-NUM83R" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"serial\"
}"
const url = new URL(
"http://localhost:8000/api/device/check/S3R1AL-NUM83R"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "serial"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"status": true
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get devices list
requires authentication
Possible extend options:
- model - device model details
- amputee - end-user assigned to device
- clinicians - list of clinicians assigned to the device
- firmwareVersion - device firmware version
- pcbVersion - PCB version
Example request:
curl --request GET \
--get "http://localhost:8000/api/devices?search=S3R1AL-NUM83R&active=-1&utee=1&clinician=1&model=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/devices"
);
const params = {
"search": "S3R1AL-NUM83R",
"active": "-1",
"amputee": "1",
"clinician": "1",
"model": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 5,
"serial": "33b95c44-ed24-3abd-bf99-e06dfc9b638b",
"bluetooth_id": "7692395a-5846-3b8c-99e8-41a977a5f51f",
"company_id": null,
"model_id": 7,
"amputee_id": 34,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:17.000000Z",
"updated_at": "2026-05-07T15:31:17.000000Z",
"model": {
"id": 7,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "left",
"active": 1,
"created_at": "2026-05-07T15:31:17.000000Z",
"updated_at": "2026-05-07T15:31:17.000000Z"
},
"amputee": {
"id": 34,
"mrn": "ZQPN98PL1778167877",
"name": "Albertha Bode MD",
"email": "1778167877vbeatty@example.org",
"language": "en",
"phone": "+1 (854) 715-7669",
"phone_country": "WF",
"phone_verified_at": null,
"address1": "319 Ron Point Suite 326",
"address2": "New Sigrid, IA 86562",
"postal_code": "59817",
"city": "Prosacco PLC",
"country": "IE",
"clinic_name": "Hansenland",
"clinic_location": "1778 Reichel Key Suite 550\nPort Mallie, TN 30894-4821",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:17.000000Z",
"updated_at": "2026-05-07T15:31:17.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 6,
"serial": "45bc566e-03f9-376d-a9d5-135f8889595c",
"bluetooth_id": "117b1dc9-0a3d-368e-bf29-566af664b70f",
"company_id": null,
"model_id": 8,
"amputee_id": 35,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:18.000000Z",
"updated_at": "2026-05-07T15:31:18.000000Z",
"model": {
"id": 8,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-05-07T15:31:17.000000Z",
"updated_at": "2026-05-07T15:31:17.000000Z"
},
"amputee": {
"id": 35,
"mrn": "DTFWAG731778167877",
"name": "Gage Schmeler",
"email": "1778167877waelchi.idell@example.net",
"language": "en",
"phone": "+1-770-413-7599",
"phone_country": "IT",
"phone_verified_at": null,
"address1": "897 Mathew Viaduct Suite 228",
"address2": "Lake Oceane, TX 17074-7165",
"postal_code": "35245-8795",
"city": "Gulgowski-McKenzie",
"country": "IT",
"clinic_name": "Kolbyland",
"clinic_location": "60577 Ella Island\nEast Arno, WI 96299",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:18.000000Z",
"updated_at": "2026-05-07T15:31:18.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list devices",
"code": "DEVICES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get device information
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 7,
"serial": "37d15a70-4966-37ca-943f-18236a34a0e4",
"bluetooth_id": "2bc95991-8f39-3719-aed8-d1c01758cafb",
"company_id": null,
"model_id": 9,
"amputee_id": 36,
"clinician_id": null,
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z",
"model": {
"id": 9,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "right",
"active": 1,
"created_at": "2026-05-07T15:31:18.000000Z",
"updated_at": "2026-05-07T15:31:18.000000Z"
},
"amputee": {
"id": 36,
"mrn": "KTFXQW3B1778167878",
"name": "Dr. Caleb Hudson Sr.",
"email": "1778167878odessa.kovacek@example.org",
"language": "en",
"phone": "636.304.7785",
"phone_country": "SG",
"phone_verified_at": null,
"address1": "658 Bobbie Radial",
"address2": "Mayerttown, CO 71740-8402",
"postal_code": "66329-5921",
"city": "Mante, Donnelly and Bergstrom",
"country": "IE",
"clinic_name": "Hellerborough",
"clinic_location": "73581 Hodkiewicz Branch\nLucasburgh, WI 07101",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:18.000000Z",
"updated_at": "2026-05-07T15:31:18.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"pcb_version": {
"id": 1,
"name": "5.66.68",
"hardware_id": "",
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z"
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:GET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Create new device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"serial\": \"S3R1AL-NUM83R\",
\"bluetooth_id\": \"BL0123456789\",
\"model_id\": 1,
\"amputee_id\": 1,
\"clinicians\": [
2
],
\"firmware_version_id\": 1,
\"pcb_version_id\": 1,
\"reverse_magnets\": false,
\"is_electrode\": false,
\"active\": true,
\"last_activity_at\": \"2022-08-15 12:00:00\"
}"
const url = new URL(
"http://localhost:8000/api/device"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"serial": "S3R1AL-NUM83R",
"bluetooth_id": "BL0123456789",
"model_id": 1,
"amputee_id": 1,
"clinicians": [
2
],
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": false,
"is_electrode": false,
"active": true,
"last_activity_at": "2022-08-15 12:00:00"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 8,
"serial": "ec8881bd-7c13-34a0-81c2-c3ca71ffbbc3",
"bluetooth_id": "26d0d258-a489-3b1a-8b97-063a4ffb451e",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create device",
"code": "DEVICES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Firmware has no schema):
{
"message": "Cannot create: firmware has no schema",
"code": "DEVICES:CREATE:NO_FIRMWARE_SCHEMA"
}
Example response (500, Server error):
{
"message": "Server error: device not created",
"code": "DEVICES:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Update device
requires authentication
Amputee of device can update only these fields:
serial, bluetooth_id, firmware_version_id, pcb_version_id
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"serial\": \"S3R1AL-NUM83R\",
\"bluetooth_id\": \"BL0123456789\",
\"model_id\": 1,
\"amputee_id\": 1,
\"clinicians\": [
2
],
\"firmware_version_id\": 1,
\"pcb_version_id\": 1,
\"reverse_magnets\": false,
\"is_electrode\": false,
\"active\": true,
\"last_activity_at\": \"2022-08-15 12:00:00\"
}"
const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"serial": "S3R1AL-NUM83R",
"bluetooth_id": "BL0123456789",
"model_id": 1,
"amputee_id": 1,
"clinicians": [
2
],
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": false,
"is_electrode": false,
"active": true,
"last_activity_at": "2022-08-15 12:00:00"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 9,
"serial": "c404ed5f-f105-3ef2-b85f-e842c9d05125",
"bluetooth_id": "05d52655-6860-3cfc-8003-56a24f15423b",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device",
"code": "DEVICES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Firmware has no schema):
{
"message": "Cannot update: firmware has no schema",
"code": "DEVICES:UPDATE:NO_FIRMWARE_SCHEMA"
}
Example response (403):
{
"message": "Cannot update: no clinicians left for patient relation",
"code": "DEVICES:UPDATE:NO_CLINICIANS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:UPDATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Delete device
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Device deleted",
"code": "DEVICES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete device",
"code": "DEVICES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DELETE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get device hashes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/hash" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/hash"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access device hashes",
"code": "DEVICES:GET_HASHES:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:GET_HASHES:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update device hashes
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/hash" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"hash_global\": \"123456789012345\",
\"hash_common_settings\": \"123456789012345\",
\"hash_common_grips\": \"123456789012345\",
\"hash_mode1\": \"123456789012345\",
\"hash_mode2\": \"123456789012345\",
\"hash_mode3\": \"123456789012345\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/hash"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access device hashes",
"code": "DEVICES:SET_HASHES:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:SET_HASHES:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Detach device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/detach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/detach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Device detached",
"code": "DEVICES:DETACH:DETACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to detach device",
"code": "DEVICES:DETACH:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DETACH:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Add device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/add/S3R1AL-NUM83R" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/add/S3R1AL-NUM83R"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 10,
"serial": "32461243-e7ec-3565-9cd2-2760bc406734",
"bluetooth_id": "aae65069-5c7b-34ae-874c-d0f9f7cc2527",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to assign devices with code",
"code": "DEVICES:ASSIGN:INSUFFICIENT_PERMISSION"
}
Example response (403, User reached the temporary limit of attached devices):
{
"message": "Reached the limit of assigned devices",
"code": "DEVICES:ASSIGN:LIMIT_REACHED"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:ASSIGN:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Connect device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/connect/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/connect/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Device connected",
"code": "DEVICES:CONNECT:CONNECTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:CONNECT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:CONNECT:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Disconnect device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/disconnect/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/disconnect/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Device disconnected",
"code": "DEVICES:DISCONNECT:DISCONNECTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:DISCONNECT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DISCONNECT:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Join devices
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/join/1/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"force\": false,
\"patient\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/join/1/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"force": false,
"patient": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 11,
"serial": "fc8b7695-b242-3fd3-ae86-d4b84efc4214",
"bluetooth_id": "b0a49efb-6c08-32d0-b0b1-ad3e75dd7503",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z",
"joined_devices": [
{
"id": 12,
"serial": "fe196153-d239-36b9-ade4-f1de92d1bd6e",
"bluetooth_id": "d86877ce-cbd5-3c41-a6ae-4a35f321e3e4",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z",
"pivot": {
"electrode_id": 11,
"device_id": 12,
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z"
}
}
],
"joined_electrodes": [
{
"id": 13,
"serial": "26963d66-5c60-3349-b590-fa4eb94c3d30",
"bluetooth_id": "43882850-d926-3ee9-8b26-0c0cf5c1b9e1",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z",
"pivot": {
"device_id": 11,
"electrode_id": 13,
"created_at": "2026-05-07T15:31:19.000000Z",
"updated_at": "2026-05-07T15:31:19.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to join devices",
"code": "DEVICES:JOIN:INSUFFICIENT_PERMISSION"
}
Example response (403, Device 2 has a patient assigned):
{
"message": "Device 2 has a patient assigned",
"code": "DEVICES:JOIN:DEVICE2_HAS_PATIENT"
}
Example response (403, Device already has an electrode joined):
{
"message": "Device already has an electrode joined",
"code": "DEVICES:JOIN:ALREADY_JOINED"
}
Example response (403, Server error):
{
"message": "Server error",
"code": "DEVICES:JOIN:SERVER_ERROR"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:JOIN:DEVICE_NOT_FOUND"
}
Example response (404, Device 1 cannot be an electrode):
{
"message": "Device 1 cannot be an electrode",
"code": "DEVICES:JOIN:INCORRECT_DEVICE1_TYPE"
}
Example response (404, Device 2 must be an electrode):
{
"message": "Device 1 must be an electrode",
"code": "DEVICES:JOIN:INCORRECT_DEVICE2_TYPE"
}
Example response (404, Both devices have no patient assigned):
{
"message": "Both devices have no patient assigned",
"code": "DEVICES:JOIN:NO_PATIENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Detach joined devices
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/unjoin/1/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/unjoin/1/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Devices unjoined",
"code": "DEVICES:UNJOIN:UNJOINED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to join devices",
"code": "DEVICES:UNJOIN:INSUFFICIENT_PERMISSION"
}
Example response (403, OK):
{
"message": "Devices are not joined",
"code": "DEVICES:UNJOIN:NOT_JOINED"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:UNJOIN:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create demo patient
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/dummy-patient" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/dummy-patient"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201, OK):
{
"email": "SERIAL@gmail.com",
"password": "Demo@123"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create dummy patient",
"code": "DEVICES:DUMMY_PATIENT:INSUFFICIENT_PERMISSION"
}
Example response (403, Device already has a patient):
{
"message": "Device already has a patient",
"code": "DEVICES:DUMMY_PATIENT:PATIENT_EXISTS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DUMMY_PATIENT:DEVICE_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: dummy patient not created",
"code": "DEVICES:DUMMY_PATIENT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Documents
API endpoints for documents management
List documents
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents?type=web" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents"
);
const params = {
"type": "web",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Speech-Language Pathologist",
"type": "mobile",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
},
{
"id": 2,
"name": "Order Filler",
"type": "mobile",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Document ID.
name
string
Document name.
type
string
Document target platform.
Must be one of:webmobile
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
versions
object[]
Document versions.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create document
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Privacy Policy\",
\"type\": \"web\"
}"
const url = new URL(
"http://localhost:8000/api/documents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Privacy Policy",
"type": "web"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "Security Systems Installer OR Fire Alarm Systems Installer",
"type": "mobile",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Document ID.
name
string
Document name.
type
string
Document target platform.
Must be one of:webmobile
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
versions
object[]
Document versions.
Delete document
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/documents/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Document deleted",
"code": "DOCUMENTS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Document has existing versions):
{
"message": "Cannot delete: document has existing versions (1)",
"code": "DOCUMENTS:DELETE:HAS_VERSIONS"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:DELETE:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List document versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents/1/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"document_id": null,
"index": 752,
"file": "http://www.wunsch.com/asperiores-numquam-totam-qui-nulla-et-et-aliquam",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
},
{
"id": 2,
"document_id": null,
"index": 24005,
"file": "http://www.aufderhar.com/nemo-eos-voluptas-dolore.html",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:LIST_VERSIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:LIST_VERSIONS:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Document version ID.
document_id
integer
Associated document ID.
index
integer
Version index number.
file
string
File path or URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
document
object
Parent document.
Create document version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents/1/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"file\": \"https:\\/\\/www.aetherbiomedical.com\\/privacy-policy\"
}"
const url = new URL(
"http://localhost:8000/api/documents/1/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"file": "https:\/\/www.aetherbiomedical.com\/privacy-policy"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"document_id": null,
"index": 8,
"file": "http://www.rosenbaum.org/sed-magnam-eum-ratione-suscipit-sequi.html",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:CREATE_VERSION:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:CREATE_VERSION:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Document version ID.
document_id
integer
Associated document ID.
index
integer
Version index number.
file
string
File path or URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
document
object
Parent document.
Delete document version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/documents/1/versions/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1/versions/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Document version deleted",
"code": "DOCUMENTS:DELETE_VERSION:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:DELETE_VERSION:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:DELETE_VERSION:DOCUMENT_NOT_FOUND"
}
Example response (404, Document version not found):
{
"message": "Document version not found",
"code": "DOCUMENTS:DELETE_VERSION:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get documents status
requires authentication
Any document on the list has to be accepted. Use POST /documents/accept endpoint to mark them as accepted once user agrees to that.
Empty list means that user is up-to-date with all required documents and nothing has to be accepted.
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents/status?type=web" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/status"
);
const params = {
"type": "web",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"documents": [],
"texts": {
"title": "Changes to the Privacy Policy",
"description": "Due to the addition of a new data processing entity, please familiarize yourself with and accept the new privacy policy",
"checkbox": "I declare that I have read the content of the Privacy Policy and the Terms and Conditions and accept their provisions. I understand that acceptance is a condition for using the application."
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view documents status",
"code": "DOCUMENTS:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Accept documents
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents/accept" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"documents\": [
1
]
}"
const url = new URL(
"http://localhost:8000/api/documents/accept"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"documents": [
1
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Accepted 1 document(s)",
"code": "DOCUMENTS:ACCEPT:ACCEPTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update documents status",
"code": "DOCUMENTS:ACCEPT:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Accept Terms of Service for patients
requires authentication
This endpoint does not save any information to the database. Its purpose is to make sure the patient will be saved in the HubSpot.
Example request:
curl --request POST \
"http://localhost:8000/api/documents/accept/tos" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/accept/tos"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Patients' \"Terms of Service\" accepted",
"code": "DOCUMENTS:ACCEPT_PATIENT_TOS:ACCEPTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to accept patients' \"Terms of Service\"",
"code": "DOCUMENTS:ACCEPT_PATIENT_TOS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Feature announcements
Endpoints related to feature announcements
List feature announcements
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feature-announcements" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feature-announcements"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Purple",
"notification_title": "ut-eum-ab.title",
"notification_body": "ut-eum-ab.body",
"created_at": "2026-05-07T15:34:03.000000Z",
"updated_at": "2026-05-07T15:34:03.000000Z"
},
{
"id": 2,
"name": "Plum",
"notification_title": "culpa-velit-similique.title",
"notification_body": "culpa-velit-similique.body",
"created_at": "2026-05-07T15:34:03.000000Z",
"updated_at": "2026-05-07T15:34:03.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create feature announcement
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feature-announcements" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Notification about 1.15 release\",
\"notification_title\": \"release_1.15.title\",
\"notification_body\": \"release_1.15.body\"
}"
const url = new URL(
"http://localhost:8000/api/feature-announcements"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Notification about 1.15 release",
"notification_title": "release_1.15.title",
"notification_body": "release_1.15.body"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "LightCoral",
"notification_title": "eveniet-ea.title",
"notification_body": "eveniet-ea.body",
"created_at": "2026-05-07T15:34:03.000000Z",
"updated_at": "2026-05-07T15:34:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update feature announcement
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/feature-announcements/6" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Notification about 1.15 release\",
\"notification_title\": \"release_1.15.title\",
\"notification_body\": \"release_1.15.body\"
}"
const url = new URL(
"http://localhost:8000/api/feature-announcements/6"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Notification about 1.15 release",
"notification_title": "release_1.15.title",
"notification_body": "release_1.15.body"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"name": "Olive",
"notification_title": "molestiae-asperiores-cum.title",
"notification_body": "molestiae-asperiores-cum.body",
"created_at": "2026-05-07T15:34:03.000000Z",
"updated_at": "2026-05-07T15:34:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Feature announcement not found):
{
"message": "Feature announcement not found",
"code": "FEATURE_ANNOUNCEMENTS:UPDATE:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete feature announcement
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/feature-announcements/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feature-announcements/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Feature announcement deleted",
"code": "FEATURE_ANNOUNCEMENTS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Feature announcement not found):
{
"message": "Feature announcement not found",
"code": "FEATURE_ANNOUNCEMENTS:DELETE:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send feature announcement
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feature-announcements/15/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feature-announcements/15/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Feature announcement sent",
"code": "FEATURE_ANNOUNCEMENTS:SEND:SENT"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:SEND:INSUFFICIENT_PERMISSION"
}
Example response (404, Feature announcement not found):
{
"message": "Feature announcement not found",
"code": "FEATURE_ANNOUNCEMENTS:SEND:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Feedback
Endpoints related to feedback collecting
Check feedback token
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA/check" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA/check"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"valid": true
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send feedback with token
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"contextual\",
\"trigger\": \"remote_session\",
\"rate\": 5,
\"description\": \"That was amazing!\",
\"skipped\": false,
\"training_day_id\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "contextual",
"trigger": "remote_session",
"rate": 5,
"description": "That was amazing!",
"skipped": false,
"training_day_id": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 6,
"type": "periodic",
"trigger": "new_config",
"platform": "web",
"rate": 4,
"description": "Laborum nobis dolor velit esse ut.",
"skipped": 0,
"training_day_id": null,
"created_at": "2026-05-07T15:31:00.000000Z",
"updated_at": "2026-05-07T15:31:00.000000Z"
}
Example response (403, Invalid token):
{
"message": "Invalid token",
"code": "FEEDBACK:SEND_WITH_TOKEN:INVALID_TOKEN"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Feedback ID.
user_id
integer
User who submitted the feedback.
type
string
Feedback type.
trigger
string
What triggered the feedback.
platform
string
Platform the feedback was submitted from.
rate
integer
Feedback rating.
description
string
Feedback description.
skipped
boolean
Whether the feedback was skipped.
training_day_id
integer
Associated training day ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get feedback status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": true,
"firmware_update": true,
"local_session": true,
"async_session": true,
"patient_create": false,
"clinician_invite": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to check feedback status",
"code": "FEEDBACK:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send feedback
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feedback" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"contextual\",
\"trigger\": \"remote_session\",
\"platform\": \"web\",
\"rate\": 5,
\"description\": \"That was amazing!\",
\"skipped\": false,
\"training_day_id\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "contextual",
"trigger": "remote_session",
"platform": "web",
"rate": 5,
"description": "That was amazing!",
"skipped": false,
"training_day_id": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 2,
"user_id": 306,
"type": "on_demand",
"trigger": "grip_change",
"platform": "mobile",
"rate": 3,
"description": "Quia qui sed hic quod sint deleniti eligendi.",
"skipped": 0,
"training_day_id": null,
"created_at": "2026-05-07T15:33:53.000000Z",
"updated_at": "2026-05-07T15:33:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to send feedback",
"code": "FEEDBACK:SEND:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Feedback ID.
user_id
integer
User who submitted the feedback.
type
string
Feedback type.
trigger
string
What triggered the feedback.
platform
string
Platform the feedback was submitted from.
rate
integer
Feedback rating.
description
string
Feedback description.
skipped
boolean
Whether the feedback was skipped.
training_day_id
integer
Associated training day ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Schedule feedback notification
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/schedule" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"trigger\": \"remote_session\"
}"
const url = new URL(
"http://localhost:8000/api/feedback/schedule"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"trigger": "remote_session"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"scheduled_at": "2026-04-13 12:00:00"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to schedule feedback notification",
"code": "FEEDBACK:SCHEDULE:INSUFFICIENT_PERMISSION"
}
Example response (403, Feedback with this trigger was already scheduled today):
{
"message": "Feedback with this trigger was already scheduled today",
"code": "FEEDBACK:SCHEDULE:ALREADY_SCHEDULED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List feedback
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 25,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"user_id": 307,
"type": "periodic",
"trigger": "firmware_update",
"platform": "web",
"rate": 4,
"description": "Adipisci praesentium optio aliquam nostrum fugiat id aliquam.",
"skipped": 0,
"training_day_id": null,
"created_at": "2026-05-07T15:33:54.000000Z",
"updated_at": "2026-05-07T15:33:54.000000Z"
},
{
"id": 4,
"user_id": 308,
"type": "periodic",
"trigger": "patient_create",
"platform": "web",
"rate": 3,
"description": "Est ut dolorem cupiditate asperiores consequatur.",
"skipped": 1,
"training_day_id": null,
"created_at": "2026-05-07T15:33:54.000000Z",
"updated_at": "2026-05-07T15:33:54.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list feedback",
"code": "FEEDBACK:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Feedback ID.
user_id
integer
User who submitted the feedback.
type
string
Feedback type.
trigger
string
What triggered the feedback.
platform
string
Platform the feedback was submitted from.
rate
integer
Feedback rating.
description
string
Feedback description.
skipped
boolean
Whether the feedback was skipped.
