Introduction
This documentation aims to provide all the information you need to work with our API.
Authenticating requests
To authenticate requests, include an Authorization header with the value "Bearer {ACCESS_TOKEN}".
All authenticated endpoints are marked with a requires authentication badge in the documentation below.
Token based authentication
You can retrieve your access token by calling api/login endpoint.
Access tokens are valid 7 days, then expire. You can obtain new access token with expiring access token by calling /api/token/refresh. You can only refresh still valid tokens, otherwise new request to api/login will be required.
Cookie based authentication
You can also authenticate using cookie-based sessions. Before calling any other endpoints you have to obtain XSRF cookie by hitting /sanctum/csrf-cookie endpoint.
In return you receive XSRF-TOKEN cookie, which content you have to attach to each request as X-XSRF-TOKEN header.
Then call /login endpoint. When your authenticated session is created, call any endpoint using X-XSRF-TOKEN header.
Multi-Factor Authorization (MFA)
User can protect its account setting up the MFA as email or one-time passwords (OTP).
If mfa_enabled is set to 1 and mfa_method is set to any of email or otp values,
user will have to use preferred method as second factor on login.
If mfa_method is email, API will automatically send MFA code to user's email inbox.
Most of API endpoints are secured with additional layer and cannot be properly called without this second-factor authorization done.
Instead of endpoint response API will reply with message "MFA is required for this request." and HTTP code 401 Unauthorized.
That means user did not successfully authorized itself with second-factor.
Multi-Factor Authorization (MFA) - Remember Session
The user has the option to remember their device, which means they won't have to enter the MFA code for 30 days.
If using a Token based authentication, you need to add a header named X-MFA-Session-Token with the value {mfa_token} obtained from the /verify endpoint.
Appendix A. Laravel validation rules
List of validation codes returned for Laravel's built-in validation rules:
Code
Description
MUST_BE_ACCEPTED
The field must be accepted. Value must be one of:
1, true, "yes" or "on".MUST_BE_ACCEPTED_IF:other:value
The field must be accepted if
other field equals to value. Accepted values are the same as in MUST_BE_ACCEPTED.MUST_BE_ACTIVE_URL
The field must be an active URL address with a valid A or AAAA record according to the
dns_get_record PHP function.MUST_BE_AFTER:date
The field must be a date that is after a specified
date.MUST_BE_AFTER_OR_EQUAL:date
The field must be a date that is after or equal to a specified
date.MUST_CONTAIN_ONLY_LETTERS
The field must contain only letters.
MUST_CONTAIN_ONLY_LETTERS_NUMBERS_DASHES_UNDERSCORES
The field must contain only letters, numbers, dashes and underscores.
MUST_CONTAIN_ONLY_LETTERS_NUMBERS
The field must contain only letters and numbers.
MUST_BE_ARRAY
The field must be an array.
MUST_BE_BEFORE:date
The field must be a date that is before a specified
date.MUST_BE_BEFORE_OR_EQUAL:date
The field must be a date that is before or equal to a specified
date.BETWEEN:NUMBERS:min:max
The field must be a number between
min and max.BETWEEN:FILE_KB:min:max
The field must be a file with a size between
min and max KB.BETWEEN:STRING_LENGTH:min:max
The field must be a string with a length between
min and max.BETWEEN:ARRAY_COUNT:min:max
The field must be an array with between
min and max elements.MUST_BE_BOOLEAN
The field must be a boolean. Accepted values include:
true, false, 1, 0, "1" and "0".MUST_BE_CONFIRMED
The field must have a matching confirmation field named
{field}_confirmation.MUST_BE_CURRENT_PASSWORD
The field must match the authenticated user's current password.
MUST_BE_DATE
The field must be a valid date according to the
strtotime PHP function.MUST_EQUAL_DATE:date
The field must be a date equal to the specified
date.MUST_BE_DATE_FORMAT:format
The field must match the given date format.
MUST_BE_DIFFERENT:other
The field must have a different value than the field named
other.MUST_HAVE_DIGITS:digits
The field must be numeric and contain exactly
digits digits.MUST_HAVE_DIGITS_BETWEEN:min:max
The field must be numeric and contain between
min and max digits.INVALID_IMAGE_DIMENSIONS
The uploaded image has invalid dimensions.
MUST_BE_DISTINCT
The field's values must not contain any duplicates.
MUST_BE_EMAIL
The field must be a valid email address.
MUST_END_WITH:value
The field must end with
value.MUST_EXIST:table.column
The field's value must already exist in the specified database table and column.
MUST_BE_FILE
The field must be a file.
MUST_HAVE_A_VALUE
The field must have a non-empty value.
GREATER_THAN:NUMBER:value
The field must be numeric and greater than
value.GREATER_THAN:FILE_KB:value
The field must be a file with a size greater than
value KB.GREATER_THAN:STRING_LENGTH:value
The field must be a string with a length greater than
value.GREATER_THAN:ARRAY_COUNT:value
The field must be an array with have more than
value elements.GREATER_THAN_OR_EQUALS:NUMBER:value
The field must be numeric and greater than or equal to
value.GREATER_THAN_OR_EQUALS:FILE_KB:value
The field must be a file with a size greater than or equal to
value KB.GREATER_THAN_OR_EQUALS:STRING_LENGTH:value
The field must be a string with a length greater than or equal to
value.GREATER_THAN_OR_EQUALS:ARRAY_COUNT:value
The field must be an array with at least
value elements.MUST_BE_IMAGE
The field must be an image.
MUST_BE_IN:values
The field value must be on of the
values list.MUST_BE_IN_ARRAY:other
The field's value must exist in the
other field values.MUST_BE_INTEGER
The field must be an integer.
MUST_BE_IP_ADDRESS
The field must be a valid IP address.
MUST_BE_IPV4_ADDRESS
The field must be a valid IPv4 address.
MUST_BE_IPV6_ADDRESS
The field must be a valid IPv6 address.
MUST_BE_JSON
The field must contain valid JSON.