training_day_id
integer
Associated training day ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Export feedback to CSV
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/csv" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/csv"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, CSV file):
{
"file": "https://staging-us-east-2-aether-biomedical-s3-us-bucket.s3.us-east-2.amazonaws.com/feedback/feedback-1759228216.csv",
"expires": "2025-09-30 10:40:00"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to export feedback",
"code": "FEEDBACK:EXPORT_CSV:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get feedback cooldowns
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/cooldowns" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/cooldowns"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:GET_COOLDOWNS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update feedback cooldowns
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/feedback/cooldowns" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"remote_session\": 1,
\"local_session\": 1,
\"async_session\": 1,
\"patient_create\": 1,
\"clinician_invite\": 1,
\"firmware_update\": 1,
\"new_config\": 1,
\"grip_change\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback/cooldowns"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:UPDATE_COOLDOWNS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get feedback enabled
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/enabled" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/enabled"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": true,
"local_session": true,
"async_session": true,
"patient_create": true,
"clinician_invite": true,
"firmware_update": true,
"new_config": true,
"grip_change": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:GET_ENABLED:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Set feedback enabled
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/feedback/enabled" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"remote_session\": false,
\"local_session\": false,
\"async_session\": false,
\"patient_create\": false,
\"clinician_invite\": false,
\"firmware_update\": false,
\"new_config\": false,
\"grip_change\": false
}"
const url = new URL(
"http://localhost:8000/api/feedback/enabled"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"remote_session": false,
"local_session": false,
"async_session": false,
"patient_create": false,
"clinician_invite": false,
"firmware_update": false,
"new_config": false,
"grip_change": false
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"remote_session": true,
"local_session": true,
"async_session": true,
"patient_create": true,
"clinician_invite": true,
"firmware_update": true,
"new_config": true,
"grip_change": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:SET_ENABLED:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Feedback statistics
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/statistics" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/statistics"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"submitted": 100,
"skipped": 150,
"total": 250,
"average_rating": 4.76
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view feedback statistics",
"code": "FEEDBACK:STATISTICS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.GeoData
API endpoints for geodata
Get supported timezones list
Example request:
curl --request GET \
--get "http://localhost:8000/api/timezones" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/timezones"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
"Africa/Abidjan",
"Africa/Accra",
"Africa/Addis_Ababa",
"Africa/Algiers",
"Africa/Asmara",
"Africa/Bamako",
"Africa/Bangui",
"Africa/Banjul",
"Africa/Bissau",
"Africa/Blantyre",
"Africa/Brazzaville",
"Africa/Bujumbura",
"Africa/Cairo",
"Africa/Casablanca",
"Africa/Ceuta",
"Africa/Conakry",
"Africa/Dakar",
"Africa/Dar_es_Salaam",
"Africa/Djibouti",
"Africa/Douala",
"Africa/El_Aaiun",
"Africa/Freetown",
"Africa/Gaborone",
"Africa/Harare",
"Africa/Johannesburg",
"Africa/Juba",
"Africa/Kampala",
"Africa/Khartoum",
"Africa/Kigali",
"Africa/Kinshasa",
"Africa/Lagos",
"Africa/Libreville",
"Africa/Lome",
"Africa/Luanda",
"Africa/Lubumbashi",
"Africa/Lusaka",
"Africa/Malabo",
"Africa/Maputo",
"Africa/Maseru",
"Africa/Mbabane",
"Africa/Mogadishu",
"Africa/Monrovia",
"Africa/Nairobi",
"Africa/Ndjamena",
"Africa/Niamey",
"Africa/Nouakchott",
"Africa/Ouagadougou",
"Africa/Porto-Novo",
"Africa/Sao_Tome",
"Africa/Tripoli",
"Africa/Tunis",
"Africa/Windhoek",
"America/Adak",
"America/Anchorage",
"America/Anguilla",
"America/Antigua",
"America/Araguaina",
"America/Argentina/Buenos_Aires",
"America/Argentina/Catamarca",
"America/Argentina/Cordoba",
"America/Argentina/Jujuy",
"America/Argentina/La_Rioja",
"America/Argentina/Mendoza",
"America/Argentina/Rio_Gallegos",
"America/Argentina/Salta",
"America/Argentina/San_Juan",
"America/Argentina/San_Luis",
"America/Argentina/Tucuman",
"America/Argentina/Ushuaia",
"America/Aruba",
"America/Asuncion",
"America/Atikokan",
"America/Bahia",
"America/Bahia_Banderas",
"America/Barbados",
"America/Belem",
"America/Belize",
"America/Blanc-Sablon",
"America/Boa_Vista",
"America/Bogota",
"America/Boise",
"America/Cambridge_Bay",
"America/Campo_Grande",
"America/Cancun",
"America/Caracas",
"America/Cayenne",
"America/Cayman",
"America/Chicago",
"America/Chihuahua",
"America/Costa_Rica",
"America/Creston",
"America/Cuiaba",
"America/Curacao",
"America/Danmarkshavn",
"America/Dawson",
"America/Dawson_Creek",
"America/Denver",
"America/Detroit",
"America/Dominica",
"America/Edmonton",
"America/Eirunepe",
"America/El_Salvador",
"America/Fort_Nelson",
"America/Fortaleza",
"America/Glace_Bay",
"America/Goose_Bay",
"America/Grand_Turk",
"America/Grenada",
"America/Guadeloupe",
"America/Guatemala",
"America/Guayaquil",
"America/Guyana",
"America/Halifax",
"America/Havana",
"America/Hermosillo",
"America/Indiana/Indianapolis",
"America/Indiana/Knox",
"America/Indiana/Marengo",
"America/Indiana/Petersburg",
"America/Indiana/Tell_City",
"America/Indiana/Vevay",
"America/Indiana/Vincennes",
"America/Indiana/Winamac",
"America/Inuvik",
"America/Iqaluit",
"America/Jamaica",
"America/Juneau",
"America/Kentucky/Louisville",
"America/Kentucky/Monticello",
"America/Kralendijk",
"America/La_Paz",
"America/Lima",
"America/Los_Angeles",
"America/Lower_Princes",
"America/Maceio",
"America/Managua",
"America/Manaus",
"America/Marigot",
"America/Martinique",
"America/Matamoros",
"America/Mazatlan",
"America/Menominee",
"America/Merida",
"America/Metlakatla",
"America/Mexico_City",
"America/Miquelon",
"America/Moncton",
"America/Monterrey",
"America/Montevideo",
"America/Montserrat",
"America/Nassau",
"America/New_York",
"America/Nipigon",
"America/Nome",
"America/Noronha",
"America/North_Dakota/Beulah",
"America/North_Dakota/Center",
"America/North_Dakota/New_Salem",
"America/Nuuk",
"America/Ojinaga",
"America/Panama",
"America/Pangnirtung",
"America/Paramaribo",
"America/Phoenix",
"America/Port-au-Prince",
"America/Port_of_Spain",
"America/Porto_Velho",
"America/Puerto_Rico",
"America/Punta_Arenas",
"America/Rainy_River",
"America/Rankin_Inlet",
"America/Recife",
"America/Regina",
"America/Resolute",
"America/Rio_Branco",
"America/Santarem",
"America/Santiago",
"America/Santo_Domingo",
"America/Sao_Paulo",
"America/Scoresbysund",
"America/Sitka",
"America/St_Barthelemy",
"America/St_Johns",
"America/St_Kitts",
"America/St_Lucia",
"America/St_Thomas",
"America/St_Vincent",
"America/Swift_Current",
"America/Tegucigalpa",
"America/Thule",
"America/Thunder_Bay",
"America/Tijuana",
"America/Toronto",
"America/Tortola",
"America/Vancouver",
"America/Whitehorse",
"America/Winnipeg",
"America/Yakutat",
"America/Yellowknife",
"Antarctica/Casey",
"Antarctica/Davis",
"Antarctica/DumontDUrville",
"Antarctica/Macquarie",
"Antarctica/Mawson",
"Antarctica/McMurdo",
"Antarctica/Palmer",
"Antarctica/Rothera",
"Antarctica/Syowa",
"Antarctica/Troll",
"Antarctica/Vostok",
"Arctic/Longyearbyen",
"Asia/Aden",
"Asia/Almaty",
"Asia/Amman",
"Asia/Anadyr",
"Asia/Aqtau",
"Asia/Aqtobe",
"Asia/Ashgabat",
"Asia/Atyrau",
"Asia/Baghdad",
"Asia/Bahrain",
"Asia/Baku",
"Asia/Bangkok",
"Asia/Barnaul",
"Asia/Beirut",
"Asia/Bishkek",
"Asia/Brunei",
"Asia/Chita",
"Asia/Choibalsan",
"Asia/Colombo",
"Asia/Damascus",
"Asia/Dhaka",
"Asia/Dili",
"Asia/Dubai",
"Asia/Dushanbe",
"Asia/Famagusta",
"Asia/Gaza",
"Asia/Hebron",
"Asia/Ho_Chi_Minh",
"Asia/Hong_Kong",
"Asia/Hovd",
"Asia/Irkutsk",
"Asia/Jakarta",
"Asia/Jayapura",
"Asia/Jerusalem",
"Asia/Kabul",
"Asia/Kamchatka",
"Asia/Karachi",
"Asia/Kathmandu",
"Asia/Khandyga",
"Asia/Kolkata",
"Asia/Krasnoyarsk",
"Asia/Kuala_Lumpur",
"Asia/Kuching",
"Asia/Kuwait",
"Asia/Macau",
"Asia/Magadan",
"Asia/Makassar",
"Asia/Manila",
"Asia/Muscat",
"Asia/Nicosia",
"Asia/Novokuznetsk",
"Asia/Novosibirsk",
"Asia/Omsk",
"Asia/Oral",
"Asia/Phnom_Penh",
"Asia/Pontianak",
"Asia/Pyongyang",
"Asia/Qatar",
"Asia/Qostanay",
"Asia/Qyzylorda",
"Asia/Riyadh",
"Asia/Sakhalin",
"Asia/Samarkand",
"Asia/Seoul",
"Asia/Shanghai",
"Asia/Singapore",
"Asia/Srednekolymsk",
"Asia/Taipei",
"Asia/Tashkent",
"Asia/Tbilisi",
"Asia/Tehran",
"Asia/Thimphu",
"Asia/Tokyo",
"Asia/Tomsk",
"Asia/Ulaanbaatar",
"Asia/Urumqi",
"Asia/Ust-Nera",
"Asia/Vientiane",
"Asia/Vladivostok",
"Asia/Yakutsk",
"Asia/Yangon",
"Asia/Yekaterinburg",
"Asia/Yerevan",
"Atlantic/Azores",
"Atlantic/Bermuda",
"Atlantic/Canary",
"Atlantic/Cape_Verde",
"Atlantic/Faroe",
"Atlantic/Madeira",
"Atlantic/Reykjavik",
"Atlantic/South_Georgia",
"Atlantic/St_Helena",
"Atlantic/Stanley",
"Australia/Adelaide",
"Australia/Brisbane",
"Australia/Broken_Hill",
"Australia/Darwin",
"Australia/Eucla",
"Australia/Hobart",
"Australia/Lindeman",
"Australia/Lord_Howe",
"Australia/Melbourne",
"Australia/Perth",
"Australia/Sydney",
"Europe/Amsterdam",
"Europe/Andorra",
"Europe/Astrakhan",
"Europe/Athens",
"Europe/Belgrade",
"Europe/Berlin",
"Europe/Bratislava",
"Europe/Brussels",
"Europe/Bucharest",
"Europe/Budapest",
"Europe/Busingen",
"Europe/Chisinau",
"Europe/Copenhagen",
"Europe/Dublin",
"Europe/Gibraltar",
"Europe/Guernsey",
"Europe/Helsinki",
"Europe/Isle_of_Man",
"Europe/Istanbul",
"Europe/Jersey",
"Europe/Kaliningrad",
"Europe/Kiev",
"Europe/Kirov",
"Europe/Lisbon",
"Europe/Ljubljana",
"Europe/London",
"Europe/Luxembourg",
"Europe/Madrid",
"Europe/Malta",
"Europe/Mariehamn",
"Europe/Minsk",
"Europe/Monaco",
"Europe/Moscow",
"Europe/Oslo",
"Europe/Paris",
"Europe/Podgorica",
"Europe/Prague",
"Europe/Riga",
"Europe/Rome",
"Europe/Samara",
"Europe/San_Marino",
"Europe/Sarajevo",
"Europe/Saratov",
"Europe/Simferopol",
"Europe/Skopje",
"Europe/Sofia",
"Europe/Stockholm",
"Europe/Tallinn",
"Europe/Tirane",
"Europe/Ulyanovsk",
"Europe/Uzhgorod",
"Europe/Vaduz",
"Europe/Vatican",
"Europe/Vienna",
"Europe/Vilnius",
"Europe/Volgograd",
"Europe/Warsaw",
"Europe/Zagreb",
"Europe/Zaporozhye",
"Europe/Zurich",
"Indian/Antananarivo",
"Indian/Chagos",
"Indian/Christmas",
"Indian/Cocos",
"Indian/Comoro",
"Indian/Kerguelen",
"Indian/Mahe",
"Indian/Maldives",
"Indian/Mauritius",
"Indian/Mayotte",
"Indian/Reunion",
"Pacific/Apia",
"Pacific/Auckland",
"Pacific/Bougainville",
"Pacific/Chatham",
"Pacific/Chuuk",
"Pacific/Easter",
"Pacific/Efate",
"Pacific/Fakaofo",
"Pacific/Fiji",
"Pacific/Funafuti",
"Pacific/Galapagos",
"Pacific/Gambier",
"Pacific/Guadalcanal",
"Pacific/Guam",
"Pacific/Honolulu",
"Pacific/Kanton",
"Pacific/Kiritimati",
"Pacific/Kosrae",
"Pacific/Kwajalein",
"Pacific/Majuro",
"Pacific/Marquesas",
"Pacific/Midway",
"Pacific/Nauru",
"Pacific/Niue",
"Pacific/Norfolk",
"Pacific/Noumea",
"Pacific/Pago_Pago",
"Pacific/Palau",
"Pacific/Pitcairn",
"Pacific/Pohnpei",
"Pacific/Port_Moresby",
"Pacific/Rarotonga",
"Pacific/Saipan",
"Pacific/Tahiti",
"Pacific/Tarawa",
"Pacific/Tongatapu",
"Pacific/Wake",
"Pacific/Wallis",
"UTC"
]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Goals
API endpoints for goals
The goals module consists of:
- exercises - predefined actions which should be performed by patient. Exercises can be managed only by SuperAdmin,
- goals - objectives defined for each patient which could consists of exercises, grips and grip switches,
- goal conditions - parts of the goal, single condition of type exercise, grips goal or switches goal.
List grips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/grips?model=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/grips"
);
const params = {
"model": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"number": 9331,
"name": "eum grip",
"description": null,
"opposed": 0,
"created_at": "2026-05-07T15:33:22.000000Z",
"updated_at": "2026-05-07T15:33:22.000000Z"
},
{
"id": 2,
"number": 1798,
"name": "modi grip",
"description": null,
"opposed": 0,
"created_at": "2026-05-07T15:33:22.000000Z",
"updated_at": "2026-05-07T15:33:22.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view grips",
"code": "GOALS:LIST_GRIPS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Grip ID.
number
integer
Grip number identifier.
name
string
Grip name.
description
string
Grip description.
opposed
boolean
Whether the grip is opposed.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
List exercises
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/exercises" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/exercises"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "exercises.Marcella Spur",
"description": "exercises.Tempore eos totam nobis eos perferendis.",
"icon": "😈",
"created_at": "2026-05-07T15:33:24.000000Z",
"updated_at": "2026-05-07T15:33:24.000000Z"
},
{
"id": 2,
"name": "exercises.Cornell Vista",
"description": "exercises.Quae mollitia qui quia provident non.",
"icon": "😐",
"created_at": "2026-05-07T15:33:24.000000Z",
"updated_at": "2026-05-07T15:33:24.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view exercises",
"code": "GOALS:LIST_EXERCISES:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Exercise ID.
name
string
Exercise name.
description
string
Exercise description.
icon
string
Exercise icon identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create exercise
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/exercises" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Water plants\",
\"description\": \"Use Tripod Close Grip and water your plants\",
\"icon\": \"🪴\"
}"
const url = new URL(
"http://localhost:8000/api/exercises"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Water plants",
"description": "Use Tripod Close Grip and water your plants",
"icon": "🪴"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "exercises.Ellsworth Neck",
"description": "exercises.Ut suscipit harum est non aut quia eum dolor.",
"icon": "😖",
"created_at": "2026-05-07T15:33:24.000000Z",
"updated_at": "2026-05-07T15:33:24.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:CREATE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Exercise ID.
name
string
Exercise name.
description
string
Exercise description.
icon
string
Exercise icon identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update exercise
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/exercises/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Water plants\",
\"description\": \"Use Tripod Close Grip and water your plants\",
\"icon\": \"🪴\"
}"
const url = new URL(
"http://localhost:8000/api/exercises/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Water plants",
"description": "Use Tripod Close Grip and water your plants",
"icon": "🪴"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"name": "exercises.Tiana Turnpike",
"description": "exercises.Explicabo nihil libero sequi perferendis aut consectetur.",
"icon": "😰",
"created_at": "2026-05-07T15:33:24.000000Z",
"updated_at": "2026-05-07T15:33:24.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:UPDATE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Example response (404, Exercise not found):
{
"message": "Exercise not found",
"code": "GOALS:UPDATE_EXERCISE:EXERCISE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Exercise ID.
name
string
Exercise name.
description
string
Exercise description.
icon
string
Exercise icon identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete exercise
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/exercises/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/exercises/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Exercise deleted",
"code": "GOALS:DELETE_EXERCISE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:DELETE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Example response (403, Exercise is used in goals):
{
"message": "Cannot delete: exercise is used in goals (1)",
"code": "GOALS:DELETE_EXERCISE:HAS_GOALS"
}
Example response (404, Exercise not found):
{
"message": "Exercise not found",
"code": "GOALS:DELETE_EXERCISE:EXERCISE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List user goals
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/goals?active=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals"
);
const params = {
"active": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"amputee_id": 258,
"clinician_id": 259,
"start_date": "2001-07-13",
"end_date": "1970-06-18",
"active": 0,
"created_at": "2026-05-07T15:33:25.000000Z",
"updated_at": "2026-05-07T15:33:25.000000Z"
},
{
"id": 2,
"amputee_id": 260,
"clinician_id": 261,
"start_date": "2007-05-01",
"end_date": "1987-03-01",
"active": 0,
"created_at": "2026-05-07T15:33:26.000000Z",
"updated_at": "2026-05-07T15:33:26.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user goals",
"code": "GOALS:LIST_GOALS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:LIST_GOALS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Goal ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
start_date
string
Goal start date.
end_date
string
Goal end date.
active
boolean
Whether the goal is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create user goal
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/goals" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"start_date\": \"2023-05-12\",
\"end_date\": \"2023-05-15\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"start_date": "2023-05-12",
"end_date": "2023-05-15",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"amputee_id": 262,
"clinician_id": 263,
"start_date": "1995-07-08",
"end_date": "2025-07-11",
"active": 0,
"created_at": "2026-05-07T15:33:27.000000Z",
"updated_at": "2026-05-07T15:33:27.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:CREATE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:CREATE_GOAL:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Goal ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
start_date
string
Goal start date.
end_date
string
Goal end date.
active
boolean
Whether the goal is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update user goal
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1/goals/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"start_date\": \"2023-05-12\",
\"end_date\": \"2023-05-15\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"start_date": "2023-05-12",
"end_date": "2023-05-15",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"amputee_id": 264,
"clinician_id": 265,
"start_date": "2024-10-03",
"end_date": "2014-10-28",
"active": 0,
"created_at": "2026-05-07T15:33:28.000000Z",
"updated_at": "2026-05-07T15:33:28.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:UPDATE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot activate ongoing goal):
{
"message": "Cannot activate ongoing goal",
"code": "GOALS:UPDATE_GOAL:GOAL_IS_ONGOING"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:UPDATE_GOAL:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:UPDATE_GOAL:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Goal ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
start_date
string
Goal start date.
end_date
string
Goal end date.
active
boolean
Whether the goal is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete user goal
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/goals/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Goal deleted",
"code": "GOALS:DELETE_GOAL:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:DELETE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot delete ongoing goal):
{
"message": "Cannot delete active ongoing goal",
"code": "GOALS:DELETE_GOAL:GOAL_IS_ONGOING"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:DELETE_GOAL:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:DELETE_GOAL:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List user goal conditions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/goals/1/conditions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"goal_id": 5,
"type": "switch",
"grip_id": 3,
"grips_frequency": "w",
"grips_count": 964,
"switches_frequency": "w",
"switches_count": 899,
"exercise_id": 5,
"exercise_frequency": "w",
"exercise_count": 3,
"created_at": "2026-05-07T15:33:29.000000Z",
"updated_at": "2026-05-07T15:33:29.000000Z"
},
{
"id": 2,
"goal_id": 6,
"type": "exercise",
"grip_id": 4,
"grips_frequency": "a",
"grips_count": 668,
"switches_frequency": "a",
"switches_count": 612,
"exercise_id": 6,
"exercise_frequency": "d",
"exercise_count": 4,
"created_at": "2026-05-07T15:33:30.000000Z",
"updated_at": "2026-05-07T15:33:30.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user goals",
"code": "GOALS:LIST_CONDITIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:LIST_CONDITIONS:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:LIST_CONDITIONS:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Goal condition ID.
goal_id
integer
Associated goal ID.
type
string
Condition type.
Must be one of:gripswitchexercise
grip_id
integer
Target grip ID.
grips_frequency
string
Grip frequency period.
Must be one of:dwma
grips_count
integer
Required grip count.
switches_frequency
string
Switch frequency period.
Must be one of:dwma
switches_count
integer
Required switch count.
exercise_id
integer
Target exercise ID.
exercise_frequency
string
Exercise frequency period.
Must be one of:dwm
exercise_count
integer
Required exercise count.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create user goal condition
requires authentication
Each goal condition could be one of type: grip, switch or exercise.
If goal condition is type of grip, fill only grip_id (optional), grips_frequency and grips_count.
If grip_id is null or missing, patient can perform any grip to fulfill objective.
If goal condition is type of switch, fill only switches_frequency and switches_count.
If goal condition is type of exercise, fill only exercise_id, exercise_frequency and exercise_count.
Restrictions:
- you can add one grip-any condition (
grip_id=null, any grip is counted) and many grip-specific conditions (for example: grip 1 - 100 times and grip 2 - 50 times), - all grips conditions must have same frequency (
grips_frequencyfield), - sum of grip-specific conditions (
grips_countfield) cannot be greater than grip-any condition for same goal - you can add only one switch condition for same goal,
- you can add multiple exercise conditions, but each exercise can be used only once.
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/goals/1/conditions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"grip\",
\"grip_id\": 1,
\"grips_frequency\": \"d\",
\"grips_count\": 100,
\"switches_frequency\": \"d\",
\"switches_count\": 100,
\"exercise_id\": 1,
\"exercise_frequency\": \"d\",
\"exercise_count\": 5
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "grip",
"grip_id": 1,
"grips_frequency": "d",
"grips_count": 100,
"switches_frequency": "d",
"switches_count": 100,
"exercise_id": 1,
"exercise_frequency": "d",
"exercise_count": 5
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"goal_id": 7,
"type": "exercise",
"grip_id": 5,
"grips_frequency": "m",
"grips_count": 697,
"switches_frequency": "w",
"switches_count": 339,
"exercise_id": 7,
"exercise_frequency": "d",
"exercise_count": 3,
"created_at": "2026-05-07T15:33:31.000000Z",
"updated_at": "2026-05-07T15:33:31.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:CREATE_CONDITION:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot create condition: all grip conditions have to be same frequency):
{
"message": "Cannot create condition: all grip conditions have to be same frequency",
"code": "GOALS:CREATE_CONDITION:INVALID_FREQUENCY"
}
Example response (403, Cannot create condition: grip-any condition for this goal already exist):
{
"message": "Cannot create condition: grip-any condition for this goal already exist",
"code": "GOALS:CREATE_CONDITION:GRIP_ANY_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: condition with this grip already exist):
{
"message": "Cannot create condition: condition with this grip already exist",
"code": "GOALS:CREATE_CONDITION:GRIP_CONDITION_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: grip-any value cannot be lower than sum of grip-specific conditions):
{
"message": "Cannot create condition: grip-any value cannot be lower than sum of grip-specific conditions",
"code": "GOALS:CREATE_CONDITION:GRIP_ANY_LOWER_THAN_GRIPS_SUM"
}
Example response (403, Cannot create condition: sum of grip-specific conditions cannot be greater than value of grip-any condition):
{
"message": "Cannot create condition: sum of grip-specific conditions cannot be greater than value of grip-any condition",
"code": "GOALS:CREATE_CONDITION:GRIPS_SUM_GREATER_THAN_GRIP_ANY"
}
Example response (403, Cannot create condition: switch condition for this goal already exist):
{
"message": "Cannot create condition: switch condition for this goal already exist",
"code": "GOALS:CREATE_CONDITION:SWITCH_CONDITION_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: condition with this exercise already exist):
{
"message": "Cannot create condition: condition with this exercise already exist",
"code": "GOALS:CREATE_CONDITION:EXERCISE_CONDITION_ALREADY_EXISTS"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:CREATE_CONDITION:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:CREATE_CONDITION:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Goal condition ID.
goal_id
integer
Associated goal ID.
type
string
Condition type.
Must be one of:gripswitchexercise
grip_id
integer
Target grip ID.
grips_frequency
string
Grip frequency period.
Must be one of:dwma
grips_count
integer
Required grip count.
switches_frequency
string
Switch frequency period.
Must be one of:dwma
switches_count
integer
Required switch count.
exercise_id
integer
Target exercise ID.
exercise_frequency
string
Exercise frequency period.
Must be one of:dwm
exercise_count
integer
Required exercise count.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete user goal condition
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/goals/1/conditions/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Goal condition deleted",
"code": "GOALS:DELETE_CONDITION:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:DELETE_CONDITION:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:DELETE_CONDITION:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:DELETE_CONDITION:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user goal progress
requires authentication
Data is grouped into three parts:
grips- data about grips progress,switches- data about switches progress,exercises- data about exercises progress and attempts made.
overall- summary of whole goal time-frame,period- summary of given period, according to frequency (for example: if frequency of conditions is "weekly", these data is summary of current's week).today- summary of today's, used mainly to send daily summary notifications,conditions- goal conditions with progress for each one.
typefor grips overall summary, which points which conditions were used to calculate the summary. If grip-any condition exists, it has priority over grip-specific conditions, otherwise summary contains sum of all grip-specific conditions,frequency,frequency_fromandfrequency_tofor period summary for both grips and switches, which describe time-frame of frequency and period,donefor today's summary for both grips and switches, indicates if today's goal is reached (it's calculated only for conditions of frequency "daily").
Example request:
curl --request GET \
--get "http://localhost:8000/api/goals/1/progress" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/goals/1/progress"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"grips": {
"meta": {
"overall": {
"from": "2023-09-01 00:00:00",
"to": "2023-08-30 23:59:59"
},
"period": {
"from": "2023-09-15 23:59:59",
"to": "2023-09-21 23:59:59",
"frequency": "w"
}
},
"summary": {
"type": "grips-specific",
"progress": 222,
"goal": 2535
},
"progress": [
{
"grip": {
"id": 1,
"number": 0,
"name": "Rest Opposition",
"description": null,
"created_at": "2023-08-30T12:20:00.000000Z",
"updated_at": "2023-08-30T12:20:00.000000Z"
},
"overall": {
"progress": 125,
"goal": 200
},
"period": {
"progress": 22,
"goal": 50
}
},
{
"grip": {
"id": 2,
"number": 1,
"name": "Power",
"description": null,
"created_at": "2023-05-18T11:24:11.000000Z",
"updated_at": "2023-05-18T11:24:11.000000Z"
},
"overall": {
"progress": 90,
"goal": 150
},
"period": {
"progress": 10,
"goal": 30
}
},
{
"grip": null,
"overall": {
"progress": 78,
"goal": 1250
},
"period": {
"progress": 17,
"goal": 240
}
}
],
"today": {
"performed": 0,
"goal": 0,
"done": true
}
},
"switches": {
"overall": {
"performed": 55,
"goal": 300
},
"period": {
"performed": 25,
"goal": 30,
"frequency": "d",
"frequency_from": "2023-09-20 00:00:00",
"frequency_to": "2023-09-20 23:59:59"
},
"today": {
"performed": 25,
"goal": 30,
"done": false
},
"condition": {
"type": "switch",
"switches_frequency": "d",
"switches_count": 30
}
},
"exercises": {
"performed": 1,
"goal": 3,
"done": false,
"conditions": [
{
"type": "exercise",
"exercise_id": 1,
"exercise_frequency": "d",
"exercise_count": 3,
"attempts": [
{
"date_from": "2023-06-06",
"date_to": "2023-06-12",
"count_done": 1,
"count_not_done": 1
},
{
"date_from": "2023-06-13",
"date_to": "2023-06-19",
"count_done": 0,
"count_not_done": 0
},
{
"date_from": "2023-06-20",
"date_to": "2023-06-26",
"count_done": 0,
"count_not_done": 0
},
{
"date_from": "2023-06-27",
"date_to": "2023-07-03",
"count_done": 0,
"count_not_done": 0
}
],
"exercise": {
"id": 1,
"name": "Water plants",
"description": "Use Tripod Grip and water your plants",
"icon": "🪴",
"created_at": "2023-05-19T10:25:37.000000Z",
"updated_at": "2023-05-19T10:25:37.000000Z"
}
}
]
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view goal progress",
"code": "GOALS:GET_PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:GET_PROGRESS:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update user goal progress
requires authentication
Use this endpoint to update goal progress as patient. Add exercise attempts and mark them as done or not done.
Example request:
curl --request POST \
"http://localhost:8000/api/goals/1/progress" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"exercise_id\": 1,
\"exercise_done\": true
}"
const url = new URL(
"http://localhost:8000/api/goals/1/progress"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"exercise_id": 1,
"exercise_done": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 1,
"user_id": 272,
"goal_id": 8,
"type": "grip",
"grip_id": null,
"grips": 398,
"switches": 587,
"exercise_id": 8,
"exercise_done": 1,
"created_at": "2026-05-07T15:33:33.000000Z",
"updated_at": "2026-05-07T15:33:33.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update goal progress",
"code": "GOALS:UPDATE_PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:UPDATE_PROGRESS:GOAL_NOT_FOUND"
}
Example response (422, User timezone not set):
{
"message": "User timezone not set",
"code": "GOALS:UPDATE_PROGRESS:NO_TIMEZONE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User goal ID.
user_id
integer
Associated user ID.
goal_id
integer
Associated goal ID.
type
string
Goal condition type.
Must be one of:gripswitchexercise
grip_id
integer
Target grip ID.
grips
integer
Grip count progress.
switches
integer
Switch count progress.
exercise_id
integer
Target exercise ID.
exercise_done
boolean
Whether the exercise is completed.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Invitations
Accept clinician invitation
Example request:
curl --request POST \
"http://localhost:8000/api/invite/accept" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"ABC123DEF456GHI789JKL0\",
\"email\": \"example@domain.com\",
\"password\": \"Test123!\",
\"language\": \"en\",
\"name\": \"Tom Smith\",
\"clinic_name\": \"My clinic Ltd\",
\"clinic_location\": \"Example St 1\\/345 New York, NY\",
\"address1\": \"321 Lorine Roads Apt. 943\",
\"address2\": \"Friesenchester, MA 46285-0856\",
\"mfa_enabled\": true,
\"mfa_method\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/invite/accept"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "ABC123DEF456GHI789JKL0",
"email": "example@domain.com",
"password": "Test123!",
"language": "en",
"name": "Tom Smith",
"clinic_name": "My clinic Ltd",
"clinic_location": "Example St 1\/345 New York, NY",
"address1": "321 Lorine Roads Apt. 943",
"address2": "Friesenchester, MA 46285-0856",
"mfa_enabled": true,
"mfa_method": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 4,
"mrn": "29XKZMSY1778167858",
"name": "Mr. Wilton Bechtelar",
"email": "1778167858jeffery86@example.net",
"language": "en",
"phone": "+1 (408) 829-2090",
"phone_country": "AE",
"phone_verified_at": null,
"address1": "536 Corkery Street",
"address2": "West Danialview, HI 19618-7537",
"postal_code": "21858",
"city": "Skiles-Marquardt",
"country": "GB",
"clinic_name": "Boganfort",
"clinic_location": "803 Larson Trail\nLefflerfort, SD 54073-6607",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:30:58.000000Z",
"updated_at": "2026-05-07T15:30:58.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
}
Example response (403, Invitation expired):
{
"message": "Invitation expired",
"code": "INVITATIONS:ACCEPT:INVITATION_EXPIRED"
}
Example response (404, Invitation not found):
{
"message": "Invitation not found",
"code": "INVITATIONS:ACCEPT:INVITATION_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: invitation not accepted",
"code": "INVITATIONS:ACCEPT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Accept Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle/accept" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"a1b2c3d4e5f6g7h8i9j0k1l2m3\",
\"email\": \"user@example.com\",
\"password\": \"securePassword123\",
\"phone\": \"1-628-525-1652\",
\"phone_country\": \"US\",
\"name\": \"John Doe\",
\"language\": \"en\"
}"
const url = new URL(
"http://localhost:8000/api/invite/acadle/accept"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "a1b2c3d4e5f6g7h8i9j0k1l2m3",
"email": "user@example.com",
"password": "securePassword123",
"phone": "1-628-525-1652",
"phone_country": "US",
"name": "John Doe",
"language": "en"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 5,
"mrn": "QXE443N61778167858",
"name": "Prof. Dahlia Abshire",
"email": "1778167858lula.hirthe@example.net",
"language": "en",
"phone": "820.846.4909",
"phone_country": "BN",
"phone_verified_at": null,
"address1": "96835 Mazie Estates Apt. 388",
"address2": "Ritchiestad, FL 30491-0228",
"postal_code": "26375",
"city": "Hand, Halvorson and Heathcote",
"country": "BE",
"clinic_name": "West Eusebioside",
"clinic_location": "72434 Renner Mount Apt. 068\nDarronside, TX 76100-2922",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:30:58.000000Z",
"updated_at": "2026-05-07T15:30:58.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
}
Example response (403, Invitation expired):
{
"message": "Invitation expired",
"code": "INVITATIONS_ACADLE:ACCEPT:INVITATION_EXPIRED"
}
Example response (404, Invitation not found):
{
"message": "Invitation not found",
"code": "INVITATIONS_ACADLE:ACCEPT:INVITATION_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: invitation not accepted",
"code": "INVITATIONS_ACADLE:ACCEPT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
List users for invitations
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/users" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/users"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 15,
"mrn": "BDSAVJYR1778167866",
"name": "Taya Schaden DDS",
"email": "1778167866eddie.feest@example.com",
"language": "en",
"phone": "1-248-706-3192",
"phone_country": "SM",
"phone_verified_at": null,
"address1": "61275 Marcos Summit Suite 623",
"address2": "South Genovevafurt, NH 16128",
"postal_code": "70864-7856",
"city": "Wilkinson and Sons",
"country": "BG",
"clinic_name": "New Delfina",
"clinic_location": "8110 Wiza Point Apt. 205\nGoldnerview, SC 59472-2160",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:06.000000Z",
"updated_at": "2026-05-07T15:31:06.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
},
{
"id": 16,
"mrn": "QJXXNENA1778167866",
"name": "Keyon Kozey",
"email": "1778167866rice.hertha@example.com",
"language": "en",
"phone": "669-927-9705",
"phone_country": "AL",
"phone_verified_at": null,
"address1": "933 McDermott Forges",
"address2": "Emanuelberg, KY 77907",
"postal_code": "21147-4915",
"city": "Ruecker Group",
"country": "NL",
"clinic_name": "Litteltown",
"clinic_location": "7905 Connelly Cape\nBerenicefurt, VT 29059-9018",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:06.000000Z",
"updated_at": "2026-05-07T15:31:06.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list users for invitations",
"code": "INVITATIONS:USERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create clinician invitations
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"patient_id\": 1,
\"invitations\": [
{
\"user_id\": 1,
\"user_email\": \"newuser@domain.com\",
\"role\": \"Clinician\",
\"training_confirmed\": true,
\"permissions\": [
\"sint\"
]
}
]
}"
const url = new URL(
"http://localhost:8000/api/invite"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"patient_id": 1,
"invitations": [
{
"user_id": 1,
"user_email": "newuser@domain.com",
"role": "Clinician",
"training_confirmed": true,
"permissions": [
"sint"
]
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 10,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 17,
"mrn": "9HAML92E1778167867",
"name": "Colby Mohr",
"email": "1778167867fabian18@example.net",
"language": "en",
"phone": "(352) 793-9345",
"phone_country": "VC",
"phone_verified_at": null,
"address1": "4894 Araceli Rapids Apt. 133",
"address2": "Lake Lilly, TX 88620-4448",
"postal_code": "38756-5664",
"city": "Braun-Toy",
"country": "MT",
"clinic_name": "Adamstown",
"clinic_location": "735 Rodriguez Lodge Apt. 611\nNorth Jacques, AZ 01030-0794",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:07.000000Z",
"updated_at": "2026-05-07T15:31:07.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 1,
"user_id": 18,
"invited_user_id": 17,
"type": "clinician",
"training_confirmed": 0,
"created_at": "2026-05-07T15:31:08.000000Z",
"updated_at": "2026-05-07T15:31:08.000000Z"
}
],
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
},
{
"id": 20,
"mrn": "2XA7JNC81778167869",
"name": "Mr. Jessie Jerde II",
"email": "1778167869whermann@example.net",
"language": "en",
"phone": "(434) 437-9364",
"phone_country": "HU",
"phone_verified_at": null,
"address1": "24844 Hoeger Club",
"address2": "New Roslynfort, FL 74079-2625",
"postal_code": "01645",
"city": "Schulist, Morar and Cole",
"country": "NL",
"clinic_name": "Aniballand",
"clinic_location": "5547 Jovany Ports Suite 624\nWest Alexandria, IA 88804",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:09.000000Z",
"updated_at": "2026-05-07T15:31:09.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 2,
"user_id": 21,
"invited_user_id": 20,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-05-07T15:31:10.000000Z",
"updated_at": "2026-05-07T15:31:10.000000Z"
}
],
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create invitations",
"code": "INVITATIONS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, No access to given patient):
{
"message": "No access to given patient",
"code": "INVITATIONS:CREATE:NO_ACCESS_TO_PATIENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Resend invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/1/resend" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/1/resend"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 23,
"mrn": "8MDJ7KSU1778167870",
"name": "Jerod Kirlin",
"email": "1778167870rebecca95@example.com",
"language": "en",
"phone": "225.792.3479",
"phone_country": "BT",
"phone_verified_at": null,
"address1": "199 Ortiz Row",
"address2": "New Krystal, CT 69344",
"postal_code": "47375-8891",
"city": "Flatley and Sons",
"country": "RO",
"clinic_name": "Lake Lennastad",
"clinic_location": "9430 Kristin Curve Suite 008\nMargueritetown, ND 14700",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:10.000000Z",
"updated_at": "2026-05-07T15:31:10.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"invitations": [
{
"id": 3,
"user_id": 24,
"invited_user_id": 23,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-05-07T15:31:12.000000Z",
"updated_at": "2026-05-07T15:31:12.000000Z"
}
],
"roles": [
{
"id": 5,
"name": "Amputee"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to resend invitations",
"code": "INVITATIONS:RESEND:INSUFFICIENT_PERMISSION"
}
Example response (403, User not found):
{
"message": "User not found",
"code": "INVITATIONS:RESEND:USER_NOT_FOUND"
}
Example response (403, Invitation already accepted):
{
"message": "Invitation already accepted",
"code": "INVITATIONS:RESEND:INVITATION_ALREADY_ACCEPTED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
List all users invited to Acadle
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/acadle/users?search=john" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/acadle/users"
);
const params = {
"search": "john",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 26,
"mrn": "TL355AHN1778167872",
"name": "Randal Ankunding",
"email": "1778167872abshire.judson@example.com",
"language": "en",
"phone": "+18025553503",
"phone_country": "AR",
"phone_verified_at": null,
"address1": "2652 Anderson Light",
"address2": "South Berry, TX 43928-4534",
"postal_code": "71397-3301",
"city": "Klocko LLC",
"country": "NO",
"clinic_name": "Harryview",
"clinic_location": "690 Gutmann Loaf\nHesterchester, IL 24158",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:12.000000Z",
"updated_at": "2026-05-07T15:31:12.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
},
{
"id": 27,
"mrn": "UXS473TR1778167873",
"name": "Merritt Dickinson",
"email": "1778167873jkuhlman@example.org",
"language": "en",
"phone": "1-586-343-1221",
"phone_country": "RE",
"phone_verified_at": null,
"address1": "67451 Fay Viaduct Apt. 407",
"address2": "Kiehnville, OR 41701-9467",
"postal_code": "47442",
"city": "Ward, Feeney and Ledner",
"country": "CY",
"clinic_name": "Markberg",
"clinic_location": "7263 Rohan Wells\nKubside, ME 30781",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:13.000000Z",
"updated_at": "2026-05-07T15:31:13.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list users for invitations",
"code": "INVITATIONS_ACADLE:USERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"bosco.aliyah@example.org\"
}"
const url = new URL(
"http://localhost:8000/api/invite/acadle"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "bosco.aliyah@example.org"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 28,
"mrn": "F2KGG9XY1778167873",
"name": "Felicity Hilpert II",
"email": "1778167873henry.kutch@example.org",
"language": "en",
"phone": "+1-908-690-5960",
"phone_country": "CO",
"phone_verified_at": null,
"address1": "75141 Glover Neck",
"address2": "Hettingerchester, MD 55442",
"postal_code": "51725",
"city": "Kreiger Inc",
"country": "DK",
"clinic_name": "West Bridget",
"clinic_location": "299 Braun Summit\nBoscomouth, TX 52257-4424",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:13.000000Z",
"updated_at": "2026-05-07T15:31:13.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 4,
"user_id": 29,
"invited_user_id": 28,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-05-07T15:31:15.000000Z",
"updated_at": "2026-05-07T15:31:15.000000Z"
}
],
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (400, User already exists):
{
"message": "User with this email already exists in the system",
"code": "INVITATIONS_ACADLE:CREATE:USER_ALREADY_EXISTS"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create invitations",
"code": "INVITATIONS_ACADLE:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Resend Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle/1/resend" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/acadle/1/resend"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 31,
"mrn": "TVZ93K4V1778167875",
"name": "Richie Halvorson IV",
"email": "1778167875simone.beier@example.net",
"language": "en",
"phone": "770-849-5998",
"phone_country": "TV",
"phone_verified_at": null,
"address1": "75652 Schmidt Mountain Apt. 735",
"address2": "New Alfreda, MO 80408-8422",
"postal_code": "70715",
"city": "Kovacek-Kutch",
"country": "MT",
"clinic_name": "Jarodburgh",
"clinic_location": "543 Corkery Trace\nNorth Margarete, NH 76903-6007",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:15.000000Z",
"updated_at": "2026-05-07T15:31:15.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 5,
"user_id": 32,
"invited_user_id": 31,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-05-07T15:31:17.000000Z",
"updated_at": "2026-05-07T15:31:17.000000Z"
}
],
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to resend invitations",
"code": "INVITATIONS_ACADLE:RESEND:INSUFFICIENT_PERMISSION"
}
Example response (403, User not found):
{
"message": "User not found",
"code": "INVITATIONS_ACADLE:RESEND:USER_NOT_FOUND"
}
Example response (403, Invitation already accepted):
{
"message": "Invitation already accepted",
"code": "INVITATIONS_ACADLE:RESEND:INVITATION_ALREADY_ACCEPTED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Admin access to invitation tokens
requires authentication
Requires admin.invitations_tokens_access permission.
Fetches only non-accepted and non-expired invitations.
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/tokens/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/tokens/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"id": 1,
"user_id": 1,
"invited_user_id": 2,
"token": "I0V25NUVMHC0F8RRF1YEY5BT",
"training_confirmed": 1,
"created_at": "2025-05-12T12:00:00.000000Z",
"updated_at": "2025-05-12T12:00:00.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to get invitation tokens",
"code": "INVITATIONS:ADMIN_TOKENS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "INVITATIONS:ADMIN_TOKENS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logs
API endpoints for managing event logs
Get events log
requires authentication
user - user account that performed the action
element - element model that has been affected by the action
Example request:
curl --request GET \
--get "http://localhost:8000/api/logs?search=Test&ip=200.200.100.5&user=1&type=user&date_from=1642003200&date_to=1642003200&include_sessions=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
const url = new URL(
"http://localhost:8000/api/logs"
);
const params = {
"search": "Test",
"ip": "200.200.100.5",
"user": "1",
"type": "user",
"date_from": "1642003200",
"date_to": "1642003200",
"include_sessions": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": 277,
"event_name": "event_factory",
"element_type": "App\\Models\\User",
"element_id": 276,
"comments": "",
"ip_address": "9.97.19.5",
"created_at": "1985-11-14T00:18:02.000000Z",
"updated_at": "2026-05-07T15:33:35.000000Z",
"user": {
"id": 277,
"mrn": "UJE4Q47V1778168014",
"name": "Maud Smith",
"email": "1778168014mueller.brianne@example.org",
"language": "en",
"phone": "1-562-863-7020",
"phone_country": "NR",
"phone_verified_at": null,
"address1": "809 Durward Place",
"address2": "Toyhaven, CO 90119-9115",
"postal_code": "17068-4260",
"city": "Rippin LLC",
"country": "GB",
"clinic_name": "Millsmouth",
"clinic_location": "440 Monroe Union\nShannyburgh, OH 22952",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:34.000000Z",
"updated_at": "2026-05-07T15:33:34.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"element": {
"id": 276,
"mrn": "G6D7D8YB1778168014",
"name": "Baby Wiza",
"email": "1778168014orn.richmond@example.com",
"language": "en",
"phone": "(458) 982-3707",
"phone_country": "CR",
"phone_verified_at": null,
"address1": "39161 Augustus Fords Suite 468",
"address2": "Cynthiaville, CA 52051-6792",
"postal_code": "24842-5919",
"city": "Gutkowski-Kertzmann",
"country": "NL",
"clinic_name": "Cartwrightmouth",
"clinic_location": "142 Breitenberg Mount\nNorth Elody, MO 90716-9972",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:34.000000Z",
"updated_at": "2026-05-07T15:33:34.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"user_id": 280,
"event_name": "event_factory",
"element_type": "App\\Models\\User",
"element_id": 279,
"comments": "",
"ip_address": "12.177.179.159",
"created_at": "1981-07-09T15:35:17.000000Z",
"updated_at": "2026-05-07T15:33:36.000000Z",
"user": {
"id": 280,
"mrn": "W46NJ2AW1778168016",
"name": "Miss Raina Gutmann",
"email": "1778168016marvin.jayda@example.net",
"language": "en",
"phone": "+1 (225) 807-8586",
"phone_country": "AR",
"phone_verified_at": null,
"address1": "7752 Zieme Roads Apt. 305",
"address2": "Faefort, NC 14131",
"postal_code": "08571-7276",
"city": "Kessler-Kuhlman",
"country": "SK",
"clinic_name": "Emileside",
"clinic_location": "50995 Phyllis Center Apt. 566\nMullerbury, NE 07193",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:36.000000Z",
"updated_at": "2026-05-07T15:33:36.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"element": {
"id": 279,
"mrn": "LTMFG4LX1778168015",
"name": "Miss Maida Reilly",
"email": "1778168015fanny50@example.net",
"language": "en",
"phone": "1-530-996-1901",
"phone_country": "TD",
"phone_verified_at": null,
"address1": "484 Quitzon Branch",
"address2": "Torphyfort, WV 61753",
"postal_code": "37981-6030",
"city": "Beahan-Prohaska",
"country": "SI",
"clinic_name": "South Pamela",
"clinic_location": "78995 Berneice Path Suite 870\nHermistonhaven, MA 38394-9096",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:35.000000Z",
"updated_at": "2026-05-07T15:33:35.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access event logs",
"code": "EVENT_LOGS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Event log entry ID.
user_id
integer
ID of the user who triggered the event.
event_name
string
Event name.
element_type
string
Type of the related element.
element_id
integer
ID of the related element.
comments
string
Additional event comments.
ip_address
string
IP address of the request.
created_at
string
Event timestamp.
updated_at
string
Last update timestamp.
user
object
User who triggered the event.
element
object
Related element.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Messages
API endpoints for message center
Get user messages list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"filter\": \"all\"
}"
const url = new URL(
"http://localhost:8000/api/messages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"filter": "all"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": null,
"message_id": 1,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 1,
"sender_id": null,
"title": "Veritatis deserunt et facere omnis eaque facere distinctio.",
"content": "Sint atque in quia ratione aut distinctio qui asperiores.",
"created_at": "2026-05-07T15:32:18.000000Z",
"updated_at": "2026-05-07T15:32:18.000000Z",
"sender": null
}
},
{
"id": 2,
"user_id": null,
"message_id": 2,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 2,
"sender_id": null,
"title": "Delectus ipsum omnis facere earum.",
"content": "Quia ut iure sequi quia rem recusandae necessitatibus consequatur.",
"created_at": "2026-05-07T15:32:18.000000Z",
"updated_at": "2026-05-07T15:32:18.000000Z",
"sender": null
}
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User message ID.
user_id
integer
Recipient user ID.
message_id
integer
Associated message ID.
is_read
boolean
Whether the message has been read.
is_archived
boolean
Whether the message is archived.
is_deleted
boolean
Whether the message is deleted.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
message
object
The message content.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Send message to multiple users
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"title\": \"Reminder about your vaccination\",
\"content\": \"Lorem ipsum dolor sit amet\",
\"roles\": \"Clinician,Amputee\"
}"
const url = new URL(
"http://localhost:8000/api/message"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"title": "Reminder about your vaccination",
"content": "Lorem ipsum dolor sit amet",
"roles": "Clinician,Amputee"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Messages sent",
"count": 3,
"code": "MESSAGES:SEND:SENT"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to send messages",
"code": "MESSAGES:SEND:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mark message as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message/1/read" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"state\": true
}"
const url = new URL(
"http://localhost:8000/api/message/1/read"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"state": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"user_id": 143,
"message_id": 3,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to mark this message as read",
"code": "MESSAGES:READ:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "MESSAGES:READ:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User message ID.
user_id
integer
Recipient user ID.
message_id
integer
Associated message ID.
is_read
boolean
Whether the message has been read.
is_archived
boolean
Whether the message is archived.
is_deleted
boolean
Whether the message is deleted.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
message
object
The message content.