LESS_THAN:NUMBER:value
The field must be numeric and less than
value.LESS_THAN:FILE_KB:value
The field must be a file with a size less than
value KB.LESS_THAN:STRING_LENGTH:value
The field must be a string with a length less than
value.LESS_THAN:ARRAY_COUNT:value
The field must be an array with fewer than
value elements.LESS_THAN_OR_EQUALS:NUMBER:value
The field must be numeric and less than or equal to
value.LESS_THAN_OR_EQUALS:FILE_KB:value
The field must be a file with a size less than or equal to
value KB.LESS_THAN_OR_EQUALS:STRING_LENGTH:value
The field must be a string with a length less than or equal to
value.LESS_THAN_OR_EQUALS:ARRAY_COUNT:value
The field must be an array with no more than
value elements.MAXIMUM:NUMBER:value
The field must be numeric and must not exceed the
value.MAXIMUM:FILE_KB:value
The field must be a file with a size no greater than
value KB.MAXIMUM:STRING_LENGTH:value
The field must be a string with a maximum length equal to
value.MAXIMUM:ARRAY_COUNT:value
The field must be an array with no more than
value elements.MUST_BE_MIME_OF:values
The field must be a file with one of the given file extensions, for example: pdf, png, mpeg.
Note that the rule uses file extensions, but Laravel internally verifies the actual MIME type using the file's contents.
Note that the rule uses file extensions, but Laravel internally verifies the actual MIME type using the file's contents.
MUST_BE_MIMETYPE_OF:values
The field must be a file matching one of the specified MIME types, such as: application/pdf, image/png, video/mpeg.
MINIMUM:NUMBER:min
The field must be numeric and at least
value.MINIMUM:FILE_KB:min
The field must be a file with a size of at least
value KB.MINIMUM:STRING_LENGTH:min
The field must be a string with a minimum length equal to
value.MINIMUM:ARRAY_COUNT:min
The field must be an array with at least
value elements.MUST_BE_MULTIPLE_OF:value
The field must be multiple of
value.MUST_NOT_BE_IN:values
The field's value must not be on of the
values list. This is the opposite of MUST_BE_IN rule.INVALID_FORMAT
The field does not match the given regular expression.
MUST_BE_NUMERIC
The field must be numeric.
MUST_BE_PRESENT
The field must be present, but can be empty.
REQUIRED
The field must be present and not empty.
Field is considered empty if its value is null, an empty string, an empty array or a file input with no file uploaded.
Field is considered empty if its value is null, an empty string, an empty array or a file input with no file uploaded.
REQUIRED_IF:other:value
The field must be present and not empty if
other field is equal to value.REQUIRED_UNLESS:other:values
The field must be present and not empty unless
other field is equal to value.REQUIRED_WITH:values
The field must be present and not empty if any of the fields in
values are present and not empty.REQUIRED_WITH_ALL:values
The field must be present and not empty if all of the fields in
values are present and not empty.REQUIRED_WITHOUT:values
The field must be present and not empty if any of the fields in
values are not present or empty.REQUIRED_WITHOUT_ALL:values
The field must be present and not empty if all of the fields in
values are not present or empty.PROHIBITED
The field must be empty or not present in the request.
PROHIBITED_IF:other:value
The field must be empty or not present if
other field is equal to value.PROHIBITED_UNLESS:other:value
The field must be empty or not present unless
other field is equal to value.PROHIBITS:other
If the field is present, the
other field can't be present at the same time.MUST_BE_SAME:other
The field must have the same value as the
other field.SIZE:NUMBER:size
The field must be numeric and equal to
size.SIZE:FILE_KB:size
The field must be a file with a size of
size KB.SIZE:STRING_LENGTH:size
The field must be a string with a length equal to
size.SIZE:ARRAY_COUNT:size
The field must be an array with exactly
size elements.MUST_START_WITH:value
The field must start with
value.MUST_BE_STRING
The field must be a string.
MUST_BE_TIMEZONE
The field must be a valid timezone according to the
timezone_identifiers_list PHP function.MUST_BE_UNIQUE:table.column
The field's value must not already exist in the specified database table and column.
FAILED_TO_UPLOAD
File upload failed.
MUST_BE_URL
The field must be a valid URL address.
MUST_BE_UUID
The field must be a valid UUID.
More detailed information about validation rules can be found in Laravel documentation.
Appendix B. Custom validation rules
List of custom validation rules messages:
Code
Description
RULES:CONFIG_MODES_LIMIT_RULE:EXCEEDED:
maxChecks whether the device's config modes limit has been reached. Fails when the number of config modes assigned to the device already equals to
max.RULES:FILE_UPLOADS_MAX_TOTAL_SIZE_RULE:EXCEEDED:
max_sizeChecks whether the total size of all uploaded files in the request exceeds the specified limit. Fails if the total size is greater than
max_size KB.RULES:IS_TIMESTAMP_RULE:INVALID_VALUE
Checks whether the value is a valid timestamp. Fails if it's not.
RULES:IS_TIMEZONE_RULE:INVALID_VALUE
Checks whether the value is a valid timezone. Fails if it's not. List of valid timezones is available at the
/api/timezones endpoint.RULES:NOT_EXIST_IN_OTHER_REGIONS_RULE:DEVICE_IDENTIFIER_IN_USE
Checks whether the device identifier (serial or Bluetooth ID) is already in use in another region. Fails if it is.
RULES:NOT_EXIST_IN_OTHER_REGIONS_RULE:USER_EMAIL_IN_USE
Checks whether the user's email is already in use in another region. Fails if it is.
RULES:NOT_INFECTED_RULE:FILE_INFECTED_OR_UPLOAD_ISSUE
Checks whether the uploaded file is infected. Fails if the upload fails or AV software reports an issue.
RULES:PATIENT_DEVICE_RULE:NOT_ASSIGNED
Checks the patient-device assignment. Fails if the device is not assigned to the user.