Mark message as archived
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message/1/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"state\": true
}"
const url = new URL(
"http://localhost:8000/api/message/1/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"state": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"user_id": 144,
"message_id": 4,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to mark this message as archived",
"code": "MESSAGES:ARCHIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "MESSAGES:ARCHIVE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User message ID.
user_id
integer
Recipient user ID.
message_id
integer
Associated message ID.
is_read
boolean
Whether the message has been read.
is_archived
boolean
Whether the message is archived.
is_deleted
boolean
Whether the message is deleted.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
message
object
The message content.
List of messages and tickets
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages-and-tickets" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/messages-and-tickets"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 2
},
"items": [
{
"type": "UserMessage",
"date": "2024-11-02T10:00:00.000000Z",
"item": {
"id": 1,
"user_id": 1,
"message_id": 1,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 1,
"sender_id": 1,
"title": "Message title",
"content": "Message content",
"created_at": "2024-11-02T10:00:00.000000Z",
"updated_at": "2024-11-02T10:00:00.000000Z",
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
}
}
}
},
{
"type": "SupportTicket",
"date": "2024-11-01T15:15:00.000000Z",
"item": {
"id": 1,
"sender_id": 1,
"recipient_id": 999,
"device_id": null,
"meeting_date": "2024-11-10T15:00:00.000000Z",
"meeting_type": "none",
"contact_email": null,
"status": "new",
"created_at": "2024-11-01T15:15:00.000000Z",
"updated_at": "2024-11-01T15:15:00.000000Z",
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
},
"recipient": {
"id": 2,
"mrn": "MRN2",
"name": "Patient",
"email": "patient4@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": null,
"clinic_location": null,
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"created_by": 1,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2024-10-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": null,
"roles": [
{
"id": 5,
"name": "Amputee",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 2,
"role_id": 5,
"model_type": "App\\Models\\User"
}
}
]
},
"device": null,
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 1,
"title": "Communication channel",
"content": "Welcome to the digital platform. Please use this channel for communicating with your clinician.",
"is_read": false,
"created_at": "2024-11-01T15:15:00.000000Z",
"updated_at": "2024-11-01T15:15:00.000000Z",
"attachments": [],
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
}
}
]
}
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Status of messages and tickets
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages-and-tickets/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/messages-and-tickets/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"messages": 5,
"tickets": 2
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mobile logs
API endpoints for managing mobile logs
Store log
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/mobile-logs" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "device_id=1"\
--form "date_start=2002-09-18 21:25:02"\
--form "date_end=2009-12-11 09:06:54"\
--form "encrypt_key=ut"\
--form "encrypt_iv=itaque"\
--form "file=@/tmp/phpcemkYp" const url = new URL(
"http://localhost:8000/api/mobile-logs"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('device_id', '1');
body.append('date_start', '2002-09-18 21:25:02');
body.append('date_end', '2009-12-11 09:06:54');
body.append('encrypt_key', 'ut');
body.append('encrypt_iv', 'itaque');
body.append('file', document.querySelector('input[name="file"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (202):
{
"id": 1,
"user_id": 281,
"device_id": 134,
"file": "/tmp/fakerZB4tua",
"date_start": "2008-06-29 13:21:34",
"date_end": "2025-05-29 08:42:47",
"created_at": "2026-05-07T15:33:37.000000Z",
"updated_at": "2026-05-07T15:33:37.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to write mobile logs",
"code": "MOBILE_LOGS:STORE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get logs
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 2,
"user_id": 282,
"device_id": 135,
"file": "/tmp/fakerYvL7t8",
"date_start": "1983-07-19 05:15:02",
"date_end": "1979-02-03 22:31:09",
"created_at": "2026-05-07T15:33:37.000000Z",
"updated_at": "2026-05-07T15:33:37.000000Z"
},
{
"id": 3,
"user_id": 283,
"device_id": 136,
"file": "/tmp/fakeryUIjgQ",
"date_start": "2012-04-29 11:40:27",
"date_end": "1979-01-13 10:21:48",
"created_at": "2026-05-07T15:33:38.000000Z",
"updated_at": "2026-05-07T15:33:38.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get logs by user
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 4,
"user_id": 284,
"device_id": 137,
"file": "/tmp/fakera5bAGT",
"date_start": "1985-04-03 04:04:04",
"date_end": "1974-06-04 16:29:33",
"created_at": "2026-05-07T15:33:39.000000Z",
"updated_at": "2026-05-07T15:33:39.000000Z"
},
{
"id": 5,
"user_id": 285,
"device_id": 138,
"file": "/tmp/fakerdAB9cu",
"date_start": "2004-02-12 00:03:47",
"date_end": "1983-04-09 19:19:37",
"created_at": "2026-05-07T15:33:39.000000Z",
"updated_at": "2026-05-07T15:33:39.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET_BY_USER:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get logs by device
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 6,
"user_id": 286,
"device_id": 139,
"file": "/tmp/fakerVdxlW9",
"date_start": "2008-07-24 19:40:56",
"date_end": "1982-11-28 09:47:20",
"created_at": "2026-05-07T15:33:40.000000Z",
"updated_at": "2026-05-07T15:33:40.000000Z"
},
{
"id": 7,
"user_id": 287,
"device_id": 140,
"file": "/tmp/fakerT3Dc9N",
"date_start": "2010-09-25 23:23:48",
"date_end": "1996-02-12 15:15:03",
"created_at": "2026-05-07T15:33:40.000000Z",
"updated_at": "2026-05-07T15:33:40.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET_BY_DEVICE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
P2P Sessions
API endpoints for managing P2P (peer-to-peer) sessions
Get active session data
requires authentication
Returns P2P sessions with status "waiting_for_decision" or "in_progress".
Example request:
curl --request GET \
--get "http://localhost:8000/api/p2p/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/p2p/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 1,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "53b1746a-d813-3c9f-81ee-3c9752f05df5",
"clinician_uuid": "3c7042d0-c009-3cf4-85aa-3f7a82d26099",
"token": "N3TY5DUR9XN7RHUMUU6PDQKMEGGHX5CB365UQZF73ESAXNQGZBKUWT89VSQZ858M",
"status": "waiting_for_decision",
"created_at": "2026-05-07T15:32:05.000000Z",
"updated_at": "2026-05-07T15:32:05.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view active P2P session",
"code": "P2P_SESSIONS:GET_ACTIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:GET_ACTIVE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Get session data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/p2p/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/p2p/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 2,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "be840e93-1383-3c85-809b-e76a18e44e39",
"clinician_uuid": "190cd4b1-9fad-3601-8674-0776a5fd4830",
"token": "DJWNL3Q9Z7R6BPYHG9HPR2B4JK7EJCAXVMA78SPR4DGGQ2BBDX7429MY8ZMTCVUM",
"status": "waiting_for_decision",
"created_at": "2026-05-07T15:32:05.000000Z",
"updated_at": "2026-05-07T15:32:05.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view P2P session",
"code": "P2P_SESSIONS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:GET:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Create new P2P session
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/p2p/create" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"amputee_id\": 2,
\"device_id\": 5,
\"amputee_uuid\": \"d6611055-d7ef-310d-bc08-27f567dd882d\",
\"clinician_uuid\": \"93bc5624-16cd-3eb9-80ec-f42fe0a954d2\"
}"
const url = new URL(
"http://localhost:8000/api/p2p/create"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"amputee_id": 2,
"device_id": 5,
"amputee_uuid": "d6611055-d7ef-310d-bc08-27f567dd882d",
"clinician_uuid": "93bc5624-16cd-3eb9-80ec-f42fe0a954d2"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"amputee_id": 118,
"device_id": null,
"clinician_id": 119,
"amputee_uuid": "8ffc0e73-6f9c-3e1b-bed3-fd6444dff51c",
"clinician_uuid": "718a6d72-023a-3160-8386-4982c7388676",
"token": "KQDA5893CHV26DV3YTS2B7HWXJ6LFB4M4G85N3UQRJB9UVBK8JNQ4VEX5JVJZD45",
"status": "waiting_for_decision",
"created_at": "2026-05-07T15:32:06.000000Z",
"updated_at": "2026-05-07T15:32:06.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create P2P session",
"code": "P2P_SESSIONS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Device not assigned to patient):
{
"message": "Device is not assigned to the patient",
"code": "P2P_SESSIONS:CREATE:DEVICE_NOT_ASSIGNED"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "P2P_SESSIONS:CREATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Update P2P session
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/p2p/1/update" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"status\": \"closed\"
}"
const url = new URL(
"http://localhost:8000/api/p2p/1/update"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"status": "closed"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "54ef746c-739c-378c-af82-9ac9b0c54e42",
"clinician_uuid": "3fe31466-5b79-3cd8-a12a-c09f756df75d",
"token": "SLUU7S9V9P98PY2EKW72LHZ9ESYPK6Z8V53B7F664TQW5EJ689SKTYV2JUQQ4BXQ",
"status": "waiting_for_decision",
"created_at": "2026-05-07T15:32:06.000000Z",
"updated_at": "2026-05-07T15:32:06.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update P2P session",
"code": "P2P_SESSIONS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:UPDATE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Product features and toggles
API endpoints for product features and toggles management
Definitions:
- Product feature - part of application which can be considered as hardware compatible (with for example specific PCB version) or software compatible (with for example specific firmware version). Product features are used in versions compatibility matrix.
- Product toggle - part of application which can be enabled and disabled for current environment.
List product features
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/features" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/features"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "silver",
"slug": "quidem-error-reiciendis-eius",
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
},
{
"id": 2,
"name": "fuchsia",
"slug": "saepe-dolorem-quo-amet-rerum-ad",
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "PRODUCT_FEATURES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product feature ID.
name
string
Feature name.
slug
string
Feature slug (unique identifier).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create product feature
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/product/features" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\"
}"
const url = new URL(
"http://localhost:8000/api/product/features"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "aqua",
"slug": "consequatur-incidunt-qui-sint-et-et-dolores",
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product feature ID.
name
string
Feature name.
slug
string
Feature slug (unique identifier).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update product feature
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/product/features/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\"
}"
const url = new URL(
"http://localhost:8000/api/product/features/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "black",
"slug": "aut-qui-reprehenderit-perferendis-architecto-dignissimos-sit-occaecati",
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product feature not found):
{
"message": "Product feature not found",
"code": "PRODUCT_FEATURES:UPDATE:FEATURE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product feature ID.
name
string
Feature name.
slug
string
Feature slug (unique identifier).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete product feature
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/product/features/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/features/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Product feature deleted",
"code": "PRODUCT_FEATURES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Product feature belongs to compatibility entries):
{
"message": "Cannot delete: product feature belongs to existing compatibility entries (1)",
"code": "PRODUCT_FEATURES:DELETE:HAS_COMPATIBILITY_ENTRIES"
}
Example response (404, Product feature not found):
{
"message": "Product feature not found",
"code": "PRODUCT_FEATURES:DELETE:FEATURE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List product toggles
requires authentication
This endpoint returns list of global toggles. For some users there could exist user toggle which overrides these settings.
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/toggles?global=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/toggles"
);
const params = {
"global": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "green",
"slug": "ad-praesentium-consequatur-veritatis-aut",
"enabled": 0,
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
},
{
"id": 2,
"name": "purple",
"slug": "et-voluptates-eveniet-quo-dolor-ullam-culpa-sed",
"enabled": 1,
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "PRODUCT_TOGGLES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product toggle ID.
name
string
Toggle name.
slug
string
Toggle slug (unique identifier).
enabled
boolean
Whether the toggle is enabled globally.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create product toggle
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/product/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\",
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/product/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config",
"enabled": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "maroon",
"slug": "dolor-nam-velit-sint-sed-eveniet-labore-repellat-cum",
"enabled": 1,
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product toggle ID.
name
string
Toggle name.
slug
string
Toggle slug (unique identifier).
enabled
boolean
Whether the toggle is enabled globally.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update product toggle
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/product/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\",
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/product/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config",
"enabled": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "navy",
"slug": "earum-ut-sit-eligendi-nemo-voluptas-incidunt-et-reprehenderit",
"enabled": 1,
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product toggle not found):
{
"message": "Product toggle not found",
"code": "PRODUCT_TOGGLES:UPDATE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product toggle ID.
name
string
Toggle name.
slug
string
Toggle slug (unique identifier).
enabled
boolean
Whether the toggle is enabled globally.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete product toggle
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/product/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Product toggle deleted",
"code": "PRODUCT_TOGGLES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product toggle not found):
{
"message": "Product toggle not found",
"code": "PRODUCT_TOGGLES:DELETE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List product FAQ
requires authentication
This endpoint returns list of product FAQ.
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/faq" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/faq"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"question": "In ipsa aspernatur rerum non. Aut culpa nihil sapiente facilis error. Laborum reiciendis eos illo odio facere aliquam.",
"answer": "Et cumque vitae dolorem quae inventore commodi. Voluptate doloribus nobis consectetur cumque libero nam aut. Dolores omnis non est voluptas magnam voluptatem. Asperiores fugit rerum culpa ipsa.",
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
},
{
"id": 2,
"question": "Dolor porro occaecati cumque velit. Tempora ratione eum quia est. Eos velit minus quasi.",
"answer": "Sed soluta autem et facilis reprehenderit exercitationem. Aut nisi impedit ipsam accusantium quo doloremque tempore.",
"created_at": "2026-05-07T15:33:17.000000Z",
"updated_at": "2026-05-07T15:33:17.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "FAQ:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
FAQ entry ID.
question
string
FAQ question.
answer
string
FAQ answer.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List user toggles
requires authentication
This endpoint returns list of user toggles with their global toggles.
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"toggle_id": 6,
"user_id": 251,
"enabled": 1,
"created_at": "2026-05-07T15:33:18.000000Z",
"updated_at": "2026-05-07T15:33:18.000000Z",
"toggle": {
"id": 6,
"name": "fuchsia",
"slug": "excepturi-perspiciatis-accusantium-qui-voluptas-at",
"enabled": 0,
"created_at": "2026-05-07T15:33:18.000000Z",
"updated_at": "2026-05-07T15:33:18.000000Z"
}
},
{
"id": 2,
"toggle_id": 8,
"user_id": 252,
"enabled": 0,
"created_at": "2026-05-07T15:33:18.000000Z",
"updated_at": "2026-05-07T15:33:18.000000Z",
"toggle": {
"id": 8,
"name": "gray",
"slug": "aut-veniam-aut-quia",
"enabled": 1,
"created_at": "2026-05-07T15:33:18.000000Z",
"updated_at": "2026-05-07T15:33:18.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "USER_TOGGLES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User product toggle ID.
toggle_id
integer
Associated product toggle ID.
user_id
integer
Associated user ID.
enabled
boolean
Whether the toggle is enabled for this user.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
toggle
object
Associated product toggle.
Create user toggle
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"toggle_id\": 1,
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"toggle_id": 1,
"enabled": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"toggle_id": 9,
"user_id": 253,
"enabled": 0,
"created_at": "2026-05-07T15:33:19.000000Z",
"updated_at": "2026-05-07T15:33:19.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot create user toggles for SuperAdmin):
{
"message": "Cannot create user toggles for SuperAdmin",
"code": "USER_TOGGLES:CREATE:CANNOT_CREATE_FOR_SUPER_ADMIN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:CREATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User product toggle ID.
toggle_id
integer
Associated product toggle ID.
user_id
integer
Associated user ID.
enabled
boolean
Whether the toggle is enabled for this user.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
toggle
object
Associated product toggle.
Update user toggle
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"enabled": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"toggle_id": 10,
"user_id": 254,
"enabled": 0,
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:UPDATE:USER_NOT_FOUND"
}
Example response (404, User toggle not found):
{
"message": "User toggle not found",
"code": "USER_TOGGLES:UPDATE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User product toggle ID.
toggle_id
integer
Associated product toggle ID.
user_id
integer
Associated user ID.
enabled
boolean
Whether the toggle is enabled for this user.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
toggle
object
Associated product toggle.
Delete user toggle
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User toggle deleted",
"code": "USER_TOGGLES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:DELETE:USER_NOT_FOUND"
}
Example response (404, User toggle not found):
{
"message": "User toggle not found",
"code": "USER_TOGGLES:DELETE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Releases
API endpoints for releases management
List releases
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/releases" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 14,
"description": "Aliquid tempora amet qui reiciendis debitis enim veniam. Quas tempore sequi et qui aliquid non. Inventore expedita accusamus occaecati adipisci porro perspiciatis.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"version": {
"id": 14,
"name": "9.62.13",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
},
{
"id": 2,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 15,
"description": "Vitae non et qui similique nesciunt laudantium. Asperiores amet tenetur porro exercitationem sapiente culpa. Impedit deleniti dolorem est qui qui voluptas eveniet.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"version": {
"id": 15,
"name": "6.44.98",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list releases",
"code": "RELEASES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get release
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 16,
"description": "Odit quaerat commodi occaecati reprehenderit soluta. Est et qui minus qui. Neque exercitationem ut aperiam iusto dolorem expedita reprehenderit.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"version": {
"id": 16,
"name": "6.86.31",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view release",
"code": "RELEASES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:GET:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
Create release
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/releases" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version_type\": \"SoftwareVersion\",
\"version_id\": 1,
\"description\": \"This version fixes minor bugs.\"
}"
const url = new URL(
"http://localhost:8000/api/releases"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version_type": "SoftwareVersion",
"version_id": 1,
"description": "This version fixes minor bugs."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 17,
"description": "Esse modi sit deleniti atque eos eum quam. Eveniet velit in eum neque eos modi totam. Est et similique dolor et. Tenetur provident consequatur unde quos quam. Animi voluptas ut autem.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create release",
"code": "RELEASES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
Update release
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version_type\": \"SoftwareVersion\",
\"version_id\": 1,
\"description\": \"This version fixes minor bugs.\"
}"
const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version_type": "SoftwareVersion",
"version_id": 1,
"description": "This version fixes minor bugs."
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 18,
"description": "Est hic doloremque molestiae consequuntur labore libero. Iure et et consequatur consectetur quaerat. Tempora architecto quo quo ducimus esse pariatur.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update release",
"code": "RELEASES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:UPDATE:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
Delete release
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "RELEASES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete release",
"code": "RELEASES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:DELETE:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Search
API endpoints for search
Search
requires authentication
Searches in:
- users (by name and email)
- devices (by serial number)
Returned collection contains entries of type User or Device.
If the device has a patient assigned, this patient is included in the results as an entry of type User. If the device has no patient, the device is included in the results.
Users included in the results, but not found directly have "devices" relation filled in with the devices that match the search query.
Example request:
curl --request GET \
--get "http://localhost:8000/api/search?query=Tom" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"query\": \"bagflfmwyaantieixjdmpzxrd\"
}"
const url = new URL(
"http://localhost:8000/api/search"
);
const params = {
"query": "Tom",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"query": "bagflfmwyaantieixjdmpzxrd"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"type": "User",
"item": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"pivot": {
"assigned_user_id": 2,
"user_id": 1
},
"devices": [],
"roles": [
{
"id": 5,
"name": "Amputee",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 5,
"model_type": "App\\Models\\User"
}
}
]
}
},
{
"type": "Device",
"item": {
"id": 1,
"serial": "SERIAL-NUMBER",
"bluetooth_id": "BLUETOOTH_ID",
"model_id": 1,
"amputee_id": 1,
"firmware_version_id": 1,
"pcb_version_id": 1,
"active": 1,
"last_activity_at": "2024-11-11 12:00:00",
"created_at": "2024-08-30T15:00:00.000000Z",
"updated_at": "2024-09-01T16:00:00.000000Z",
"pivot": {
"user_id": 2,
"device_id": 1
}
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to search",
"code": "SEARCH:SEARCH:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Servicing
API endpoints for servicing
List of parts
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/servicing/parts" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/servicing/parts"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_model": null,
"name": "MasterCard",
"created_at": "2026-05-07T15:32:14.000000Z",
"updated_at": "2026-05-07T15:32:14.000000Z"
},
{
"id": 2,
"device_model": null,
"name": "American Express",
"created_at": "2026-05-07T15:32:14.000000Z",
"updated_at": "2026-05-07T15:32:14.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list service parts",
"code": "SERVICING:LIST_PARTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Service part ID.
device_model
integer
Associated device model ID.
name
string
Part name.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Report service repair
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/servicing/repair" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "user_id=1"\
--form "device_id=1"\
--form "parts[][part_id]=1"\
--form "parts[][reason]=Mechanical issue"\
--form "files[]=@/tmp/phpVXazS8" const url = new URL(
"http://localhost:8000/api/servicing/repair"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('user_id', '1');
body.append('device_id', '1');
body.append('parts[][part_id]', '1');
body.append('parts[][reason]', 'Mechanical issue');
body.append('files[]', document.querySelector('input[name="files[]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 136,
"device_id": 115,
"created_at": "2026-05-07T15:32:15.000000Z",
"updated_at": "2026-05-07T15:32:15.000000Z",
"parts": [
{
"id": 1,
"repair_id": 1,
"part_id": 3,
"reason": "Sit non nesciunt illum necessitatibus qui ab iusto. Ducimus aut sit dolorem rerum. Saepe placeat ad et ut. Explicabo eum neque non deserunt.",
"created_at": "2026-05-07T15:32:16.000000Z",
"updated_at": "2026-05-07T15:32:16.000000Z",
"part": {
"id": 3,
"device_model": null,
"name": "Discover Card",
"created_at": "2026-05-07T15:32:16.000000Z",
"updated_at": "2026-05-07T15:32:16.000000Z"
}
},
{
"id": 2,
"repair_id": 1,
"part_id": 4,
"reason": "Suscipit qui cupiditate totam perspiciatis eligendi. Possimus molestias quis rerum maxime aut assumenda ut. Rerum repudiandae officiis deserunt maxime.",
"created_at": "2026-05-07T15:32:17.000000Z",
"updated_at": "2026-05-07T15:32:17.000000Z",
"part": {
"id": 4,
"device_model": null,
"name": "MasterCard",
"created_at": "2026-05-07T15:32:17.000000Z",
"updated_at": "2026-05-07T15:32:17.000000Z"
}
},
{
"id": 3,
"repair_id": 1,
"part_id": 5,
"reason": "Eveniet omnis velit aut. Quasi nostrum iste porro neque eum. Iste asperiores et atque iusto. Sit a optio omnis harum.",
"created_at": "2026-05-07T15:32:17.000000Z",
"updated_at": "2026-05-07T15:32:17.000000Z",
"part": {
"id": 5,
"device_model": null,
"name": "MasterCard",
"created_at": "2026-05-07T15:32:17.000000Z",
"updated_at": "2026-05-07T15:32:17.000000Z"
}
}
],
"attachments": [
{
"id": 1,
"repair_id": 1,
"file": "/tmp/fakerbuH9MO",
"created_at": "2026-05-07T15:32:16.000000Z",
"updated_at": "2026-05-07T15:32:16.000000Z"
},
{
"id": 2,
"repair_id": 1,
"file": "/tmp/faker57LLmG",
"created_at": "2026-05-07T15:32:18.000000Z",
"updated_at": "2026-05-07T15:32:18.000000Z"
},
{
"id": 3,
"repair_id": 1,
"file": "/tmp/fakerlKFfHr",
"created_at": "2026-05-07T15:32:18.000000Z",
"updated_at": "2026-05-07T15:32:18.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to report service repair",
"code": "SERVICING:REPORT_REPAIR:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Service repair ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
parts
object[]
Service parts included in the repair.
attachments
object[]
Repair attachments.
Settings
API endpoints for app settings
Get app version
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/app-version" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/app-version"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"version": "1.6.0"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get silent push timeout
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/silent-push" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/silent-push"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"timeout": "15"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get available languages
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/languages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/languages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"languages": [
"de",
"en",
"es",
"it",
"pl",
"ru",
"uk"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get mobile stores versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"ios": "1.0",
"android": "1.0"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update app version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/settings/app-version" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version\": \"1.6.0\"
}"
const url = new URL(
"http://localhost:8000/api/settings/app-version"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version": "1.6.0"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"version": "1.6.0"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_APP_VERSION:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update silent push timeout
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/settings/silent-push" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"timeout\": 15
}"
const url = new URL(
"http://localhost:8000/api/settings/silent-push"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"timeout": 15
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"timeout": "15"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_SILENT_PUSH:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update mobile stores versions
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/mobile/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"ios\": \"1.1\",
\"android\": \"1.1\"
}"
const url = new URL(
"http://localhost:8000/api/mobile/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"ios": "1.1",
"android": "1.1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"ios": "1.0",
"android": "1.0"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_MOBILE_STORES_VERSION:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Support Ticket
API endpoints for managing support tickets
Get tickets list
requires authentication
Possible extend options:
- sender - the user who created ticket
- recipient - the user who was ticket recipient
- device - the device assigned to ticket
- messages - message allocated to ticket
- messages.attachments - list of attachments assigned to message and ticket
- messages.sender - the user who wrote the message
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets?status=new&sender=1&recipient=1&device=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets"
);
const params = {
"status": "new",
"sender": "1",
"recipient": "1",
"device": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 27,
"sender_id": 145,
"recipient_id": 146,
"device_id": 122,
"meeting_date": "2026-05-07 15:32:20",
"meeting_type": "online_meeting",
"contact_email": "nicolette.streich@maggio.com",
"status": "new",
"created_at": "2026-05-07T15:32:21.000000Z",
"updated_at": "2026-05-07T15:32:21.000000Z",
"sender": {
"id": 145,
"mrn": "YPVPRHY51778167940",
"name": "Max Dach DVM",
"email": "1778167940sauer.mckenzie@example.com",
"language": "en",
"phone": "541-455-9801",
"phone_country": "FR",
"phone_verified_at": null,
"address1": "4148 Wiegand Station",
"address2": "Monahanville, OK 44456",
"postal_code": "23510",
"city": "Kling-Bergnaum",
"country": "HR",
"clinic_name": "Margiefurt",
"clinic_location": "9627 Rudolph Radial\nNew Shyanne, TN 86403",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:20.000000Z",
"updated_at": "2026-05-07T15:32:20.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 146,
"mrn": "P4PC3TN61778167940",
"name": "Bridie Breitenberg",
"email": "1778167940miles26@example.org",
"language": "en",
"phone": "1-508-294-6904",
"phone_country": "LV",
"phone_verified_at": null,
"address1": "552 Geoffrey Knoll Suite 599",
"address2": "Alyssonton, LA 08578-8754",
"postal_code": "74085-5446",
"city": "Leannon, Smitham and Block",
"country": "HR",
"clinic_name": "Colechester",
"clinic_location": "965 Wolff Gardens\nSouth Joshtown, CT 17830-1937",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:20.000000Z",
"updated_at": "2026-05-07T15:32:20.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 122,
"serial": "c0b566c6-44d9-3799-9898-3625fd70cbec",
"bluetooth_id": "795181da-97b2-30c5-9ba1-722e9185ed04",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:32:21.000000Z",
"updated_at": "2026-05-07T15:32:21.000000Z"
},
"messages": [
{
"id": 15,
"ticket_id": 27,
"sender_id": 147,
"title": "Mrs.",
"content": "Reprehenderit voluptatem aspernatur et ut voluptas.",
"is_read": false,
"created_at": "2026-05-07T15:32:22.000000Z",
"updated_at": "2026-05-07T15:32:22.000000Z"
}
]
},
{
"id": 35,
"sender_id": 159,
"recipient_id": 160,
"device_id": 123,
"meeting_date": "2026-05-07 15:32:28",
"meeting_type": "online_meeting",
"contact_email": "wiegand.verdie@harber.org",
"status": "new",
"created_at": "2026-05-07T15:32:29.000000Z",
"updated_at": "2026-05-07T15:32:29.000000Z",
"sender": {
"id": 159,
"mrn": "338JNCQ61778167947",
"name": "Prof. Marcus Nitzsche",
"email": "1778167947ybuckridge@example.org",
"language": "en",
"phone": "901.370.3414",
"phone_country": "OM",
"phone_verified_at": null,
"address1": "35122 Ariel Place",
"address2": "Giannishire, OH 94730",
"postal_code": "88086-5369",
"city": "Lindgren-Hintz",
"country": "LU",
"clinic_name": "Gleichnerfort",
"clinic_location": "943 Rosenbaum Streets\nVestamouth, NE 45108",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:28.000000Z",
"updated_at": "2026-05-07T15:32:28.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 160,
"mrn": "VWUTRLXR1778167948",
"name": "Evalyn Littel",
"email": "1778167948zfranecki@example.net",
"language": "en",
"phone": "484.938.0261",
"phone_country": "MT",
"phone_verified_at": null,
"address1": "300 Ford Inlet",
"address2": "Fisherchester, AL 31643-0059",
"postal_code": "55926-5698",
"city": "Bauch-Ferry",
"country": "DK",
"clinic_name": "Lake Karlishire",
"clinic_location": "5912 Braun Summit\nJuddberg, ME 42394-9638",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:28.000000Z",
"updated_at": "2026-05-07T15:32:28.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 123,
"serial": "8f814896-a246-34df-b444-84d82e5439c6",
"bluetooth_id": "82962d1c-89f3-33e9-93e6-9aa085beea64",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:32:29.000000Z",
"updated_at": "2026-05-07T15:32:29.000000Z"
},
"messages": [
{
"id": 19,
"ticket_id": 35,
"sender_id": 161,
"title": "Dr.",
"content": "Beatae cupiditate qui unde vitae soluta.",
"is_read": false,
"created_at": "2026-05-07T15:32:30.000000Z",
"updated_at": "2026-05-07T15:32:30.000000Z"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list support tickets",
"code": "TICKETS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get tickets status
requires authentication
Counts tickets by their status
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"unread": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list support tickets",
"code": "TICKETS:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get support ticket
requires authentication
Returns single support ticket in the response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/ticket/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 43,
"sender_id": 173,
"recipient_id": 174,
"device_id": 124,
"meeting_date": "2026-05-07 15:32:35",
"meeting_type": "online_meeting",
"contact_email": "oconnell.tony@king.biz",
"status": "new",
"created_at": "2026-05-07T15:32:36.000000Z",
"updated_at": "2026-05-07T15:32:36.000000Z",
"sender": {
"id": 173,
"mrn": "TYCJGVSV1778167955",
"name": "Prof. Geovany Graham V",
"email": "1778167955vrodriguez@example.net",
"language": "en",
"phone": "949.363.5893",
"phone_country": "YT",
"phone_verified_at": null,
"address1": "4430 Destany Corners Apt. 016",
"address2": "West Dylanport, UT 26868",
"postal_code": "61255",
"city": "Schmeler, Turner and Beier",
"country": "LU",
"clinic_name": "Jayceehaven",
"clinic_location": "61881 Phyllis Dale Apt. 748\nLake Yasmin, TX 20029",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:35.000000Z",
"updated_at": "2026-05-07T15:32:35.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 174,
"mrn": "JQ73G4T71778167955",
"name": "Doug Spencer",
"email": "1778167955carmel00@example.org",
"language": "en",
"phone": "1-918-664-8088",
"phone_country": "PW",
"phone_verified_at": null,
"address1": "944 Jeffery Harbors",
"address2": "Emmerichborough, WV 06033",
"postal_code": "04103-1601",
"city": "Will, Pagac and Wolf",
"country": "SE",
"clinic_name": "North Garlandville",
"clinic_location": "4959 Lyla Viaduct Apt. 130\nDickensmouth, NV 64191-4393",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:35.000000Z",
"updated_at": "2026-05-07T15:32:35.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 124,
"serial": "fe46b771-1869-340d-a2de-8555e0c6a630",
"bluetooth_id": "4f749e71-1e11-3093-a3ca-27b562749066",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:32:36.000000Z",
"updated_at": "2026-05-07T15:32:36.000000Z"
},
"messages": [
{
"id": 23,
"ticket_id": 43,
"sender_id": 175,
"title": "Mr.",
"content": "Dolorem error quaerat et quibusdam omnis aspernatur enim.",
"is_read": false,
"created_at": "2026-05-07T15:32:38.000000Z",
"updated_at": "2026-05-07T15:32:38.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view support ticket",
"code": "TICKETS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:GET:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Get support ticket history
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/ticket/1/history" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/history"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"ticket_id": 51,
"author_id": 188,
"action": "minima",
"reason": "Explicabo maxime rerum aut fuga quaerat eligendi.",
"created_at": "2026-05-07T15:32:44.000000Z",
"updated_at": "2026-05-07T15:32:44.000000Z"
},
{
"id": 2,
"ticket_id": 52,
"author_id": 190,
"action": "commodi",
"reason": "Et cupiditate numquam blanditiis dolore tempore.",
"created_at": "2026-05-07T15:32:45.000000Z",
"updated_at": "2026-05-07T15:32:45.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view support ticket",
"code": "TICKETS:HISTORY:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:HISTORY:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
History entry ID.
ticket_id
integer
Associated support ticket ID.
author_id
integer
ID of the user who made this change.
action
string
Action performed.
reason
string
Reason for the action.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made this change.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get support ticket available filters
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets/available-filters" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets/available-filters"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"clinicians": [
{
"id": 95,
"mrn": null,
"name": "Name",
"email": "email",
"region": "us",
"language": "pl",
"phone": "+48-555555555",
"phone_verified_at": null,
"address1": "Address",
"address2": "Address 2",
"postal_code": "",
"city": "",
"clinic_name": "Name",
"clinic_location": "Name",
"image": "https://aether-dev-bucket.s3.amazonaws.com/users/LDueuv1uG218G7owaiLAaWRkpaGxjB0jEFwzZsT1.png",
"mfa_enabled": 0,
"mfa_method": "sms",
"mfa_verified_to": null,
"location_id": 2,
"created_by": 1,
"active": 1,
"notifications_timezone": "America/Adak",
"notifications_at": null,
"created_at": "2022-07-19T14:43:37.000000Z",
"updated_at": "2024-09-27T05:52:51.000000Z",
"invitation_status": "expired",
"roles": [
{
"id": 2,
"name": "Clinician",
"guard_name": "web",
"created_at": "2022-03-21T17:15:47.000000Z",
"updated_at": "2022-03-21T17:15:47.000000Z",
"pivot": {
"model_id": 95,
"role_id": 2,
"model_type": "App\\Models\\User"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:AVAILABLE_FILTERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new support ticket
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tickets" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "recipient=1"\
--form "device=1"\
--form "meeting_type=online_meeting"\
--form "meeting_date=2026-05-07 15:32:45"\
--form "contact_email=dominic54@gmail.com"\
--form "message[content]=Commodi tempora harum natus soluta."\
--form "message[title]=Totam enim rem perferendis."\
--form "message[attachments][]=@/tmp/phptViRT5" const url = new URL(
"http://localhost:8000/api/tickets"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('recipient', '1');
body.append('device', '1');
body.append('meeting_type', 'online_meeting');
body.append('meeting_date', '2026-05-07 15:32:45');
body.append('contact_email', 'dominic54@gmail.com');
body.append('message[content]', 'Commodi tempora harum natus soluta.');
body.append('message[title]', 'Totam enim rem perferendis.');
body.append('message[attachments][]', document.querySelector('input[name="message[attachments][]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 53,
"sender_id": 191,
"recipient_id": 192,
"device_id": 125,
"meeting_date": "2026-05-07 15:32:45",
"meeting_type": "online_meeting",
"contact_email": "tjast@haley.com",
"status": "new",
"created_at": "2026-05-07T15:32:46.000000Z",
"updated_at": "2026-05-07T15:32:46.000000Z",
"sender": {
"id": 191,
"mrn": "7LQT3NGH1778167965",
"name": "Dr. Brent Waelchi",
"email": "1778167965maci00@example.com",
"language": "en",
"phone": "+17547439452",
"phone_country": "AG",
"phone_verified_at": null,
"address1": "2158 Weissnat Green",
"address2": "Odessamouth, RI 75168",
"postal_code": "41115-7374",
"city": "Klein, Schroeder and Prohaska",
"country": "GR",
"clinic_name": "Konopelskifort",
"clinic_location": "44376 Eichmann Green\nReichertland, NH 89098-9907",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:45.000000Z",
"updated_at": "2026-05-07T15:32:45.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 192,
"mrn": "7MYGCZVU1778167965",
"name": "Delores Hintz",
"email": "1778167965sabrina.upton@example.org",
"language": "en",
"phone": "725-989-3007",
"phone_country": "BG",
"phone_verified_at": null,
"address1": "9230 Alexandrine Fords",
"address2": "Verdaland, MA 00549",
"postal_code": "78664",
"city": "Lynch, Pollich and O'Reilly",
"country": "CY",
"clinic_name": "Bradystad",
"clinic_location": "5487 Jast Club Suite 311\nClarabellestad, AK 43065",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:45.000000Z",
"updated_at": "2026-05-07T15:32:45.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 125,
"serial": "ae831594-d640-3239-b507-8700bb41e428",
"bluetooth_id": "27a886e3-73f6-3c77-a89b-263d31ae8d7d",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:32:46.000000Z",
"updated_at": "2026-05-07T15:32:46.000000Z"
},
"messages": [
{
"id": 27,
"ticket_id": 53,
"sender_id": 193,
"title": "Mrs.",
"content": "Modi ut enim fugit.",
"is_read": false,
"created_at": "2026-05-07T15:32:47.000000Z",
"updated_at": "2026-05-07T15:32:47.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Close support ticket
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/close" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/close"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 61,
"sender_id": 205,
"recipient_id": 206,
"device_id": 126,
"meeting_date": "2026-05-07 15:32:53",
"meeting_type": "online_meeting",
"contact_email": "hdickinson@yahoo.com",
"status": "new",
"created_at": "2026-05-07T15:32:54.000000Z",
"updated_at": "2026-05-07T15:32:54.000000Z",
"sender": {
"id": 205,
"mrn": "A4QBAXBV1778167972",
"name": "Miss Leda Gibson",
"email": "1778167972schmeler.alda@example.com",
"language": "en",
"phone": "+1-463-425-2031",
"phone_country": "AT",
"phone_verified_at": null,
"address1": "95687 Raymundo Knoll",
"address2": "Daughertymouth, SD 89930-7420",
"postal_code": "06461",
"city": "Grady-Schulist",
"country": "CZ",
"clinic_name": "Lilianaburgh",
"clinic_location": "79176 Chyna Street Suite 810\nDenesikville, IA 10233-0094",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:52.000000Z",
"updated_at": "2026-05-07T15:32:52.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 206,
"mrn": "6948796A1778167973",
"name": "Quentin Pollich MD",
"email": "1778167973kdicki@example.com",
"language": "en",
"phone": "562.354.1459",
"phone_country": "BH",
"phone_verified_at": null,
"address1": "9895 Paula Gardens",
"address2": "New Ernastad, ND 97119",
"postal_code": "65354-9759",
"city": "Quitzon, Stoltenberg and Kunde",
"country": "EE",
"clinic_name": "West Angelinafort",
"clinic_location": "8165 Helmer Overpass\nEast Tyshawntown, MN 66542",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:53.000000Z",
"updated_at": "2026-05-07T15:32:53.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 126,
"serial": "f3a0bbb7-baa4-3735-b66a-5e04aca1f303",
"bluetooth_id": "58c1ee85-398d-35a3-8edb-a7f2b4844fd8",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:32:54.000000Z",
"updated_at": "2026-05-07T15:32:54.000000Z"
},
"messages": []
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to close support ticket",
"code": "TICKETS:CLOSE:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:CLOSE:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Reopen support ticket
requires authentication
Patient (Amputee) role can reopen only non-config tickets.
For config tickets patients will get "Insufficient permission" response.
For patients role reason field is required.
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/reopen" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"reason\": \"Something is still not working\"
}"
const url = new URL(
"http://localhost:8000/api/ticket/1/reopen"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"reason": "Something is still not working"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"ticket_id": 62,
"author_id": 208,
"action": "sed",
"reason": "Et sapiente voluptates laboriosam qui laudantium nostrum fugiat dicta.",
"created_at": "2026-05-07T15:32:55.000000Z",
"updated_at": "2026-05-07T15:32:55.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to reopen support ticket",
"code": "TICKETS:REOPEN:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:REOPEN:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
History entry ID.
ticket_id
integer
Associated support ticket ID.
author_id
integer
ID of the user who made this change.
action
string
Action performed.
reason
string
Reason for the action.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made this change.
Create new support ticket message
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/messages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "title=Qui et omnis."\
--form "content=Nostrum impedit quod quis dignissimos."\
--form "attachments[]=@/tmp/phpexofIl" const url = new URL(
"http://localhost:8000/api/ticket/1/messages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('title', 'Qui et omnis.');
body.append('content', 'Nostrum impedit quod quis dignissimos.');
body.append('attachments[]', document.querySelector('input[name="attachments[]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 63,
"sender_id": 209,
"recipient_id": 210,
"device_id": 127,
"meeting_date": "2026-05-07 15:32:55",
"meeting_type": "online_meeting",
"contact_email": "kertzmann.omer@wunsch.com",
"status": "new",
"created_at": "2026-05-07T15:32:56.000000Z",
"updated_at": "2026-05-07T15:32:56.000000Z",
"sender": {
"id": 209,
"mrn": "U6X2LN6P1778167975",
"name": "Dr. Raphael Moore Sr.",
"email": "1778167975elisabeth56@example.com",
"language": "en",
"phone": "(505) 917-6001",
"phone_country": "SI",
"phone_verified_at": null,
"address1": "841 Lucas Mill",
"address2": "North Laurine, CT 11479-2490",
"postal_code": "63369-9560",
"city": "O'Kon Ltd",
"country": "LU",
"clinic_name": "Robertsport",
"clinic_location": "318 Luettgen Trail\nCandidafurt, MA 71860",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:55.000000Z",
"updated_at": "2026-05-07T15:32:55.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 210,
"mrn": "3TM442MP1778167975",
"name": "Kameron Kulas",
"email": "1778167975kelley.mcclure@example.net",
"language": "en",
"phone": "619-910-9768",
"phone_country": "DE",
"phone_verified_at": null,
"address1": "53889 Gaylord Mission Suite 951",
"address2": "West Kian, IN 44374-9293",
"postal_code": "83904",
"city": "Monahan and Sons",
"country": "PT",
"clinic_name": "West Davin",
"clinic_location": "220 Mallory Ford\nBodemouth, OH 37827-6442",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:32:55.000000Z",
"updated_at": "2026-05-07T15:32:55.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 127,
"serial": "436f2fa2-d7bb-3dbd-a072-0a6ba336e5c9",
"bluetooth_id": "f98aa83f-4c65-3ede-b50f-1f488c6fc19a",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:32:56.000000Z",
"updated_at": "2026-05-07T15:32:56.000000Z"
},
"messages": [
{
"id": 31,
"ticket_id": 63,
"sender_id": 211,
"title": "Ms.",
"content": "Eligendi voluptatibus ut velit blanditiis.",
"is_read": false,
"created_at": "2026-05-07T15:32:57.000000Z",
"updated_at": "2026-05-07T15:32:57.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:CREATE_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:CREATE_MESSAGE:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Mark all messages as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/read" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/read"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 71,
"sender_id": 223,
"recipient_id": 224,
"device_id": 128,
"meeting_date": "2026-05-07 15:33:03",
"meeting_type": "online_meeting",
"contact_email": "eldridge81@hudson.org",
"status": "new",
"created_at": "2026-05-07T15:33:03.000000Z",
"updated_at": "2026-05-07T15:33:03.000000Z",
"sender": {
"id": 223,
"mrn": "G79AF4GE1778167982",
"name": "Mekhi Senger IV",
"email": "1778167982bogisich.bell@example.com",
"language": "en",
"phone": "1-724-653-7889",
"phone_country": "MQ",
"phone_verified_at": null,
"address1": "3801 Kuhn Lodge",
"address2": "East Mollie, TX 94216-9779",
"postal_code": "29586",
"city": "Bartoletti, Klocko and Terry",
"country": "SI",
"clinic_name": "Hyattborough",
"clinic_location": "15474 Jake Ville Suite 938\nLindgrentown, FL 73828-8709",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:02.000000Z",
"updated_at": "2026-05-07T15:33:02.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 224,
"mrn": "GRFJ64ZA1778167983",
"name": "Mr. Khalid Labadie",
"email": "1778167983walter.jovan@example.com",
"language": "en",
"phone": "+1.618.800.1622",
"phone_country": "GS",
"phone_verified_at": null,
"address1": "918 Stefanie View Apt. 418",
"address2": "South Diegofurt, OH 76532-9984",
"postal_code": "26376-1117",
"city": "Murray, Heidenreich and Goyette",
"country": "NO",
"clinic_name": "Mathildebury",
"clinic_location": "416 Mills Glens Suite 779\nNyahton, MO 18714-2533",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:03.000000Z",
"updated_at": "2026-05-07T15:33:03.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 128,
"serial": "1623996b-6156-38ab-a4da-610bf5de2e08",
"bluetooth_id": "c6e89f12-9119-39c2-93ae-22577f7f1ebf",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:33:03.000000Z",
"updated_at": "2026-05-07T15:33:03.000000Z"
},
"messages": [
{
"id": 35,
"ticket_id": 71,
"sender_id": 225,
"title": "Prof.",
"content": "Temporibus et id molestiae.",
"is_read": false,
"created_at": "2026-05-07T15:33:05.000000Z",
"updated_at": "2026-05-07T15:33:05.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to read message",
"code": "TICKETS:READ_ALL:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:READ_ALL:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Mark single message as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/read/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/read/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 79,
"sender_id": 237,
"recipient_id": 238,
"device_id": 129,
"meeting_date": "2026-05-07 15:33:10",
"meeting_type": "online_meeting",
"contact_email": "martin.weber@kohler.com",
"status": "new",
"created_at": "2026-05-07T15:33:11.000000Z",
"updated_at": "2026-05-07T15:33:11.000000Z",
"sender": {
"id": 237,
"mrn": "PK5JR3Y21778167990",
"name": "Mrs. Rhea White Jr.",
"email": "1778167990reynolds.erik@example.com",
"language": "en",
"phone": "+1 (678) 339-8349",
"phone_country": "IR",
"phone_verified_at": null,
"address1": "523 Kutch Villages Apt. 151",
"address2": "North Bret, NJ 30097-5551",
"postal_code": "79019-0568",
"city": "Murray-Upton",
"country": "GB",
"clinic_name": "East Joshuaton",
"clinic_location": "3636 Steuber Parkway Apt. 898\nMitchellville, MO 18523",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:10.000000Z",
"updated_at": "2026-05-07T15:33:10.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 238,
"mrn": "U8SED7SM1778167990",
"name": "Marta Treutel",
"email": "1778167990udach@example.net",
"language": "en",
"phone": "+1-540-926-4740",
"phone_country": "GW",
"phone_verified_at": null,
"address1": "884 Alisha Bridge Apt. 424",
"address2": "New Gino, AK 44256-4694",
"postal_code": "87469-5983",
"city": "Fritsch-Vandervort",
"country": "BE",
"clinic_name": "Saraishire",
"clinic_location": "6098 Schultz Prairie Suite 295\nGradyland, MN 22062",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:33:10.000000Z",
"updated_at": "2026-05-07T15:33:10.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 129,
"serial": "3f02f4c8-ae40-327b-8ed4-101d3de330a4",
"bluetooth_id": "20163b4d-8649-399c-8daa-319c8ed1d93c",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:33:11.000000Z",
"updated_at": "2026-05-07T15:33:11.000000Z"
},
"messages": [
{
"id": 39,
"ticket_id": 79,
"sender_id": 239,
"title": "Dr.",
"content": "Delectus quia maiores nobis reiciendis odit.",
"is_read": false,
"created_at": "2026-05-07T15:33:12.000000Z",
"updated_at": "2026-05-07T15:33:12.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to read message",
"code": "TICKETS:READ_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "TICKETS:READ_MESSAGE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Tooltips
API endpoints for managing tooltips
List tooltips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tooltips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Ms. Nya Lindgren",
"type": "image",
"language": "pl",
"file": "0",
"created_by": 301,
"created_at": "2026-05-07T15:33:51.000000Z",
"updated_at": "2026-05-07T15:33:51.000000Z",
"deleted_at": null
},
{
"id": 2,
"name": "Mr. Linwood Gislason Jr.",
"type": "image",
"language": "cv",
"file": "0",
"created_by": 302,
"created_at": "2026-05-07T15:33:51.000000Z",
"updated_at": "2026-05-07T15:33:51.000000Z",
"deleted_at": null
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list tooltips",
"code": "TOOLTIPS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Tooltip ID.
name
string
Tooltip identifier name.
type
string
Media type.