RULES:P2P_SESSION_MEMBER_RULE:NOT_A_MEMBER
Checks whether the current user is the member of the P2P session they are trying to access. Fails if the user is not a session's patient or clinician.
RULES:URL_EXISTS_RULE:EXPECTED_CONTENT_TYPE:
RULES:URL_EXISTS_RULE:NOT_FOUND
content_typeRULES:URL_EXISTS_RULE:NOT_FOUND
Checks whether the specified URL exists and returns an HTTP 200 response.
If
Otherwise, it only checks the status code and returns
Fails if HTTP code is not 200 or the Content-Type doesn't match the expected value (if specified).
If
content_type was specified, the rule also verifies the returned Content-Type header. If it doesn't match, the error code will include EXPECTED_CONTENT_TYPE:content_type.Otherwise, it only checks the status code and returns
NOT_FOUND if it's not 200.Fails if HTTP code is not 200 or the Content-Type doesn't match the expected value (if specified).
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_LOWERCASE
Checks whether the password contains at least one lowercase letter.
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_UPPERCASE
Checks whether the password contains at least one uppercase letter.
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_NUMBER
Checks whether the password contains at least one number.
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_SYMBOL
Checks whether the password contains at least one symbol.
Acadle
Endpoints related to Acadle integration
Acadle SSO
requires authentication
Creates the SSO authorization link. The link expires after 60 seconds, but can be re-generated without any limits.
Example request:
curl --request POST \
"http://localhost:8000/api/acadle/sso" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/sso"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"sso_url": "https://adp.acadle.com/sso/authenticate/callback?ssoToken=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE3MzczNzU3OTksImV4cCI6MTczNzM3NTg1OSwiZmlyc3RuYW1lIjoiVG9tIiwibGFzdG5hbWUiOiJTbWl0aCIsImVtYWlsIjoidGVzdEBleGFtcGxlLmNvbSIsInVzZXJuYW1lIjpudWxsLCJ0aW1lem9uZSI6IlVUQyJ9.VzE2q6V53bdYJM7aB6CWWxDqcxF4gpdiEF80dD9j-5k",
"sso_expires": 1737375859
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SSO:INSUFFICIENT_PERMISSION"
}
Example response (403, Survey required):
{
"message": "Completing the survey is required to proceed to Acadle",
"code": "ACADLE:SSO:SURVEY_REQUIRED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Check Acadle survey status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"survey_sent": false,
"survey_id": null
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get Acadle survey data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 296,
"cpo_number": "9619586",
"country": "Malawi",
"medical_training": "physician",
"myo_exp_zeus": "0",
"has_demo_hand_access": 1,
"wants_demo_hand": 0,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 0,
"myo_exp_steeper": 1,
"myo_exp_taska": 1,
"myo_exp_vincent": 0,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Aut repellat illo nemo sapiente ea.",
"partial_hand_protheses": "1",
"below_elbow_protheses_single_action": "0",
"below_elbow_protheses_multi_action": "0",
"above_elbow_protheses": "3",
"shoulder_protheses": "1",
"zeus_components_description": "Odio nihil facere in voluptas est.",
"contact_name": "Jedidiah",
"contact_surname": "Monahan",
"company_name": "Welch, Harvey and Daugherty",
"street": "4260 Landen Forks Apt. 040",
"city": "South Adriennemouth",
"postal_code": "24029",
"email": "rocky62@koch.com",
"phone": "+1-732-528-5504",
"phone_country": "sh",
"device_side": "L",
"created_at": "2026-03-20T16:22:28.000000Z",
"updated_at": "2026-03-20T16:22:28.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_RESULTS:INSUFFICIENT_PERMISSION"
}
Example response (404, Survey not found):
{
"message": "Survey not found",
"code": "ACADLE:SURVEY_RESULTS:SURVEY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get Acadle survey data (SuperAdmin)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"id": 2,
"user_id": 297,
"cpo_number": "7533",
"country": "Botswana",
"medical_training": "physician",
"myo_exp_zeus": "0",
"has_demo_hand_access": 1,
"wants_demo_hand": 0,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 0,
"myo_exp_steeper": 0,
"myo_exp_taska": 1,
"myo_exp_vincent": 0,
"myo_exp_pattern_recognition": 0,
"myo_exp_other": "Explicabo architecto placeat assumenda culpa quia ut.",
"partial_hand_protheses": "3",
"below_elbow_protheses_single_action": "2",
"below_elbow_protheses_multi_action": "0",
"above_elbow_protheses": "5",
"shoulder_protheses": "2",
"zeus_components_description": "Et illum id est quia dolorem aliquid.",
"contact_name": "Turner",
"contact_surname": "Marvin",
"company_name": "Sauer-Stoltenberg",
"street": "35749 Amelie Summit Apt. 210",
"city": "Shanelleton",
"postal_code": "13862-0714",
"email": "hudson.elvis@ortiz.com",
"phone": "1-314-786-8446",
"phone_country": "rs",
"device_side": "R",
"created_at": "2026-03-20T16:22:29.000000Z",
"updated_at": "2026-03-20T16:22:29.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:USER_NOT_FOUND"
}
Example response (404, Survey not found):
{
"message": "Survey not found",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:SURVEY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
List all Acadle surveys (SuperAdmin)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/surveys?search=john" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/surveys"
);
const params = {
"search": "john",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"user_id": 298,
"cpo_number": "1340428",
"country": "Saint Pierre and Miquelon",
"medical_training": "clinician",
"myo_exp_zeus": "1",
"has_demo_hand_access": 1,
"wants_demo_hand": 1,
"myo_exp_covvi": 1,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 0,