Must be one of:imagevideo
language
string
Language code (ISO 639-1).
file
string
File path or URL.
created_by
integer
ID of the user who created the tooltip.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List archived tooltips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tooltips/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"name": "Stella Kertzmann",
"type": "video",
"language": "kn",
"file": "0",
"created_by": 303,
"created_at": "2026-05-07T15:33:52.000000Z",
"updated_at": "2026-05-07T15:33:52.000000Z",
"deleted_at": null
},
{
"id": 4,
"name": "Kellie Stokes",
"type": "video",
"language": "sv",
"file": "0",
"created_by": 304,
"created_at": "2026-05-07T15:33:52.000000Z",
"updated_at": "2026-05-07T15:33:52.000000Z",
"deleted_at": null
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:LIST_ARCHIVE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Tooltip ID.
name
string
Tooltip identifier name.
type
string
Media type.
Must be one of:imagevideo
language
string
Language code (ISO 639-1).
file
string
File path or URL.
created_by
integer
ID of the user who created the tooltip.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create new tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=Windler Gardens"\
--form "type=video"\
--form "language=hi"\
--form "file=@/tmp/phpZ2cWyI" const url = new URL(
"http://localhost:8000/api/tooltips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', 'Windler Gardens');
body.append('type', 'video');
body.append('language', 'hi');
body.append('file', document.querySelector('input[name="file"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "Ceasar Sipes",
"type": "video",
"language": "fi",
"file": "0",
"created_by": 305,
"created_at": "2026-05-07T15:33:53.000000Z",
"updated_at": "2026-05-07T15:33:53.000000Z",
"deleted_at": null
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (500, Server error):
{
"message": "Server error: tooltip not created",
"code": "TOOLTIPS:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Tooltip ID.
name
string
Tooltip identifier name.
type
string
Media type.
Must be one of:imagevideo
language
string
Language code (ISO 639-1).
file
string
File path or URL.
created_by
integer
ID of the user who created the tooltip.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Archive tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips/1/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/1/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Tooltip archived",
"code": "TOOLTIPS:ARCHIVE:ARCHIVED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:ARCHIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Tooltip not found):
{
"message": "Tooltip not found",
"code": "TOOLTIPS:ARCHIVE:TOOLTIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Restore archived tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips/1/restore" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/1/restore"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Tooltip restored",
"code": "TOOLTIPS:RESTORE:RESTORED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:RESTORE:INSUFFICIENT_PERMISSION"
}
Example response (404, Tooltip not found):
{
"message": "Tooltip not found",
"code": "TOOLTIPS:RESTORE:TOOLTIP_NOT_FOUND"
}
Example response (404, Tooltip is not archived):
{
"message": "Tooltip is not archived",
"code": "TOOLTIPS:RESTORE:TOOLTIP_NOT_ARCHIVED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Trainings
API endpoints for trainings
Get user trainings
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 309,
"training_id": 2,
"notifications_enabled": 1,
"created_at": "2026-05-07T15:33:55.000000Z",
"updated_at": "2026-05-07T15:33:55.000000Z",
"training": {
"id": 2,
"name": "distinctio eos",
"created_at": "2026-05-07T15:33:55.000000Z",
"updated_at": "2026-05-07T15:33:55.000000Z"
}
},
{
"id": 2,
"user_id": 310,
"training_id": 4,
"notifications_enabled": 1,
"created_at": "2026-05-07T15:33:56.000000Z",
"updated_at": "2026-05-07T15:33:56.000000Z",
"training": {
"id": 4,
"name": "tempore alias",
"created_at": "2026-05-07T15:33:56.000000Z",
"updated_at": "2026-05-07T15:33:56.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Get trainings for specific user (clinician access)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"user_id": 311,
"training_id": 6,
"notifications_enabled": 1,
"created_at": "2026-05-07T15:33:56.000000Z",
"updated_at": "2026-05-07T15:33:56.000000Z",
"training": {
"id": 6,
"name": "ut doloribus",
"created_at": "2026-05-07T15:33:56.000000Z",
"updated_at": "2026-05-07T15:33:56.000000Z"
}
},
{
"id": 4,
"user_id": 312,
"training_id": 8,
"notifications_enabled": 1,
"created_at": "2026-05-07T15:33:57.000000Z",
"updated_at": "2026-05-07T15:33:57.000000Z",
"training": {
"id": 8,
"name": "et ut",
"created_at": "2026-05-07T15:33:57.000000Z",
"updated_at": "2026-05-07T15:33:57.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access patient training",
"code": "TRAININGS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "TRAININGS:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Get user badges
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/1/user-badges" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/user-badges"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 313,
"badge_id": 1,
"created_at": "2026-05-07T15:33:57.000000Z",
"updated_at": "2026-05-07T15:33:57.000000Z"
},
{
"id": 2,
"user_id": 314,
"badge_id": 2,
"created_at": "2026-05-07T15:33:58.000000Z",
"updated_at": "2026-05-07T15:33:58.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:BADGES:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:BADGES:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:BADGES:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User badge record ID.
user_id
integer
Associated user ID.
badge_id
integer
Associated badge ID.
created_at
string
Awarded timestamp.
updated_at
string
Last update timestamp.
Start user training
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/start/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/start/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 5,
"user_id": 315,
"training_id": 9,
"notifications_enabled": 1,
"created_at": "2026-05-07T15:33:58.000000Z",
"updated_at": "2026-05-07T15:33:58.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:START:INSUFFICIENT_PERMISSION"
}
Example response (403, User training already started):
{
"message": "Cannot start: training already started",
"code": "TRAININGS:START:ALREADY_STARTED"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:START:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Update training
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/trainings/update/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"notifications_enabled\": false
}"
const url = new URL(
"http://localhost:8000/api/trainings/update/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"notifications_enabled": false
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 6,
"user_id": 316,
"training_id": 10,
"notifications_enabled": 1,
"created_at": "2026-05-07T15:33:59.000000Z",
"updated_at": "2026-05-07T15:33:59.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:UPDATE:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:UPDATE:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Get training progress
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/progress/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/progress/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 7,
"user_id": 317,
"training_id": 11,
"notifications_enabled": 1,
"created_at": "2026-05-07T15:33:59.000000Z",
"updated_at": "2026-05-07T15:33:59.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:PROGRESS:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:PROGRESS:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Mark training task done
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/day/2/task/3" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/day/2/task/3"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200):
{
"id": 8,
"user_id": 318,
"training_id": 12,
"notifications_enabled": 1,
"created_at": "2026-05-07T15:34:00.000000Z",
"updated_at": "2026-05-07T15:34:00.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:MARK_DONE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:MARK_DONE:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:MARK_DONE:TRAINING_NOT_FOUND"
}
Example response (404, Training day not found):
{
"message": "Training day not found",
"code": "TRAININGS:MARK_DONE:TRAINING_DAY_NOT_FOUND"
}
Example response (404, Training task not found):
{
"message": "Training task not found",
"code": "TRAININGS:MARK_DONE:TRAINING_TASK_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Save training exercises attempts
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/day/2/task/3/attempts" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "exercises[][date_start]=2000-02-07 22:00:01"\
--form "exercises[][date_end]=1997-06-29 07:54:49"\
--form "exercises[][end_reason]=back"\
--form "exercises[][config][common][fingerStrength][]=1"\
--form "exercises[][config][common][gripPositions][_]=0"\
--form "exercises[][config][common][gripPositions][0][initial][]=5"\
--form "exercises[][config][common][gripPositions][0][limit][]=43"\
--form "exercises[][config][common][gripPositions][1][initial][]=4"\
--form "exercises[][config][common][gripPositions][1][limit][]=86"\
--form "exercises[][config][common][gripPositions][2][initial][]=8"\
--form "exercises[][config][common][gripPositions][2][limit][]=45"\
--form "exercises[][config][common][gripPositions][3][initial][]=38"\
--form "exercises[][config][common][gripPositions][3][limit][]=59"\
--form "exercises[][config][common][gripPositions][4][initial][]=47"\
--form "exercises[][config][common][gripPositions][4][limit][]=88"\
--form "exercises[][config][common][gripPositions][5][initial][]=4"\
--form "exercises[][config][common][gripPositions][5][limit][]=24"\
--form "exercises[][config][common][gripPositions][6][initial][]=49"\
--form "exercises[][config][common][gripPositions][6][limit][]=82"\
--form "exercises[][config][common][gripPositions][7][initial][]=75"\
--form "exercises[][config][common][gripPositions][7][limit][]=78"\
--form "exercises[][config][common][gripPositions][8][initial][]=12"\
--form "exercises[][config][common][gripPositions][8][limit][]=74"\
--form "exercises[][config][common][gripPositions][9][initial][]=4"\
--form "exercises[][config][common][gripPositions][9][limit][]=23"\
--form "exercises[][config][common][gripPositions][10][initial][]=22"\
--form "exercises[][config][common][gripPositions][10][limit][]=77"\
--form "exercises[][config][common][gripPositions][11][initial][]=11"\
--form "exercises[][config][common][gripPositions][11][limit][]=20"\
--form "exercises[][config][common][gripPositions][12][initial][]=15"\
--form "exercises[][config][common][gripPositions][12][limit][]=87"\
--form "exercises[][config][common][gripPositions][13][initial][]=42"\
--form "exercises[][config][common][gripPositions][13][limit][]=95"\
--form "exercises[][config][common][inputSite][]=1"\
--form "exercises[][config][modes][][id]=83"\
--form "exercises[][config][modes][][name]=Ad quam natus corrupti aut."\
--form "exercises[][config][modes][][slot]=0"\
--form "exercises[][config][modes][][config][autoGrasp][]=0"\
--form "exercises[][config][modes][][config][coContractionTimings][]=500"\
--form "exercises[][config][modes][][config][controlMode][]=1"\
--form "exercises[][config][modes][][config][emgGains][]=100"\
--form "exercises[][config][modes][][config][emgSpike][]=1"\
--form "exercises[][config][modes][][config][emgThresholds][]=60"\
--form "exercises[][config][modes][][config][gripPairsConfig][]=10"\
--form "exercises[][config][modes][][config][gripSequentialConfig][]=12"\
--form "exercises[][config][modes][][config][gripSwitchingMode][]=2"\
--form "exercises[][config][modes][][config][holdOpen][]=2000"\
--form "exercises[][config][modes][][config][pulseTimings][]=790"\
--form "exercises[][config][modes][][config][softGrip][]=1"\
--form "exercises[][config][modes][][config][speedControlStrategy][]=0"\
--form "exercises[][firmware_id]=360285"\
--form "exercises[][app_version]=7.3.45"\
--form "exercises[][attempts][][date_start]=1972-05-27 11:55:57"\
--form "exercises[][attempts][][date_end]=1988-07-20 01:48:29"\
--form "exercises[][attempts][][result]=failure"\
--form "exercises[][emg_file]=@/tmp/phph5UWE6" const url = new URL(
"http://localhost:8000/api/trainings/1/day/2/task/3/attempts"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('exercises[][date_start]', '2000-02-07 22:00:01');
body.append('exercises[][date_end]', '1997-06-29 07:54:49');
body.append('exercises[][end_reason]', 'back');
body.append('exercises[][config][common][fingerStrength][]', '1');
body.append('exercises[][config][common][gripPositions][_]', '0');
body.append('exercises[][config][common][gripPositions][0][initial][]', '5');
body.append('exercises[][config][common][gripPositions][0][limit][]', '43');
body.append('exercises[][config][common][gripPositions][1][initial][]', '4');
body.append('exercises[][config][common][gripPositions][1][limit][]', '86');
body.append('exercises[][config][common][gripPositions][2][initial][]', '8');
body.append('exercises[][config][common][gripPositions][2][limit][]', '45');
body.append('exercises[][config][common][gripPositions][3][initial][]', '38');
body.append('exercises[][config][common][gripPositions][3][limit][]', '59');
body.append('exercises[][config][common][gripPositions][4][initial][]', '47');
body.append('exercises[][config][common][gripPositions][4][limit][]', '88');
body.append('exercises[][config][common][gripPositions][5][initial][]', '4');
body.append('exercises[][config][common][gripPositions][5][limit][]', '24');
body.append('exercises[][config][common][gripPositions][6][initial][]', '49');
body.append('exercises[][config][common][gripPositions][6][limit][]', '82');
body.append('exercises[][config][common][gripPositions][7][initial][]', '75');
body.append('exercises[][config][common][gripPositions][7][limit][]', '78');
body.append('exercises[][config][common][gripPositions][8][initial][]', '12');
body.append('exercises[][config][common][gripPositions][8][limit][]', '74');
body.append('exercises[][config][common][gripPositions][9][initial][]', '4');
body.append('exercises[][config][common][gripPositions][9][limit][]', '23');
body.append('exercises[][config][common][gripPositions][10][initial][]', '22');
body.append('exercises[][config][common][gripPositions][10][limit][]', '77');
body.append('exercises[][config][common][gripPositions][11][initial][]', '11');
body.append('exercises[][config][common][gripPositions][11][limit][]', '20');
body.append('exercises[][config][common][gripPositions][12][initial][]', '15');
body.append('exercises[][config][common][gripPositions][12][limit][]', '87');
body.append('exercises[][config][common][gripPositions][13][initial][]', '42');
body.append('exercises[][config][common][gripPositions][13][limit][]', '95');
body.append('exercises[][config][common][inputSite][]', '1');
body.append('exercises[][config][modes][][id]', '83');
body.append('exercises[][config][modes][][name]', 'Ad quam natus corrupti aut.');
body.append('exercises[][config][modes][][slot]', '0');
body.append('exercises[][config][modes][][config][autoGrasp][]', '0');
body.append('exercises[][config][modes][][config][coContractionTimings][]', '500');
body.append('exercises[][config][modes][][config][controlMode][]', '1');
body.append('exercises[][config][modes][][config][emgGains][]', '100');
body.append('exercises[][config][modes][][config][emgSpike][]', '1');
body.append('exercises[][config][modes][][config][emgThresholds][]', '60');
body.append('exercises[][config][modes][][config][gripPairsConfig][]', '10');
body.append('exercises[][config][modes][][config][gripSequentialConfig][]', '12');
body.append('exercises[][config][modes][][config][gripSwitchingMode][]', '2');
body.append('exercises[][config][modes][][config][holdOpen][]', '2000');
body.append('exercises[][config][modes][][config][pulseTimings][]', '790');
body.append('exercises[][config][modes][][config][softGrip][]', '1');
body.append('exercises[][config][modes][][config][speedControlStrategy][]', '0');
body.append('exercises[][firmware_id]', '360285');
body.append('exercises[][app_version]', '7.3.45');
body.append('exercises[][attempts][][date_start]', '1972-05-27 11:55:57');
body.append('exercises[][attempts][][date_end]', '1988-07-20 01:48:29');
body.append('exercises[][attempts][][result]', 'failure');
body.append('exercises[][emg_file]', document.querySelector('input[name="exercises[][emg_file]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 319,
"training_task_id": 1,
"date_start": "2023-01-25 01:09:28",
"date_end": "2008-11-22 18:42:14",
"end_reason": "back",
"config": "{\"common\":{\"fingerStrength\":[1,300],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[7,61,54,46,6],\"limit\":[45,77,88,49,39]},\"1\":{\"initial\":[31,32,11,29,65],\"limit\":[78,84,44,87,90]},\"2\":{\"initial\":[6,58,19,3,26],\"limit\":[45,66,80,73,90]},\"3\":{\"initial\":[44,9,77,1,78],\"limit\":[87,22,89,20,92]},\"4\":{\"initial\":[19,18,11,31,23],\"limit\":[49,19,85,58,91]},\"5\":{\"initial\":[33,39,55,18,33],\"limit\":[88,81,64,33,89]},\"6\":{\"initial\":[12,30,42,33,40],\"limit\":[68,48,74,84,54]},\"7\":{\"initial\":[57,5,42,1,50],\"limit\":[68,6,50,91,68]},\"8\":{\"initial\":[28,27,37,27,32],\"limit\":[65,41,50,59,45]},\"9\":{\"initial\":[26,18,7,17,48],\"limit\":[57,60,14,79,74]},\"10\":{\"initial\":[89,17,45,62,42],\"limit\":[91,44,95,67,63]},\"11\":{\"initial\":[40,22,20,51,29],\"limit\":[74,93,64,94,36]},\"12\":{\"initial\":[33,48,1,75,49],\"limit\":[82,62,62,84,77]},\"13\":{\"initial\":[24,22,14,44,6],\"limit\":[54,58,24,81,35]}},\"inputSite\":[0]},\"modes\":[{\"id\":86,\"name\":\"Mollitia excepturi totam deleniti non at cupiditate amet.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[400,300],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[70,20,50,50,0,60,20,10,80,100],\"gripPairsConfig\":[13,3,12,6,10,7,4,11],\"gripSequentialConfig\":[255,8,10,3,255,255,7,1,9,2,255,255],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2000],\"pulseTimings\":[210,10,380,560],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":87,\"name\":\"Error molestiae ut voluptatem cum sapiente commodi sit.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[200,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[10,10,60,30,30,60,40,30,70,20],\"gripPairsConfig\":[3,1,10,5,4,2,12,8],\"gripSequentialConfig\":[13,2,255,9,8,6,1,5,10,3,12,4],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2500],\"pulseTimings\":[590,130,960,440],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":88,\"name\":\"Modi vel adipisci explicabo atque sed culpa voluptas.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,200],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[0,100,40,20,90,20,0,40,70,0],\"gripPairsConfig\":[3,4,11,8,7,6,10,2],\"gripSequentialConfig\":[6,12,11,8,3,7,255,9,255,13,255,255],\"gripSwitchingMode\":[3],\"holdOpen\":[2000,2500],\"pulseTimings\":[930,360,630,10],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"firmware_id": 24,
"app_version": "0.52.12",
"emg_file": "/tmp/fakerRqCl0X",
"created_at": "2026-05-07T15:34:01.000000Z",
"updated_at": "2026-05-07T15:34:01.000000Z",
"attempts": [
{
"id": 1,
"training_log_id": 1,
"date_start": "2021-05-17 08:39:13",
"date_end": "2025-09-23 22:40:44",
"result": "failure",
"created_at": "2026-05-07T15:34:01.000000Z",
"updated_at": "2026-05-07T15:34:01.000000Z"
}
]
},
{
"id": 3,
"user_id": 321,
"training_task_id": 3,
"date_start": "1981-04-07 20:22:57",
"date_end": "1994-10-21 07:17:48",
"end_reason": "success",
"config": "{\"common\":{\"fingerStrength\":[1,500],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[40,48,23,75,2],\"limit\":[40,49,41,78,4]},\"1\":{\"initial\":[11,20,83,24,36],\"limit\":[83,34,92,43,87]},\"2\":{\"initial\":[41,1,38,93,16],\"limit\":[57,95,85,94,40]},\"3\":{\"initial\":[56,4,54,22,1],\"limit\":[69,38,70,29,17]},\"4\":{\"initial\":[48,15,8,31,43],\"limit\":[76,89,94,62,47]},\"5\":{\"initial\":[1,39,28,42,9],\"limit\":[32,91,47,58,71]},\"6\":{\"initial\":[8,1,2,32,21],\"limit\":[53,65,12,43,64]},\"7\":{\"initial\":[74,37,2,1,54],\"limit\":[92,95,88,47,92]},\"8\":{\"initial\":[17,19,3,87,15],\"limit\":[78,77,16,88,17]},\"9\":{\"initial\":[40,10,10,2,47],\"limit\":[85,35,66,52,60]},\"10\":{\"initial\":[45,26,65,45,44],\"limit\":[48,52,84,93,66]},\"11\":{\"initial\":[42,64,34,44,25],\"limit\":[56,84,74,71,41]},\"12\":{\"initial\":[29,10,79,12,25],\"limit\":[90,26,87,54,57]},\"13\":{\"initial\":[81,3,61,33,11],\"limit\":[86,60,75,69,30]}},\"inputSite\":[1]},\"modes\":[{\"id\":92,\"name\":\"Molestiae ullam quia nostrum qui sapiente quis blanditiis.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[400,400],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[30,50,90,70,50,20,100,70,60,100],\"gripPairsConfig\":[13,10,4,5,12,3,1,7],\"gripSequentialConfig\":[7,11,5,2,6,255,255,255,255,13,9,8],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2500],\"pulseTimings\":[880,940,240,220],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":93,\"name\":\"Et aut quibusdam ducimus repudiandae.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[500,300],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[80,20,40,10,70,100,40,50,40,80],\"gripPairsConfig\":[7,8,11,12,3,9,2,1],\"gripSequentialConfig\":[12,11,10,255,255,7,255,255,255,3,255,255],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2000],\"pulseTimings\":[800,310,470,620],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":94,\"name\":\"Officia minus recusandae voluptatem.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[400,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[0,30,50,10,0,70,20,20,30,60],\"gripPairsConfig\":[7,6,2,11,8,3,4,5],\"gripSequentialConfig\":[12,255,255,255,7,11,255,2,5,6,255,1],\"gripSwitchingMode\":[3],\"holdOpen\":[2000,2500],\"pulseTimings\":[220,140,950,900],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"firmware_id": 26,
"app_version": "5.31.96",
"emg_file": "/tmp/fakerEbpgmH",
"created_at": "2026-05-07T15:34:02.000000Z",
"updated_at": "2026-05-07T15:34:02.000000Z",
"attempts": [
{
"id": 2,
"training_log_id": 3,
"date_start": "1997-11-30 04:46:31",
"date_end": "1989-12-10 02:31:11",
"result": "failure",
"created_at": "2026-05-07T15:34:02.000000Z",
"updated_at": "2026-05-07T15:34:02.000000Z"
}
]
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:SAVE_ATTEMPTS:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:SAVE_ATTEMPTS:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:SAVE_ATTEMPTS:TRAINING_NOT_FOUND"
}
Example response (404, Training day not found):
{
"message": "Training day not found",
"code": "TRAININGS:SAVE_ATTEMPTS:TRAINING_DAY_NOT_FOUND"
}
Example response (404, Training task not found):
{
"message": "Training task not found",
"code": "TRAININGS:SAVE_ATTEMPTS:TRAINING_TASK_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Training log entry ID.
user_id
integer
Associated user ID.
training_task_id
integer
Associated training task ID.
date_start
string
Session start datetime.
date_end
string
Session end datetime.
end_reason
string
Reason the session ended.
config
string
Device config snapshot at time of session.
firmware_id
integer
Firmware version ID used during session.
app_version
string
App version used during session.
emg_file
string
EMG data file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
attempts
object[]
Training log attempts.