"myo_exp_taska": 0,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Et et consequatur dolor aut dolor.",
"partial_hand_protheses": "2",
"below_elbow_protheses_single_action": "5",
"below_elbow_protheses_multi_action": "3",
"above_elbow_protheses": "2",
"shoulder_protheses": "4",
"zeus_components_description": "Omnis occaecati sint cupiditate minima.",
"contact_name": "Liam",
"contact_surname": "Okuneva",
"company_name": "Grant, Rice and Wintheiser",
"street": "40223 Friesen Underpass Suite 655",
"city": "Ebertbury",
"postal_code": "93820-1679",
"email": "malcolm.effertz@gislason.com",
"phone": "1-724-964-6428",
"phone_country": "cr",
"device_side": "L",
"created_at": "2026-03-20T16:22:30.000000Z",
"updated_at": "2026-03-20T16:22:30.000000Z"
},
{
"id": 4,
"user_id": 299,
"cpo_number": "2096538",
"country": "Gambia",
"medical_training": "physician",
"myo_exp_zeus": "0",
"has_demo_hand_access": 0,
"wants_demo_hand": 0,
"myo_exp_covvi": 1,
"myo_exp_fillauer": 0,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 0,
"myo_exp_steeper": 0,
"myo_exp_taska": 1,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Vel ipsa reprehenderit delectus et est et.",
"partial_hand_protheses": "0",
"below_elbow_protheses_single_action": "1",
"below_elbow_protheses_multi_action": "3",
"above_elbow_protheses": "2",
"shoulder_protheses": "0",
"zeus_components_description": "Neque iure atque fugiat a.",
"contact_name": "Jorge",
"contact_surname": "Orn",
"company_name": "Anderson and Sons",
"street": "699 Hagenes Locks Suite 108",
"city": "North Marquisemouth",
"postal_code": "12927-1049",
"email": "orval16@dare.com",
"phone": "+1 (570) 687-0999",
"phone_country": "mz",
"device_side": "R",
"created_at": "2026-03-20T16:22:31.000000Z",
"updated_at": "2026-03-20T16:22:31.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEYS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Send Acadle survey
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/acadle/survey" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"cpo_number\": 993,
\"country\": \"Cook Islands\",
\"medical_training\": \"clinician\",
\"myo_exp_zeus\": false,
\"myo_exp_covvi\": false,
\"myo_exp_fillauer\": false,
\"myo_exp_ossur\": false,
\"myo_exp_ottobock\": false,
\"myo_exp_steeper\": false,
\"myo_exp_taska\": false,
\"myo_exp_vincent\": false,
\"myo_exp_pattern_recognition\": false,
\"myo_exp_other\": \"Officia aperiam voluptas et.\",
\"has_demo_hand_access\": false,
\"wants_demo_hand\": false,
\"partial_hand_protheses\": \"1-5\",
\"below_elbow_protheses_single_action\": \"1-5\",
\"below_elbow_protheses_multi_action\": \"5-10\",
\"above_elbow_protheses\": \"50+\",
\"shoulder_protheses\": \"1-5\",
\"zeus_components_description\": \"Illum nisi ut eaque fugiat dolor.\",
\"contact_name\": \"Betty\",
\"company_name\": \"Vandervort, Jerde and Huels\",
\"street\": \"250 Precious Ramp\",
\"city\": \"Lake Arnold\",
\"postal_code\": \"44866\",
\"email\": \"kale.goyette@bogan.biz\",
\"phone\": \"606.955.8764\",
\"phone_country\": \"LK\",
\"device_side\": \"R\"
}"
const url = new URL(
"http://localhost:8000/api/acadle/survey"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"cpo_number": 993,
"country": "Cook Islands",
"medical_training": "clinician",
"myo_exp_zeus": false,
"myo_exp_covvi": false,
"myo_exp_fillauer": false,
"myo_exp_ossur": false,
"myo_exp_ottobock": false,
"myo_exp_steeper": false,
"myo_exp_taska": false,
"myo_exp_vincent": false,
"myo_exp_pattern_recognition": false,
"myo_exp_other": "Officia aperiam voluptas et.",
"has_demo_hand_access": false,
"wants_demo_hand": false,
"partial_hand_protheses": "1-5",
"below_elbow_protheses_single_action": "1-5",
"below_elbow_protheses_multi_action": "5-10",
"above_elbow_protheses": "50+",
"shoulder_protheses": "1-5",
"zeus_components_description": "Illum nisi ut eaque fugiat dolor.",
"contact_name": "Betty",
"company_name": "Vandervort, Jerde and Huels",
"street": "250 Precious Ramp",
"city": "Lake Arnold",
"postal_code": "44866",
"email": "kale.goyette@bogan.biz",
"phone": "606.955.8764",
"phone_country": "LK",
"device_side": "R"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"user_id": 300,
"cpo_number": "447921520",
"country": "Central African Republic",
"medical_training": "physiotherapist",
"myo_exp_zeus": "0",
"has_demo_hand_access": 0,
"wants_demo_hand": 0,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 0,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 1,
"myo_exp_taska": 1,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 0,
"myo_exp_other": "Commodi fugit ab dolor et.",
"partial_hand_protheses": "2",
"below_elbow_protheses_single_action": "1",
"below_elbow_protheses_multi_action": "2",
"above_elbow_protheses": "3",
"shoulder_protheses": "3",
"zeus_components_description": "Cumque consequatur aut non ratione est.",
"contact_name": "Rowland",
"contact_surname": "Treutel",
"company_name": "Kling-Moen",
"street": "47138 Beverly Divide",
"city": "Port Patricia",
"postal_code": "53102-6828",
"email": "elijah.haag@jacobson.org",
"phone": "(341) 810-4180",
"phone_country": "gr",
"device_side": "R",
"created_at": "2026-03-20T16:22:32.000000Z",
"updated_at": "2026-03-20T16:22:32.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_SEND:INSUFFICIENT_PERMISSION"
}
Example response (403, Survey already sent):
{
"message": "Survey already sent",
"code": "ACADLE:SURVEY_SEND:SURVEY_ALREADY_SENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Survey ID.
user_id
integer
Associated user ID.
cpo_number
string
CPO number.
country
string
Country code.
medical_training
string
Medical training level.
myo_exp_zeus
string
Zeus myo experience.
myo_exp_covvi
string
Covvi myo experience.
myo_exp_fillauer
string
Fillauer myo experience.
myo_exp_ossur
string
Ossur myo experience.
myo_exp_ottobock
string
Ottobock myo experience.
myo_exp_steeper
string
Steeper myo experience.
myo_exp_taska
string
Taska myo experience.
myo_exp_vincent
string
Vincent myo experience.
myo_exp_pattern_recognition
string
Pattern recognition myo experience.
myo_exp_other
string
Other myo experience.
has_demo_hand_access
boolean
Whether the user has demo hand access.
wants_demo_hand
boolean
Whether the user wants a demo hand.
partial_hand_protheses
string
Partial hand prostheses experience.
below_elbow_protheses_single_action
string
Below elbow single action prostheses experience.
below_elbow_protheses_multi_action
string
Below elbow multi-action prostheses experience.
above_elbow_protheses
string
Above elbow prostheses experience.
shoulder_protheses
string
Shoulder prostheses experience.
zeus_components_description
string
Zeus components description.
contact_name
string
Contact first name.
contact_surname
string
Contact last name.
company_name
string
Company name.
street
string
Street address.
city
string
City.
postal_code
string
Postal code.
email
string
Contact email.
phone
string
Contact phone.
phone_country
string
Phone country code.
device_side
string
Device side.
Must be one of:LR
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Activation codes
API endpoints for activation codes
Get activation codes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"code": "BI5F84",
"created_by": 37,
"used_by": 38,
"used_at": null,
"active": 1,
"created_at": "2026-03-20T16:18:48.000000Z",
"updated_at": "2026-03-20T16:18:48.000000Z"
},
{
"id": 2,
"code": "PTXZML",
"created_by": 39,
"used_by": 40,
"used_at": null,
"active": 1,
"created_at": "2026-03-20T16:18:50.000000Z",
"updated_at": "2026-03-20T16:18:50.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get active activation codes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes/active" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/active"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"code": "DNERPD",
"created_by": 41,
"used_by": 42,
"used_at": null,
"active": 0,
"created_at": "2026-03-20T16:18:52.000000Z",
"updated_at": "2026-03-20T16:18:52.000000Z"
},
{
"id": 4,
"code": "XYIPBW",
"created_by": 43,
"used_by": 44,
"used_at": null,
"active": 1,
"created_at": "2026-03-20T16:18:53.000000Z",
"updated_at": "2026-03-20T16:18:53.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:ACTIVE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Find activation code
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes/find/quidem" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/find/quidem"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 5,
"code": "ON2T1L",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 0,
"created_at": "2026-03-20T16:18:53.000000Z",
"updated_at": "2026-03-20T16:18:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:FIND:INSUFFICIENT_PERMISSION"
}
Example response (404, Activation code not found):
{
"message": "Activation code not found",
"code": "ACTIVATION_CODE:FIND:CODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Create activation code
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/activation-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 6,
"code": "EE1OAF",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 1,
"created_at": "2026-03-20T16:18:53.000000Z",
"updated_at": "2026-03-20T16:18:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Server error):
{
"message": "Server error: activation code not created",
"code": "ACTIVATION_CODE:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Create activation code (multi-region)
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/activation-codes/5" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/5"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 7,
"code": "BS7OC7",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 0,
"created_at": "2026-03-20T16:18:53.000000Z",
"updated_at": "2026-03-20T16:18:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Deactivate activation code
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/activation-codes/7" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/7"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202):
{
"id": 8,
"code": "P913FJ",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 1,
"created_at": "2026-03-20T16:18:53.000000Z",
"updated_at": "2026-03-20T16:18:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:DEACTIVATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Activation code is not active):
{
"message": "Cannot deactivate: code is not active",
"code": "ACTIVATION_CODE:DEACTIVATE:CODE_NOT_ACTIVE"
}
Example response (404, Activation code not found):
{
"message": "Activation code not found",
"code": "ACTIVATION_CODE:DEACTIVATE:CODE_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: activation code not deactivated",
"code": "ACTIVATION_CODE:DEACTIVATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Activation code ID.
code
string
Activation code value.
created_by
integer
ID of the user who created this code.
used_by
integer
ID of the user who used this code.
used_at
string
Timestamp when the code was used.
active
boolean
Whether the code is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
creator
object
User who created this code.
user
object
User who used this code.