Get reward status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/1/reward" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/reward"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, Reward status):
{
"status": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:REWARD_STATUS:INSUFFICIENT_PERMISSION"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:REWARD_STATUS:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Save reward details
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/reward" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"digital\",
\"country\": \"SI\",
\"delivery\": \"home_delivery\",
\"email\": \"morissette.lina@hotmail.com\",
\"phone\": \"1-820-362-2659\",
\"full_name\": \"Marcelino Kovacek\",
\"address1\": \"472 Laura Knoll Apt. 577\",
\"address2\": \"Apt. 998\",
\"city\": \"North Ibrahim\",
\"postal_code\": \"99890\",
\"state\": \"SIT\",
\"parcel_locker_code\": \"5A2W6PET\",
\"pin_code\": \"613447\"
}"
const url = new URL(
"http://localhost:8000/api/trainings/1/reward"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "digital",
"country": "SI",
"delivery": "home_delivery",
"email": "morissette.lina@hotmail.com",
"phone": "1-820-362-2659",
"full_name": "Marcelino Kovacek",
"address1": "472 Laura Knoll Apt. 577",
"address2": "Apt. 998",
"city": "North Ibrahim",
"postal_code": "99890",
"state": "SIT",
"parcel_locker_code": "5A2W6PET",
"pin_code": "613447"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 1,
"user_id": 323,
"training_id": 21,
"type": "physical",
"country": "HU",
"delivery": "home_delivery",
"email": "keara94@yahoo.com",
"phone": "+1-208-326-7955",
"full_name": "Prof. Saul Bahringer",
"address1": "2921 Arlo Crest",
"address2": "8515 Jennyfer Walk\nMadelynnshire, MI 05582-7769",
"city": "Collinsburgh",
"postal_code": "27749",
"state": "QUIA",
"parcel_locker_code": "A7Z4R527",
"pin_code": "706265",
"created_at": "2026-05-07T15:34:03.000000Z",
"updated_at": "2026-05-07T15:34:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:REWARD_SAVE:INSUFFICIENT_PERMISSION"
}
Example response (403, Reward details already exists):
{
"message": "Reward details already exists",
"code": "TRAININGS:REWARD_SAVE:ALREADY_EXISTS"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:REWARD_SAVE:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User reward ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
type
string
Reward type.
Must be one of:digitalphysical
country
string
Delivery country code.
delivery
string
Delivery method.
Must be one of:home_deliveryparcel_locker
email
string
Recipient email.
phone
string
Recipient phone.
full_name
string
Recipient full name.
address1
string
Delivery address line 1.
address2
string
Delivery address line 2.
city
string
Delivery city.
postal_code
string
Delivery postal code.
state
string
Delivery state.
parcel_locker_code
string
Parcel locker code.
pin_code
string
PIN code for delivery.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get user progress (clinician view)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/progress/dolorem/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/progress/dolorem/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"number": 1,
"key": "openClose",
"status": "completed",
"status_updated_at": "2026-02-04 11:00:00"
},
{
"number": 2,
"key": "holdOpen",
"status": "in_progress",
"status_updated_at": "2026-02-05 09:00:00"
},
{
"number": 3,
"key": "changeSignal",
"status": "not_started",
"status_updated_at": null
},
{
"number": 4,
"key": "thumbPositioning",
"status": "not_started",
"status_updated_at": null
},
{
"number": 5,
"key": "sequentialAndPairingMode",
"status": "not_started",
"status_updated_at": null
},
{
"number": 6,
"key": "fingerSpeedTraining",
"status": "not_started",
"status_updated_at": null
},
{
"number": 7,
"key": "freezeMode",
"status": "not_started",
"status_updated_at": null
},
{
"number": 8,
"key": "coreSkillsTest",
"status": "not_started",
"status_updated_at": null
},
{
"number": 9,
"key": "powerSoftGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 10,
"key": "precisionGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 11,
"key": "tripodGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 12,
"key": "keyGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 13,
"key": "gripSelection",
"status": "not_started",
"status_updated_at": null
},
{
"number": 14,
"key": "finalGripAndControlTest",
"status": "not_started",
"status_updated_at": null
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access patient training",
"code": "TRAININGS:PROGRESS_CLINICIAN:INSUFFICIENT_PERMISSION"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:PROGRESS_CLINICIAN:TRAINING_NOT_FOUND"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "TRAININGS:PROGRESS_CLINICIAN:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.User preferences
API endpoints for user preferences
List user preferences
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/preferences" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/preferences"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"preference1": "value1",
"preference2": null,
"preference3": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user preferences",
"code": "USERS_PREFERENCES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user preference
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/preferences/sidebar_enabled" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/preferences/sidebar_enabled"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 1,
"user_id": 324,
"name": "DarkViolet",
"value": "0",
"created_at": "2026-05-07T15:34:04.000000Z",
"updated_at": "2026-05-07T15:34:04.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user preferences",
"code": "USERS_PREFERENCES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, User preference not found):
{
"message": "User preference not found",
"code": "USERS_PREFERENCES:GET:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Set user preference
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/preferences" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"sidebar_enabled\",
\"value\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/preferences"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "sidebar_enabled",
"value": "1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 2,
"user_id": 325,
"name": "DeepPink",
"value": "1",
"created_at": "2026-05-07T15:34:04.000000Z",
"updated_at": "2026-05-07T15:34:04.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user preferences",
"code": "USERS_PREFERENCES:SET:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Users
API endpoints for user management
Get users list
requires authentication
Possible extend options:
- clinicians - users assigned to this user as clinicians (for Amputee role)
- patients - users assigned to this user as patients (for ClinicAdmin/Clinician/ClinicianSupport role)
- devices - products assigned to user (for Amputee role)
- devicesAsClinician - products assigned to user as clinician (for ClinicAdmin/Clinician/ClinicianSupport role)
- roles - user roles
- permissions - user permissions (for ClinicianSupport role)
Example request:
curl --request GET \
--get "http://localhost:8000/api/users?search=Tom&active=-1&clinician[]=18&roles=Clinician%2CAmputee&has_devices=1&user_toggles=goals%2Ctrainings" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/users"
);
const params = {
"search": "Tom",
"active": "-1",
"clinician[0]": "18",
"roles": "Clinician,Amputee",
"has_devices": "1",
"user_toggles": "goals,trainings",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 7,
"mrn": "6PG9BGBY1778167860",
"name": "Gaston Buckridge",
"email": "1778167860ratke.octavia@example.com",
"language": "en",
"phone": "520.299.7313",
"phone_country": "CC",
"phone_verified_at": null,
"address1": "7092 Cydney Ways",
"address2": "Williamsonborough, LA 74914-8912",
"postal_code": "19898-5657",
"city": "Romaguera, Bartoletti and Rowe",
"country": "AT",
"clinic_name": "East Woodrow",
"clinic_location": "548 Madaline Glen\nBrandihaven, FL 44984-8600",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:01.000000Z",
"updated_at": "2026-05-07T15:31:01.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"clinicians": [
{
"id": 8,
"mrn": "4SKLXVC71778167861",
"name": "Mr. Rod Stracke",
"email": "1778167861norene.homenick@example.net",
"language": "en",
"phone": "(325) 867-0272",
"phone_country": "EC",
"phone_verified_at": null,
"address1": "3182 Brekke Manors Suite 237",
"address2": "Darienport, IN 02353-7907",
"postal_code": "23258",
"city": "Gerhold, Windler and Kunde",
"country": "SK",
"clinic_name": "Port Joyberg",
"clinic_location": "6203 Carroll Views Suite 198\nIsaacton, ME 24891-9506",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:01.000000Z",
"updated_at": "2026-05-07T15:31:01.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"pivot": {
"user_id": 7,
"assigned_user_id": 8
},
"roles": []
}
],
"devices": [
{
"id": 1,
"serial": "bc97724a-4d30-302f-9142-b16dfa4d1fdb",
"bluetooth_id": "5390c9dc-186c-3028-b8d4-e37973624008",
"company_id": null,
"model_id": null,
"amputee_id": 7,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:02.000000Z",
"updated_at": "2026-05-07T15:31:02.000000Z"
}
],
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
},
{
"id": 9,
"mrn": "URSLRV3D1778167862",
"name": "Janet Ondricka",
"email": "1778167862tressa.toy@example.org",
"language": "en",
"phone": "972.603.2225",
"phone_country": "UZ",
"phone_verified_at": null,
"address1": "7989 Itzel Mission",
"address2": "Port Jordaneburgh, FL 77300",
"postal_code": "01634-1619",
"city": "Ziemann LLC",
"country": "SK",
"clinic_name": "Tedborough",
"clinic_location": "5737 Deja Parkways Apt. 249\nSouth Tonymouth, NC 98737",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:02.000000Z",
"updated_at": "2026-05-07T15:31:02.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"clinicians": [
{
"id": 10,
"mrn": "PGWLC8GK1778167862",
"name": "Jerad Stroman",
"email": "1778167862beier.zetta@example.com",
"language": "en",
"phone": "1-737-976-0734",
"phone_country": "LV",
"phone_verified_at": null,
"address1": "7130 Madeline Mills Apt. 309",
"address2": "South Moseview, GA 78437-2686",
"postal_code": "67161",
"city": "Halvorson, Cartwright and O'Reilly",
"country": "IN",
"clinic_name": "New Zane",
"clinic_location": "67499 Marcia Way Apt. 137\nJuliashire, OK 96306-3006",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:02.000000Z",
"updated_at": "2026-05-07T15:31:02.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"pivot": {
"user_id": 9,
"assigned_user_id": 10
},
"roles": []
}
],
"devices": [
{
"id": 2,
"serial": "32bab89f-3251-369c-a09f-262e23675501",
"bluetooth_id": "7633dd23-6ba1-32ac-b1b1-815a91298a08",
"company_id": null,
"model_id": null,
"amputee_id": 9,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:03.000000Z",
"updated_at": "2026-05-07T15:31:03.000000Z"
}
],
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user list",
"code": "USERS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get current user data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/me" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/me"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 11,
"mrn": "B9K934QE1778167863",
"name": "Laverne Keebler",
"email": "1778167863tromp.alexzander@example.org",
"language": "en",
"phone": "937.945.3237",
"phone_country": "GE",
"phone_verified_at": null,
"address1": "5258 Evans Station Suite 798",
"address2": "New Hardy, KS 82135",
"postal_code": "28444",
"city": "Hills-Stehr",
"country": "AT",
"clinic_name": "Port Claudefort",
"clinic_location": "7371 Monserrate Creek Apt. 777\nNew Alaynatown, NV 20337-4738",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:03.000000Z",
"updated_at": "2026-05-07T15:31:03.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Get other user data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 12,
"mrn": "PWCQ42HQ1778167863",
"name": "Dr. Luigi Borer",
"email": "1778167863xschmidt@example.org",
"language": "en",
"phone": "+1-207-418-7996",
"phone_country": "KW",
"phone_verified_at": null,
"address1": "998 Trenton Islands",
"address2": "East Jeromy, FL 74110",
"postal_code": "97235",
"city": "Langosh PLC",
"country": "HU",
"clinic_name": "Koelpinbury",
"clinic_location": "55176 Kristina Passage Apt. 190\nPort Kirstin, OH 40599-0491",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:03.000000Z",
"updated_at": "2026-05-07T15:31:03.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user data",
"code": "USERS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:GET:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Create new user account
requires authentication
Predefined permissions:
user.view- access to view users' data (GET /user/{id} endpoint)user.update- access to update users' data (PUT /user/{id} and POST /user/{id}/phone endpoints)user.passwordChange- access to change users' passwords (POST /user/{id}/password endpoint)user.devices- access to list of users' devices (GET /user/{id}/devices endpoint)user.tickets.view- access to listing and viewing ticketsuser.tickets.update- access to updating tickets (marking messages as read)user.tickets.send- access to sending messages in ticketsuser.tickets.close- access to closing ticketsuser.goals- access to view or manage users' goals
Example request:
curl --request POST \
"http://localhost:8000/api/user" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "mrn=MRN12345678"\
--form "name=Tom Smith"\
--form "email=test@example.com"\
--form "language=en"\
--form "address1=8682 Jerald Plaza"\
--form "address2=New Newellland, AK 78847-9638"\
--form "postal_code=67633"\
--form "city=West Zoeymouth"\
--form "country=CY"\
--form "clinic_name=Aether"\
--form "clinic_location=8682 Jerald Plaza"\
--form "mfa_enabled=1"\
--form "mfa_method=email"\
--form "clinicians[]=2"\
--form "notifications_timezone=Europe/Warsaw"\
--form "notifications_at=8:00"\
--form "role=Amputee"\
--form "image=@/tmp/phpS1u5Ay" const url = new URL(
"http://localhost:8000/api/user"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('mrn', 'MRN12345678');
body.append('name', 'Tom Smith');
body.append('email', 'test@example.com');
body.append('language', 'en');
body.append('address1', '8682 Jerald Plaza');
body.append('address2', 'New Newellland, AK 78847-9638');
body.append('postal_code', '67633');
body.append('city', 'West Zoeymouth');
body.append('country', 'CY');
body.append('clinic_name', 'Aether');
body.append('clinic_location', '8682 Jerald Plaza');
body.append('mfa_enabled', '1');
body.append('mfa_method', 'email');
body.append('clinicians[]', '2');
body.append('notifications_timezone', 'Europe/Warsaw');
body.append('notifications_at', '8:00');
body.append('role', 'Amputee');
body.append('image', document.querySelector('input[name="image"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 13,
"mrn": "ZSBRUS4G1778167864",
"name": "Ms. Lola Reynolds III",
"email": "1778167864kuvalis.angelita@example.com",
"language": "en",
"phone": "(229) 238-5689",
"phone_country": "ME",
"phone_verified_at": null,
"address1": "2420 Mohamed Islands",
"address2": "Kamrenport, AL 56074-6352",
"postal_code": "99528-7287",
"city": "Rosenbaum-Ritchie",
"country": "CZ",
"clinic_name": "Zemlakmouth",
"clinic_location": "2703 Boehm Curve Suite 956\nMarquardtshire, WY 09876-4847",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:04.000000Z",
"updated_at": "2026-05-07T15:31:04.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "Amputee"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create user with given role",
"code": "USERS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "USERS:CREATE:EMAIL_IN_USE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Update user account
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "mrn=MRN12345678"\
--form "name=Tom Smith"\
--form "email=test@example.com"\
--form "language=en"\
--form "address1=7551 Schaden Orchard Suite 387"\
--form "address2=New Isadoremouth, TN 70836-4058"\
--form "postal_code=33687-0669"\
--form "city=Bernieceland"\
--form "country=UA"\
--form "clinic_name=Aether"\
--form "clinic_location=7551 Schaden Orchard Suite 387"\
--form "image_delete=1"\
--form "mfa_enabled=1"\
--form "mfa_method=email"\
--form "active=1"\
--form "clinicians[]=2"\
--form "notifications_timezone=Europe/Warsaw"\
--form "notifications_at=8:00"\
--form "role=Amputee"\
--form "image=@/tmp/phpbwGqPv" const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('mrn', 'MRN12345678');
body.append('name', 'Tom Smith');
body.append('email', 'test@example.com');
body.append('language', 'en');
body.append('address1', '7551 Schaden Orchard Suite 387');
body.append('address2', 'New Isadoremouth, TN 70836-4058');
body.append('postal_code', '33687-0669');
body.append('city', 'Bernieceland');
body.append('country', 'UA');
body.append('clinic_name', 'Aether');
body.append('clinic_location', '7551 Schaden Orchard Suite 387');
body.append('image_delete', '1');
body.append('mfa_enabled', '1');
body.append('mfa_method', 'email');
body.append('active', '1');
body.append('clinicians[]', '2');
body.append('notifications_timezone', 'Europe/Warsaw');
body.append('notifications_at', '8:00');
body.append('role', 'Amputee');
body.append('image', document.querySelector('input[name="image"]').files[0]);
fetch(url, {
method: "PUT",
headers,
body,
}).then(response => response.json());Example response (202):
{
"id": 14,
"mrn": "SH3BYSNG1778167865",
"name": "Mr. Thomas Kuphal",
"email": "1778167865bbernhard@example.org",
"language": "en",
"phone": "1-567-240-3168",
"phone_country": "ES",
"phone_verified_at": null,
"address1": "63493 Fahey Hollow",
"address2": "Haylieview, ME 77252",
"postal_code": "03899-8958",
"city": "Kuhic, Kovacek and Miller",
"country": "FR",
"clinic_name": "Port Alizefurt",
"clinic_location": "10208 Gislason Parkways\nWest Sidshire, MN 30615",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-05-07T15:31:05.000000Z",
"updated_at": "2026-05-07T15:31:05.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Insufficient permission to assign role):
{
"message": "Insufficient permission to assign this role as ClinicAdmin",
"code": "USERS:UPDATE:INSUFFICIENT_PERMISSION_ASSIGN_ROLE"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:UPDATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Update user phone number
requires authentication
Phone number has to be verified after update.
Call /api/mfa/phone/verify with user-filled code after performing this operation.
If value is "0" phone number will be removed without any verification.
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/phone" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"phone\": \"+1 (208) 892-0242\",
\"phone_country\": \"US\"
}"
const url = new URL(
"http://localhost:8000/api/user/1/phone"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone": "+1 (208) 892-0242",
"phone_country": "US"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, Phone number removed):
{
"message": "Phone number removed",
"code": "USERS:SET_PHONE:REMOVED"
}
Example response (200, Phone number updated):
{
"message": "Verification code sent. Call /api/mfa/phone/verify to verify phone number.",
"code": "USERS:SET_PHONE:UPDATED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:SET_PHONE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:SET_PHONE:USER_NOT_FOUND"
}
Example response (500, Code send failed):
{
"message": "Verification code sending failed",
"code": "USERS:SET_PHONE:SEND_FAILED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete user account
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User deleted",
"code": "USERS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete user",
"code": "USERS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has existing patients or chat rooms):
{
"message": "Cannot delete: user has existing patients or chat rooms (patients: 1, chat rooms: 0)",
"code": "USERS:DELETE:HAS_PATIENTS"
}
Example response (403, User has existing devices):
{
"message": "Cannot delete: user has existing devices (as patient: 1, as clinician: 0)",
"code": "USERS:DELETE:HAS_DEVICES"
}
Example response (403, User has open P2P sessions):
{
"message": "Cannot delete: user has open P2P sessions (as patient: 0, as clinician: 1)",
"code": "USERS:DELETE:HAS_P2P_SESSIONS"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DELETE:USER_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: user not deleted",
"code": "USERS:DELETE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete own user account
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User deleted",
"code": "USERS:SELF_DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete user",
"code": "USERS:SELF_DELETE:INSUFFICIENT_PERMISSION"
}
Example response (500, Server error):
{
"message": "Server error: user not deleted",
"code": "USERS:SELF_DELETE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Change other user password
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/password" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"password\": \"et\"
}"
const url = new URL(
"http://localhost:8000/api/user/1/password"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"password": "et"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "User password changed",
"code": "USERS:PASSWORD_CHANGE:CHANGED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to change user password",
"code": "USERS:PASSWORD_CHANGE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:PASSWORD_CHANGE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user devices list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/devices" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/devices"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"serial": "396127d1-983a-3339-aca9-9dc9fe95c1c3",
"bluetooth_id": "761b0b07-5d0a-329c-abb5-382290cbb437",
"company_id": null,
"model_id": 1,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:05.000000Z",
"updated_at": "2026-05-07T15:31:05.000000Z",
"model": {
"id": 1,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-05-07T15:31:05.000000Z",
"updated_at": "2026-05-07T15:31:05.000000Z"
}
},
{
"id": 4,
"serial": "59a74c7b-e18f-34aa-9384-9927ca53b0b5",
"bluetooth_id": "5bc6a974-f980-369d-8451-9341970ed411",
"company_id": null,
"model_id": 2,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-05-07T15:31:05.000000Z",
"updated_at": "2026-05-07T15:31:05.000000Z",
"model": {
"id": 2,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "left",
"active": 1,
"created_at": "2026-05-07T15:31:05.000000Z",
"updated_at": "2026-05-07T15:31:05.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user devices",
"code": "USERS:DEVICES:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DEVICES:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Attach patient to clinician
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/attach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"name@domain.com\"
}"
const url = new URL(
"http://localhost:8000/api/user/attach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "name@domain.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Patient attached",
"code": "USERS:ATTACH:ATTACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to attach patients",
"code": "USERS:ATTACH:INSUFFICIENT_PERMISSION"
}
Example response (403, Patient is already assigned to another clinician):
{
"message": "Patient is already assigned to another clinician",
"code": "USERS:ATTACH:ALREADY_ASSIGNED"
}
Example response (403, User reached the temporary limit of attached devices):
{
"message": "Reached the limit of assigned devices",
"code": "USERS:ATTACH:LIMIT_REACHED"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:ATTACH:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Detach patient from clinician
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/detach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/detach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Patient detached",
"code": "USERS:DETACH:DETACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to detach patient",
"code": "USERS:DETACH:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot detach last clinician):
{
"message": "Cannot detach patient's last clinician",
"code": "USERS:DETACH:CANNOT_DETACH_LAST_CLINICIAN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DETACH:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Admin access to MFA codes
requires authentication
Requires admin.mfa_access permission.