Authentication
API endpoints for managing authentication
Login user
Example request:
curl --request POST \
"http://localhost:8000/api/login" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/api/login"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Example response (403, Too many attempts):
{
"message": "Login: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (422, Invalid credentials):
{
"message": "The given data was invalid.",
"errors": {
"email": [
"Given credentials not found"
]
},
"code": "AUTH:LOGIN:INVALID_CREDENTIALS"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Register user
Example request:
curl --request POST \
"http://localhost:8000/api/register" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"region\": \"us\",
\"name\": \"Tom Smith\",
\"email\": \"name@domain.com\",
\"password\": \"Test123!\",
\"phone\": \"980-780-3898\",
\"phone_country\": \"US\",
\"language\": \"en\",
\"clinic_name\": \"Feest, Ledner and Bergnaum\",
\"clinic_location\": \"Bayerborough\",
\"address1\": \"72428 Kuhlman Common\",
\"address2\": \"South Kobychester, UT 31121\",
\"mfa_enabled\": true,
\"mfa_method\": \"email\",
\"activation_code\": \"1A2B3C\"
}"
const url = new URL(
"http://localhost:8000/api/register"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"region": "us",
"name": "Tom Smith",
"email": "name@domain.com",
"password": "Test123!",
"phone": "980-780-3898",
"phone_country": "US",
"language": "en",
"clinic_name": "Feest, Ledner and Bergnaum",
"clinic_location": "Bayerborough",
"address1": "72428 Kuhlman Common",
"address2": "South Kobychester, UT 31121",
"mfa_enabled": true,
"mfa_method": "email",
"activation_code": "1A2B3C"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 2,
"mrn": "2ELH3S441774023493",
"name": "Mr. Lesley Mayert",
"email": "1774023493emiliano26@example.com",
"language": "en",
"phone": "(520) 430-7501",
"phone_country": "UY",
"phone_verified_at": null,
"address1": "64544 Schaefer Shore",
"address2": "West Estelshire, OR 18827",
"postal_code": "75172",
"city": "Abernathy Ltd",
"country": "UA",
"clinic_name": "North Andrew",
"clinic_location": "64340 Helmer Court Suite 777\nNew Alfredchester, HI 77522-6342",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:13.000000Z",
"updated_at": "2026-03-20T16:18:13.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (403, Too many attempts):
{
"message": "Register: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "AUTH:REGISTER:EMAIL_IN_USE"
}
Example response (403, Activation code is incorrect):
{
"message": "Activation code is incorrect",
"code": "AUTH:REGISTER:INCORRECT_CODE"
}
Example response (500, Server error):
{
"message": "Server error: user not created",
"code": "AUTH:REGISTER:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Register mobile user
Example request:
curl --request POST \
"http://localhost:8000/api/mobile/register" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"region\": \"us\",
\"name\": \"Tom Smith\",
\"email\": \"name@domain.com\",
\"password\": \"Test123!\",
\"language\": \"en\",
\"terms_accepted\": true
}"
const url = new URL(
"http://localhost:8000/api/mobile/register"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"region": "us",
"name": "Tom Smith",
"email": "name@domain.com",
"password": "Test123!",
"language": "en",
"terms_accepted": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"mrn": "MFL6RJBE1774023494",
"name": "Mylene Nikolaus",
"email": "1774023494gottlieb.estell@example.net",
"language": "en",
"phone": "+1.347.431.0689",
"phone_country": "GB",
"phone_verified_at": null,
"address1": "65416 Crona Views",
"address2": "Beattyton, ME 99879",
"postal_code": "22000-6108",
"city": "Gusikowski and Sons",
"country": "LT",
"clinic_name": "North Dameon",
"clinic_location": "286 Rebeca Manors Apt. 008\nNorth Lexiechester, ID 26771",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:14.000000Z",
"updated_at": "2026-03-20T16:18:14.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (403, Too many attempts):
{
"message": "Register: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "AUTH:MOBILE_REGISTER:EMAIL_IN_USE"
}
Example response (500, Server error):
{
"message": "Server error: user not created",
"code": "AUTH:MOBILE_REGISTER:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Request password reset
Request sending password reset email message with token that allows to change the password
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"code": "passwords.sent",
"message": "Reset password link successfully sent"
}
Example response (400, Throttled request):
{
"code": "passwords.throttled",
"message": "You have requested password reset recently"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify password reset token
Check if token is valid before using it to reset password
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset/verify" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019\",
\"email\": \"test@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset/verify"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019",
"email": "test@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Valid token",
"code": "AUTH:PASSWORD_RESET_VERIFY:VALID_TOKEN"
}
Example response (400, Invalid token):
{
"message": "Invalid token",
"code": "AUTH:PASSWORD_RESET_VERIFY:INVALID_TOKEN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "AUTH:PASSWORD_RESET_VERIFY:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Change password with token
Change user password using password reset token sent to email address
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset/change" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019\",
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset/change"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019",
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"code": "passwords.reset",
"message": "Password changed successfully"
}
Example response (400, Invalid token):
{
"code": "passwords.token",
"message": "Invalid token"
}
Example response (404, User not found):
{
"code": "passwords.user",
"message": "User not found"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logout current device
requires authentication
Logout and delete current access token
Example request:
curl --request POST \
"http://localhost:8000/api/logout" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/logout"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
[]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logout everywhere
requires authentication
Logout and delete all access tokens owned by account
Example request:
curl --request POST \
"http://localhost:8000/api/logout/everywhere" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/logout/everywhere"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
[]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Refresh access token
requires authentication
Refresh the new access token from the expiring token
Example request:
curl --request POST \
"http://localhost:8000/api/token/refresh" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/token/refresh"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Check MFA status
requires authentication
Check any of available MFA methods. Supported methods: email, sms, otp.
Example request:
curl --request GET \
--get "http://localhost:8000/api/mfa/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"enabled": 1,
"method": "email",
"phone": 1,
"otp": 1
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
enabled
string
Determines if user enabled MFA
method
string
Preferred MFA method
phone
string
Determines if user has verified phone number and sms channel could be used
otp
string
Determines if user has setup OTP with authenticator application
Use recovery code
requires authentication
Use generated recovery code in order to access account in case when other MFA methods couldn't be used. This method only checks if code is valid, implement account access scenario on your own. Sent code is removed and couldn't be used anymore. If remaining_codes counter equals zero, generate a new set.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/recovery-code" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"ZZASRM6S\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/recovery-code"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "ZZASRM6S"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25",
"remaining_codes": 9
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:USE_RECOVERY_CODE:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send MFA code
requires authentication
Send multi-factor authentication code via selected channel. Code is valid for 15 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"channel\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"channel": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Code sent",
"code": "AUTH:SEND_MFA:SENT"
}
Example response (400, Channel SMS, phone number not verified):
{
"message": "Phone number is not verified",
"code": "AUTH:SEND_MFA:PHONE_NUMBER_NOT_VERIFIED"
}
Example response (500, Channel SMS, provider problem):
{
"message": "Code sending failed",
"code": "AUTH:SEND_MFA:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify MFA code
requires authentication
Verify multi-factor code obtained from selected channel.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"channel\": \"email\",
\"remember_mfa_session\": true,
\"code\": \"445566\",
\"machine_key\": \"35282880-244a-4328-9435-2aaf432f3619\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"channel": "email",
"remember_mfa_session": true,
"code": "445566",
"machine_key": "35282880-244a-4328-9435-2aaf432f3619"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK, token auth):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25",
"mfa_token": "fd63e55c-2a67-44b2-95b9-a771778e9971",
"mfa_expires": "2023-04-25 21:00:00"
}
Example response (200, OK, cookie auth):
{
"message": "OK",
"mfa_token": "fd63e55c-2a67-44b2-95b9-a771778e9971",
"mfa_expires": "2023-04-25 21:00:00"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_MFA:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify phone number
requires authentication
Verify phone number with text message
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/phone/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"445566\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/phone/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "445566"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Phone number verified",
"code": "AUTH:VERIFY_PHONE:VERIFIED"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_PHONE:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify MFA OTP
requires authentication
Verify one-time password (OTP). If verification is successful, new access token with additional permissions will be generated.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/otp/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"445566\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/otp/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "445566"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK, token auth):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Example response (200, OK, cookie auth):
{
"message": "OK"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_MFA_OTP:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Change password
requires authentication
Change authenticated user password
Example request:
curl --request POST \
"http://localhost:8000/api/password/change" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"old_password\": \"oldpassword\",
\"new_password\": \"newpassword\"
}"
const url = new URL(
"http://localhost:8000/api/password/change"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"old_password": "oldpassword",
"new_password": "newpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Password changed successfully",
"code": "AUTH:PASSWORD_CHANGE:CHANGED"
}
Example response (422, Invalid old password):
{
"message": "The given data was invalid.",
"errors": {
"old_password": [
"Old password is incorrect"
]
},
"code": "AUTH:PASSWORD_CHANGE:INVALID_OLD_PASSWORD"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Set MFA status
requires authentication
Set MFA status and preferred method. Supported methods: email, sms, otp.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"enabled\": true,
\"method\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"enabled": true,
"method": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"enabled": 1,
"method": "email",
"phone": 1,
"otp": 1
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Generate recovery codes
requires authentication
Generate recovery codes for authenticated user and revoke old ones. User could use these codes in case when couldn't use any of MFA methods (e.g. lost device with OTP app or device is not accessible right now).
Example request:
curl --request GET \
--get "http://localhost:8000/api/mfa/recovery-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/recovery-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"recovery_codes": [
"A3H8PF8P",
"IZ8CGK2H",
"DTYENLLT",
"0RKEZFST",
"9MPW91BS",
"S38Z6HS6",
"UF5ATOKP",
"HSZXP8EL",
"ZZASRM6S",
"07GR4CD1"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Setup MFA OTP
requires authentication
Setup multi-factor authentication with one-time passwords (OTP). Use secret on your own or generate QR code with given url. Then user could scan QR code with authentication app (e.g. Microsoft Authenticator, Authy). If secret has been already generated, new secret will override existing one and revoke previous setup.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/otp/setup" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/otp/setup"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"secret": "VXGJ6JMIAWWDFXYDLKO3VG3RSGTS34BGMVTGQIEHMVVMJ2JBGCSNPQZDV4B6OMDIGI4UKCVCVKVMA7EASLHZEJWW4ZNKLAUTSZYN7EA",
"url": "otpauth://totp/AetherDigitalTherapy?issuer=AetherDigitalTherapy&secret=VXGJ6JMIAWWDFXYDLKO3VG3RSGTS34BGMVTGQIEHMVVMJ2JBGCSNPQZDV4B6OMDIGI4UKCVCVKVMA7EASLHZEJWW4ZNKLAUTSZYN7EA",
"recovery_codes": [
"A3H8PF8P",
"IZ8CGK2H",
"DTYENLLT",
"0RKEZFST",
"9MPW91BS",
"S38Z6HS6",
"UF5ATOKP",
"HSZXP8EL",
"ZZASRM6S",
"07GR4CD1"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Login user (SPA)
Authorize user and create cookie-based session. Hit GET /sanctum/csrf-cookie endpoint to retrieve XSRF-TOKEN cookie. Then attach X-XSRF-TOKEN HTTP header to any request to authorize. See more: Laravel Sanctum documentation
Example request:
curl --request POST \
"http://localhost:8000/login" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/login"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 324,
"mrn": "ZWG1TP8L1774023773",
"name": "Barney O'Reilly",
"email": "1774023773eriberto79@example.org",
"language": "en",
"phone": "+1-540-577-5675",
"phone_country": "GG",
"phone_verified_at": null,
"address1": "60002 Pauline Route",
"address2": "West Brycenfurt, AL 26490",
"postal_code": "05628-7944",
"city": "Cole-Hermiston",
"country": "IT",
"clinic_name": "Lake Carmelborough",
"clinic_location": "3044 Terence Park Apt. 427\nNorth Anitahaven, WI 42035",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:53.000000Z",
"updated_at": "2026-03-20T16:22:53.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
Example response (403, Too many attempts):
{
"message": "Login: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (422, Invalid credentials):
{
"message": "The given data was invalid.",
"errors": {
"email": [
"Given credentials not found"
]
},
"code": "AUTH:LOGIN_COOKIE:INVALID_CREDENTIALS"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Chat
API endpoints for chat management
Authorize a user
requires authentication
This method authorizes a user using Ably service. Endpoint used only by Ably SDK
Check more details on https://ably.com/docs/auth/token
List all chat rooms
requires authentication
This method retrieves all chat rooms. Possible extend options:
- participants - user assigned to chat room
- participants.roles - roles assigned to chat participants
- owner - the clinician assigned to patient
- patient - the patient for whom the chat was created
- messages - the messages related to chat room
- messages.author - the author of message/li>
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/rooms" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/rooms"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"owner": null,
"patient_id": null,
"encryption_key": "Mxs0KhsBIKNxkBleKGLInMSZc4/uKn/LA2dpbtPj1z8=",
"name": "delectus",
"friendly_name": "delectus",
"created_at": "2026-03-20T16:22:20.000000Z",
"deleted_at": null,
"updated_at": "2026-03-20T16:22:20.000000Z"
},
{
"id": 2,
"owner": null,
"patient_id": null,
"encryption_key": "0brTvzGdXZgz67RGyP2n6AqyM+IFnKvUONbVWqCp6z8=",
"name": "autem",
"friendly_name": "autem",
"created_at": "2026-03-20T16:22:20.000000Z",
"deleted_at": null,
"updated_at": "2026-03-20T16:22:20.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list chat room",
"code": "CHAT:LIST_ROOMS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Retrieve a chat room
requires authentication
This method retrieves a single chat room identified by roomId. Possible extend options:
- participants - user assigned to chat room
- owner - the clinician assigned to patient
- patient - the patient for whom the chat was created
- messages - the messages related to chat room
- messages.author - the author of message/li>
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/provident" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/provident"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"owner": null,
"patient_id": null,
"encryption_key": "B9R5r8LYUHoFNWam73qVRVP+hNfg8YhZBL2t2blciqM=",
"name": "natus",
"friendly_name": "natus",
"created_at": "2026-03-20T16:22:20.000000Z",
"deleted_at": null,
"updated_at": "2026-03-20T16:22:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room",
"code": "CHAT:GET_ROOM:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:GET_ROOM:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
Create a new chat room
requires authentication
This method creates a new chat room using the authenticated user's ID, a name for the room, and a list of participants.