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/mfa-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/mfa-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"id": 1,
"user_id": 1,
"code": "123456",
"channel": "email",
"expires": "2025-05-09 12:00:00"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access MFA codes",
"code": "USERS:ADMIN_MFA_ACCESS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:ADMIN_MFA_ACCESS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user mobile consents
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/consents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/consents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 1,
"name": "vel",
"value": "quia",
"created_at": "1970-03-19T10:30:08.000000Z",
"updated_at": "1982-02-16T11:46:52.000000Z"
},
{
"id": 2,
"user_id": 1,
"name": "dignissimos",
"value": "ea",
"created_at": "1981-12-23T21:21:31.000000Z",
"updated_at": "1981-04-28T21:41:22.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use mobile consents",
"code": "USERS:GET_MOBILE_CONSENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Consent record ID.
user_id
integer
Associated user ID.
name
string
Consent name/key.
value
string
Consent value.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Set user mobile consent
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/consents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Push notifications\",
\"value\": 1
}"
const url = new URL(
"http://localhost:8000/api/consents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Push notifications",
"value": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"user_id": 1,
"name": "quia",
"value": "ipsum",
"created_at": "2008-05-03T14:53:28.000000Z",
"updated_at": "1995-03-16T02:07:09.000000Z"
},
{
"id": 4,
"user_id": 1,
"name": "harum",
"value": "aut",
"created_at": "1998-08-04T23:55:48.000000Z",
"updated_at": "1973-03-28T04:59:19.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use mobile consents",
"code": "USERS:SET_MOBILE_CONSENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Consent record ID.
user_id
integer
Associated user ID.
name
string
Consent name/key.
value
string
Consent value.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Clear user notifications
requires authentication
Clearing notifications allow to receive another notification on same day. This endpoint deletes notifications of type:
- daily activity reminders
- goals daily summary
This endpoint is intended for testing use only.Example request:
curl --request DELETE \
"http://localhost:8000/api/notifications/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/notifications/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"messages": "1 notifications deleted",
"code": "USERS:CLEAR_NOTIFICATIONS:CLEARED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:CLEAR_NOTIFICATIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:CLEAR_NOTIFICATIONS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Versions
API endpoints for versions management
Get software versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/software" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/software"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "4.46.11",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
},
{
"id": 2,
"name": "3.35.98",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "SOFTWARE_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Software version ID.
name
string
Version name.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create software version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/software" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\"
}"
const url = new URL(
"http://localhost:8000/api/versions/software"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "8.60.59",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "SOFTWARE_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Software version ID.
name
string
Version name.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete software version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/software/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/software/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "SOFTWARE_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "SOFTWARE_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "SOFTWARE_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "SOFTWARE_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get firmware versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/firmware" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 2,
"name": "2.18.27",
"file_firmware": "/tmp/fakerXyT1Kz",
"file_firmware_v2": "/tmp/fakerc97xhU",
"file_firmware_v3": "/tmp/fakerSyJqlQ",
"file_firmware_v4": "/tmp/fakereTLXYr",
"file_firmware_v5": "/tmp/fakerquUBvc",
"file_firmware_new_pcb": "/tmp/fakerUbX15l",
"file_bootloader": "/tmp/fakerTegIUN",
"file_bootloader_v2": "/tmp/fakerY0zK6z",
"file_bootloader_v3": "/tmp/fakerCPiirD",
"file_bootloader_v4": "/tmp/fakerGLlKqE",
"changelog": "Atque minus dolore iusto ipsam ut quo rerum. Ut ut dicta dolorem numquam. Blanditiis reprehenderit iste fugiat facilis ut non. Et doloribus aut aut explicabo minima earum.",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
},
{
"id": 3,
"name": "1.77.20",
"file_firmware": "/tmp/fakerIDvuHc",
"file_firmware_v2": "/tmp/fakers4Hpb0",
"file_firmware_v3": "/tmp/fakerCuRxKl",
"file_firmware_v4": "/tmp/fakerqVFDFR",
"file_firmware_v5": "/tmp/faker1xw5Yx",
"file_firmware_new_pcb": "/tmp/fakert9Vj4a",
"file_bootloader": "/tmp/fakerVXch8C",
"file_bootloader_v2": "/tmp/fakerhdeApl",
"file_bootloader_v3": "/tmp/fakerimdRFN",
"file_bootloader_v4": "/tmp/fakermGScYq",
"changelog": "Quis dolorum culpa voluptate. Totam molestiae omnis recusandae tempore impedit. Nisi dicta suscipit molestiae nam explicabo voluptate tenetur.",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "FIRMWARE_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create firmware version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/firmware" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=1.0"\
--form "models[]=1"\
--form "changelog[][language]=en"\
--form "changelog[][changelog]=Fixed bug with the connection"\
--form "file_firmware=@/tmp/phpvYuw0L" \
--form "file_firmware_v2=@/tmp/phpahjAiQ" \
--form "file_firmware_v3=@/tmp/php2eevZS" \
--form "file_firmware_v4=@/tmp/phpc9MUEj" \
--form "file_firmware_v5=@/tmp/phpX7FDNi" \
--form "file_firmware_new_pcb=@/tmp/phpNwv5oa" \
--form "file_bootloader=@/tmp/phphFLzNf" \
--form "file_bootloader_v2=@/tmp/phpawATrE" \
--form "file_bootloader_v3=@/tmp/phpEw3Mib" \
--form "file_bootloader_v4=@/tmp/phpATpHkr" const url = new URL(
"http://localhost:8000/api/versions/firmware"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', '1.0');
body.append('models[]', '1');
body.append('changelog[][language]', 'en');
body.append('changelog[][changelog]', 'Fixed bug with the connection');
body.append('file_firmware', document.querySelector('input[name="file_firmware"]').files[0]);
body.append('file_firmware_v2', document.querySelector('input[name="file_firmware_v2"]').files[0]);
body.append('file_firmware_v3', document.querySelector('input[name="file_firmware_v3"]').files[0]);
body.append('file_firmware_v4', document.querySelector('input[name="file_firmware_v4"]').files[0]);
body.append('file_firmware_v5', document.querySelector('input[name="file_firmware_v5"]').files[0]);
body.append('file_firmware_new_pcb', document.querySelector('input[name="file_firmware_new_pcb"]').files[0]);
body.append('file_bootloader', document.querySelector('input[name="file_bootloader"]').files[0]);
body.append('file_bootloader_v2', document.querySelector('input[name="file_bootloader_v2"]').files[0]);
body.append('file_bootloader_v3', document.querySelector('input[name="file_bootloader_v3"]').files[0]);
body.append('file_bootloader_v4', document.querySelector('input[name="file_bootloader_v4"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "6.61.46",
"file_firmware": "/tmp/fakerRNTTzA",
"file_firmware_v2": "/tmp/fakers6ZMEV",
"file_firmware_v3": "/tmp/fakerlcScSL",
"file_firmware_v4": "/tmp/fakerbpFaKd",
"file_firmware_v5": "/tmp/faker9nTzew",
"file_firmware_new_pcb": "/tmp/fakerQSWXDJ",
"file_bootloader": "/tmp/fakerOF1T44",
"file_bootloader_v2": "/tmp/fakervhShbU",
"file_bootloader_v3": "/tmp/fakercyUd92",
"file_bootloader_v4": "/tmp/fakerVSfdul",
"changelog": "Amet aut eos ducimus quia nisi. Ab nulla deserunt voluptate consequatur eius ut et. Aliquam ipsum et aperiam quidem. Rerum ea sint est nisi consequatur.",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "FIRMWARE_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update firmware version
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/firmware/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=1.0"\
--form "models[]=1"\
--form "file_firmware_delete=1"\
--form "file_firmware_v2_delete=1"\
--form "file_firmware_v3_delete=1"\
--form "file_firmware_v4_delete=1"\
--form "file_firmware_v5_delete=1"\
--form "file_firmware_new_pcb_delete=1"\
--form "file_bootloader_delete=1"\
--form "file_bootloader_v2_delete=1"\
--form "file_bootloader_v3_delete=1"\
--form "file_bootloader_v4_delete=1"\
--form "changelog[][language]=en"\
--form "changelog[][changelog]=Fixed bug with the connection"\
--form "file_firmware=@/tmp/phpgb84Tk" \
--form "file_firmware_v2=@/tmp/phpU00UPl" \
--form "file_firmware_v3=@/tmp/phpRWO8jF" \
--form "file_firmware_v4=@/tmp/phpYzxOtd" \
--form "file_firmware_v5=@/tmp/php1ebk58" \
--form "file_firmware_new_pcb=@/tmp/phpbunaU4" \
--form "file_bootloader=@/tmp/phpXV0wUi" \
--form "file_bootloader_v2=@/tmp/phpCfJ0eP" \
--form "file_bootloader_v3=@/tmp/phpnz9gES" \
--form "file_bootloader_v4=@/tmp/php4bESV0" const url = new URL(
"http://localhost:8000/api/versions/firmware/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', '1.0');
body.append('models[]', '1');
body.append('file_firmware_delete', '1');
body.append('file_firmware_v2_delete', '1');
body.append('file_firmware_v3_delete', '1');
body.append('file_firmware_v4_delete', '1');
body.append('file_firmware_v5_delete', '1');
body.append('file_firmware_new_pcb_delete', '1');
body.append('file_bootloader_delete', '1');
body.append('file_bootloader_v2_delete', '1');
body.append('file_bootloader_v3_delete', '1');
body.append('file_bootloader_v4_delete', '1');
body.append('changelog[][language]', 'en');
body.append('changelog[][changelog]', 'Fixed bug with the connection');
body.append('file_firmware', document.querySelector('input[name="file_firmware"]').files[0]);
body.append('file_firmware_v2', document.querySelector('input[name="file_firmware_v2"]').files[0]);
body.append('file_firmware_v3', document.querySelector('input[name="file_firmware_v3"]').files[0]);
body.append('file_firmware_v4', document.querySelector('input[name="file_firmware_v4"]').files[0]);
body.append('file_firmware_v5', document.querySelector('input[name="file_firmware_v5"]').files[0]);
body.append('file_firmware_new_pcb', document.querySelector('input[name="file_firmware_new_pcb"]').files[0]);
body.append('file_bootloader', document.querySelector('input[name="file_bootloader"]').files[0]);
body.append('file_bootloader_v2', document.querySelector('input[name="file_bootloader_v2"]').files[0]);
body.append('file_bootloader_v3', document.querySelector('input[name="file_bootloader_v3"]').files[0]);
body.append('file_bootloader_v4', document.querySelector('input[name="file_bootloader_v4"]').files[0]);
fetch(url, {
method: "PUT",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "0.39.76",
"file_firmware": "/tmp/faker5NoWYs",
"file_firmware_v2": "/tmp/fakerCV9gjN",
"file_firmware_v3": "/tmp/fakere50D8p",
"file_firmware_v4": "/tmp/fakerXDifce",
"file_firmware_v5": "/tmp/fakern8vl9k",
"file_firmware_new_pcb": "/tmp/fakerVmlHmg",
"file_bootloader": "/tmp/fakermGyOms",
"file_bootloader_v2": "/tmp/fakerHABNWn",
"file_bootloader_v3": "/tmp/fakerd8micI",
"file_bootloader_v4": "/tmp/fakerRCxtkT",
"changelog": "Dolorum in animi consequuntur dolore praesentium et soluta. Sunt voluptatem dolores enim incidunt. Non ullam ab eius earum nisi sed. Consequuntur accusantium eaque omnis.",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions",
"code": "FIRMWARE_VERSION:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "FIRMWARE_VERSION:UPDATE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete firmware version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/firmware/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "FIRMWARE_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "FIRMWARE_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "FIRMWARE_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (403, Version in use (device)):
{
"message": "Cannot delete: version is assigned to devices (1)",
"code": "FIRMWARE_VERSION:DELETE:VERSION_IN_USE_DEVICE"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "FIRMWARE_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get PCB versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/pcb" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/pcb"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 2,
"name": "1.68.71",
"hardware_id": "",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
},
{
"id": 3,
"name": "6.69.52",
"hardware_id": "",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "PCB_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create PCB version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/pcb" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\",
\"models\": [
1
],
\"hardware_id\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/versions/pcb"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0",
"models": [
1
],
"hardware_id": "1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "4.32.57",
"hardware_id": "",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "PCB_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update PCB version
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/pcb/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\",
\"models\": [
1
],
\"hardware_id\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/versions/pcb/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0",
"models": [
1
],
"hardware_id": "1"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "2.58.49",
"hardware_id": "",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions",
"code": "PCB_VERSION:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "PCB_VERSION:UPDATE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete PCB version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/pcb/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/pcb/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "PCB_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "PCB_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "PCB_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (403, Version in use (device)):
{
"message": "Cannot delete: version is assigned to devices (1)",
"code": "PCB_VERSION:DELETE:VERSION_IN_USE_DEVICE"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "PCB_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List compatibilities
requires authentication
Most typical scenarios to use compatibility matrix:
- full matrix (no filters) - for admin panel displaying,
- filtered by all of the versions (software, firmware, PCB and device model) - for checking specific scenario compatibility and supported features.
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/compatibility?model=1&software=1.2&firmware=1.5&pcb=1.0&summary=" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/compatibility"
);
const params = {
"model": "1",
"software": "1.2",
"firmware": "1.5",
"pcb": "1.0",
"summary": "0",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_model_id": 10,
"software_version_id": 4,
"firmware_version_id": 14,
"pcb_version_id": 6,
"is_fully_compatible": 0,
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z",
"features": [
{
"id": 1,
"compatibility_id": 1,
"feature_id": 5,
"is_compatible": 1,
"reason": "Nobis est culpa molestiae. Itaque nulla deleniti velit natus atque dolores. Repellendus quos necessitatibus earum est aperiam ipsa.",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z",
"feature": {
"id": 5,
"name": "blue",
"slug": "aut-omnis-totam-sed-fugit",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
},
{
"id": 2,
"compatibility_id": 1,
"feature_id": 7,
"is_compatible": 1,
"reason": "Sit odit omnis qui nihil harum. Est eos consequatur nihil distinctio. Modi amet alias rerum in aliquam rerum.",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z",
"feature": {
"id": 7,
"name": "fuchsia",
"slug": "totam-eos-animi-ut-sequi-ut-asperiores-distinctio",
"created_at": "2026-05-07T15:33:20.000000Z",
"updated_at": "2026-05-07T15:33:20.000000Z"
}
},
{
"id": 3,
"compatibility_id": 1,
"feature_id": 9,
"is_compatible": 1,
"reason": "Nisi dignissimos vero est fugit accusantium. Autem omnis nihil sequi sapiente.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"feature": {
"id": 9,
"name": "silver",
"slug": "maiores-et-aperiam-aut-qui-dolores-facere",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
}
]
},
{
"id": 5,
"device_model_id": 14,
"software_version_id": 8,
"firmware_version_id": 18,
"pcb_version_id": 10,
"is_fully_compatible": 0,
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"features": [
{
"id": 4,
"compatibility_id": 5,
"feature_id": 10,
"is_compatible": 0,
"reason": "Eligendi deserunt dolorem dolores. Magni vel sunt corrupti et. Aspernatur accusamus fuga et ut aperiam quis mollitia.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"feature": {
"id": 10,
"name": "yellow",
"slug": "voluptatem-nihil-saepe-omnis-modi-distinctio-nihil-voluptate",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
},
{
"id": 5,
"compatibility_id": 5,
"feature_id": 12,
"is_compatible": 1,
"reason": "Corrupti earum maiores quia corrupti dolor. Ut et ut praesentium numquam eligendi rem ut.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"feature": {
"id": 12,
"name": "blue",
"slug": "minima-nesciunt-non-et",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
},
{
"id": 6,
"compatibility_id": 5,
"feature_id": 14,
"is_compatible": 1,
"reason": "Consequatur temporibus provident ut voluptas possimus ipsa. Consectetur voluptatibus incidunt sapiente sed itaque nihil aut ut. Temporibus est esse et quo esse ratione.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"feature": {
"id": 14,
"name": "olive",
"slug": "odio-voluptas-ut-quia-eligendi-distinctio-velit-qui-cum",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions compatibilities",
"code": "COMPATIBILITY:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device model not found):
{
"message": "Device model not found",
"code": "COMPATIBILITY:LIST:DEVICE_MODEL_NOT_FOUND"
}
Example response (404, Software version not found):
{
"message": "Software version not found",
"code": "COMPATIBILITY:LIST:SOFTWARE_VERSION_NOT_FOUND"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "COMPATIBILITY:LIST:FIRMWARE_VERSION_NOT_FOUND"
}
Example response (404, PCB version not found):
{
"message": "PCB version not found",
"code": "COMPATIBILITY:LIST:PCB_VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Compatibility entry ID.
device_model_id
integer
Associated device model ID.
software_version_id
integer
Associated software version ID.
firmware_version_id
integer
Associated firmware version ID.
pcb_version_id
integer
Associated PCB version ID.
is_fully_compatible
boolean
Whether all versions are fully compatible.
note
string
Compatibility note.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
features
object[]
Associated compatibility features.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Add compatibility
requires authentication
Adds or updates compatibility matrix with assigned features. You can specify many versions for each list.
Example request:
curl --request POST \
"http://localhost:8000/api/versions/compatibility" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"device_models\": [
1
],
\"software_versions\": [
1
],
\"firmware_versions\": [
1
],
\"pcb_versions\": [
1
],
\"is_fully_compatible\": true,
\"features\": [
{
\"feature_id\": 1,
\"compatible\": true,
\"reason\": \"Firmware does not support...\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/versions/compatibility"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"device_models": [
1
],
"software_versions": [
1
],
"firmware_versions": [
1
],
"pcb_versions": [
1
],
"is_fully_compatible": true,
"features": [
{
"feature_id": 1,
"compatible": true,
"reason": "Firmware does not support..."
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"added": 1,
"updated": 0,
"not_changed": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add versions compatibility",
"code": "COMPATIBILITY:ADD:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update compatibility
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/compatibility/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"device_model_id\": 18,
\"software_version_id\": 18,
\"firmware_version_id\": 10,
\"pcb_version_id\": 5,
\"is_fully_compatible\": true,
\"features\": [
{
\"id\": 1,
\"feature_id\": 1,
\"compatible\": true,
\"reason\": \"Firmware does not support...\",
\"delete\": true
}
]
}"
const url = new URL(
"http://localhost:8000/api/versions/compatibility/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"device_model_id": 18,
"software_version_id": 18,
"firmware_version_id": 10,
"pcb_version_id": 5,
"is_fully_compatible": true,
"features": [
{
"id": 1,
"feature_id": 1,
"compatible": true,
"reason": "Firmware does not support...",
"delete": true
}
]
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 9,
"device_model_id": 18,
"software_version_id": 12,
"firmware_version_id": 22,
"pcb_version_id": 14,
"is_fully_compatible": 1,
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"features": [
{
"id": 7,
"compatibility_id": 9,
"feature_id": 15,
"is_compatible": 1,
"reason": "Voluptatem quidem quis voluptas libero optio adipisci excepturi est. Ut incidunt quam animi accusamus laudantium vero cum. Illo minus ipsam vel velit. Iusto aut aut ab ut at.",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z",
"feature": {
"id": 15,
"name": "gray",
"slug": "est-dolor-sint-non-omnis",
"created_at": "2026-05-07T15:33:21.000000Z",
"updated_at": "2026-05-07T15:33:21.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions compatibility",
"code": "COMPATIBILITY:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Versions Compatibility not found):
{
"message": "Versions compatibility not found",
"code": "COMPATIBILITY:UPDATE:COMPATIBILITY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Compatibility entry ID.
device_model_id
integer
Associated device model ID.
software_version_id
integer
Associated software version ID.
firmware_version_id
integer
Associated firmware version ID.
pcb_version_id
integer
Associated PCB version ID.
is_fully_compatible
boolean
Whether all versions are fully compatible.
note
string
Compatibility note.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
features
object[]
Associated compatibility features.
Delete compatibility
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/compatibility/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/compatibility/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Versions compatibility deleted",
"code": "COMPATIBILITY:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions compatibility",
"code": "COMPATIBILITY:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Versions compatibility not found):
{
"message": "Versions compatibility not found",
"code": "COMPATIBILITY:DELETE:COMPATIBILITY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Video sessions
API endpoints for managing video sessions
List video sessions
requires authentication
Returns list of open video sessions. For most cases there should be exactly one entry (open/active session) or exactly zero entries (empty array, no open sessions).
Example request:
curl --request GET \
--get "http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"moderator_id": 122,
"guest_id": 123,
"jwt_moderator": "585fc6a15c83d57c194a5c650c300c42b82a5fd8cb3e4473053c099ed9b32b54",
"jwt_guest": "05221f05f82e83ba89dc822df688a681d42a7ec97d61618b7e0f9dfe14e6130c",
"room_name": "room_9165a3e6f6c18bc23ccd75b6ff3a49d8",
"expires": 1778168827,
"status": "open",
"created_at": "2026-05-07T15:32:08.000000Z",
"updated_at": "2026-05-07T15:32:08.000000Z"
},
{
"id": 2,
"moderator_id": 126,
"guest_id": 127,
"jwt_moderator": "d2879cfaf645d45d43e13364ce08cf9757ad4ef34d4b18b43b7fb5ddc2f31483",
"jwt_guest": "85756a474e257033f25556671875139001822d37a1b9cfb9cf6c4a3b2acb0eaa",
"room_name": "room_a32134985a0050ea3befa4721ff03ad4",
"expires": 1778168829,
"status": "open",
"created_at": "2026-05-07T15:32:10.000000Z",
"updated_at": "2026-05-07T15:32:10.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access video session",
"code": "VIDEO_SESSIONS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "VIDEO_SESSIONS:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Video session ID.
moderator_id
integer
Moderator user ID.
guest_id
integer
Guest user ID.
jwt_moderator
string
JWT token for the moderator.
jwt_guest
string
JWT token for the guest.
room_name
string
Video room name.
expires
integer
Session expiry as Unix timestamp.
status
string
Session status.
Must be one of:openexpiredclosed
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
moderator
object
Moderator user.
guest
object
Guest user.
Initialize video session
requires authentication
Creates JWT (JSON Web Token) and room name for Jitsi session. Logged-in user is a moderator of the session. JWT lifetime is 15 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 3,
"moderator_id": 130,
"guest_id": 131,
"jwt_moderator": "bcee72e6df5d56319125920f6c69d8001e938e122cd14597e547d49cc9126e42",
"jwt_guest": "ef337e157cd1867499743e33bed2ef788a61f8bde49fa932681e77332173c6a6",
"room_name": "room_272f807042ceb12abd6e8aaa5c4117be",
"expires": 1778168831,
"status": "open",
"created_at": "2026-05-07T15:32:12.000000Z",
"updated_at": "2026-05-07T15:32:12.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to initialize video session",
"code": "VIDEO_SESSIONS:INIT:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "VIDEO_SESSIONS:INIT:USER_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error",
"code": "VIDEO_SESSIONS:INIT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Video session ID.
moderator_id
integer
Moderator user ID.
guest_id
integer
Guest user ID.
jwt_moderator
string
JWT token for the moderator.
jwt_guest
string
JWT token for the guest.
room_name
string
Video room name.
expires
integer
Session expiry as Unix timestamp.
status
string
Session status.
Must be one of:openexpiredclosed
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
moderator
object
Moderator user.
guest
object
Guest user.
Refresh video session
requires authentication
Refreshes video session JWT tokens to extend session lifetime.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/1/refresh" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1/refresh"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 4,
"moderator_id": 134,
"guest_id": 135,
"jwt_moderator": "10a3d43aba9613d935422f749c8cb2751db62090e246894a3e96407498e5ce22",
"jwt_guest": "3f087b00c02376c72ab8a17ed920707d2b0de23a13d0bb11a4d03e49a69839fa",
"room_name": "room_4890857806d7f9f513903cb22ef7fc0d",
"expires": 1778168833,
"status": "open",
"created_at": "2026-05-07T15:32:14.000000Z",
"updated_at": "2026-05-07T15:32:14.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to refresh video session",
"code": "VIDEO_SESSIONS:REFRESH:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "Video session not found",
"code": "VIDEO_SESSIONS:REFRESH:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Video session ID.
moderator_id
integer
Moderator user ID.
guest_id
integer
Guest user ID.
jwt_moderator
string
JWT token for the moderator.
jwt_guest
string
JWT token for the guest.
room_name
string
Video room name.
expires
integer
Session expiry as Unix timestamp.
status
string
Session status.
Must be one of:openexpiredclosed
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
moderator
object
Moderator user.
guest
object
Guest user.
Close video session
requires authentication
Marks video session (database entry) as closed. Does not close session on Jitsi side.
Example request:
curl --request DELETE \
"http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Video session closed",
"code": "VIDEO_SESSIONS:CLOSE:CLOSED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to close video session",
"code": "VIDEO_SESSIONS:CLOSE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "Video session not found",
"code": "VIDEO_SESSIONS:CLOSE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Invite technical support
requires authentication
Sends notification to Slack channel. Link to meeting is valid for 10 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/invite-support/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"room\": \"room_1081c785cf1464e4d6ebc3976561d490\",
\"description\": \"Grip switching is not working, please join.\"
}"
const url = new URL(
"http://localhost:8000/api/sessions/video/invite-support/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"room": "room_1081c785cf1464e4d6ebc3976561d490",
"description": "Grip switching is not working, please join."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"response": "success",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:SUCCESS"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to invite tech support",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:DEVICE_NOT_FOUND"
}
Example response (500, Request failed):
{
"response": "invalid_payload",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:FAILED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.