The list of participants should contain the IDs of the users who will be participants in the room.Example request:
curl --request POST \
"http://localhost:8000/api/chat/room" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"owner\": 1,
\"name\": \"my-chat\",
\"patient_id\": 1,
\"participants\": [
\"1\"
]
}"
const url = new URL(
"http://localhost:8000/api/chat/room"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"owner": 1,
"name": "my-chat",
"patient_id": 1,
"participants": [
"1"
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"owner": null,
"patient_id": null,
"encryption_key": "BqNBq5wEO2I7Q6PP5gOf+cJlIRUL/yczb7vQ8dgufzo=",
"name": "dolorem",
"friendly_name": "dolorem",
"created_at": "2026-03-20T16:22:20.000000Z",
"deleted_at": null,
"updated_at": "2026-03-20T16:22:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room",
"code": "CHAT:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
Update an existing chat room
requires authentication
This method updates an existing chat room using the authenticated user's ID, a new name for the room, and a list of participants.
The list of participants should contain the IDs of the users who will be participants in the room.Example request:
curl --request PUT \
"http://localhost:8000/api/chat/room/quia" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"owner\": 1,
\"name\": \"my-chat\",
\"participants\": [
\"1\"
],
\"participants_del\": [
\"1\"
]
}"
const url = new URL(
"http://localhost:8000/api/chat/room/quia"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"owner": 1,
"name": "my-chat",
"participants": [
"1"
],
"participants_del": [
"1"
]
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"owner": null,
"patient_id": null,
"encryption_key": "anluMU5Hry20p4OakU1AH2xf7mTGN+muMBGkTm70foM=",
"name": "rerum",
"friendly_name": "rerum",
"created_at": "2026-03-20T16:22:20.000000Z",
"deleted_at": null,
"updated_at": "2026-03-20T16:22:20.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update chat room",
"code": "CHAT:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:UPDATE:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Chat room ID.
name
string
Chat room name (channel SID).
friendly_name
string
Human-readable chat room name.
owner
integer
User ID of the room owner.
patient_id
integer
Associated patient user ID.
encryption_key
string
Encryption key for the chat room.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
messages
object[]
Chat room messages.
last_message
object
Last message in the chat room.
Chat room archives
requires authentication
Get archived messages for room Possible extend options:
- author - this field represent user who send message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/consequatur/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/consequatur/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view archived messages",
"code": "CHAT:GET_ARCHIVES:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:GET_ARCHIVES:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Unread messages
requires authentication
Get unread messaged for chat room. Possible extend options:
- author - this field represent user who send message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/messages/unread?room=18" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/messages/unread"
);
const params = {
"room": "18",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view unread messages list",
"code": "CHAT:UNREAD_MESSAGES:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete chat message
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/chat/messages/7?msgId=cumque" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/messages/7"
);
const params = {
"msgId": "cumque",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete message",
"code": "CHAT:DELETE_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Chat message not found",
"code": "CHAT:DELETE_MESSAGE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get tickets list for chat room
requires authentication
Possible extend options:
- sender - the user who created ticket
- recipient - the user who was ticket recipient
- messages - message allocated to ticket
- messages.attachments - list of attachments assigned to message and ticket
- messages.sender - the user who wrote the message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/tickets/quas?status=exercitationem&sender=20&recipient=14" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/tickets/quas"
);
const params = {
"status": "exercitationem",
"sender": "20",
"recipient": "14",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 87,
"sender_id": 288,
"recipient_id": 289,
"device_id": null,
"meeting_date": "2026-03-20 16:22:21",
"meeting_type": "online_meeting",
"contact_email": "ckirlin@pfannerstill.info",
"status": "new",
"created_at": "2026-03-20T16:22:22.000000Z",
"updated_at": "2026-03-20T16:22:22.000000Z",
"sender": {
"id": 288,
"mrn": "DHZKMJ921774023740",
"name": "Agustin Nitzsche",
"email": "1774023740xwilliamson@example.com",
"language": "en",
"phone": "678-837-6563",
"phone_country": "SJ",
"phone_verified_at": null,
"address1": "481 Grace Road Apt. 474",
"address2": "West Sammy, TX 39931",
"postal_code": "20458-2443",
"city": "Harber-Kuhn",
"country": "FR",
"clinic_name": "North Juanitafort",
"clinic_location": "11296 Yundt Way\nJavonteside, CO 17829-4243",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:20.000000Z",
"updated_at": "2026-03-20T16:22:20.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 289,
"mrn": "WF2DXUTF1774023741",
"name": "Prof. Zackery Cronin III",
"email": "1774023741mbaumbach@example.com",
"language": "en",
"phone": "+12343589393",
"phone_country": "BI",
"phone_verified_at": null,
"address1": "4218 Haag Islands Apt. 859",
"address2": "Keshawnstad, ND 60648",
"postal_code": "64841-3470",
"city": "Stiedemann PLC",
"country": "LV",
"clinic_name": "Tyreekshire",
"clinic_location": "552 Rippin Rapid\nLamontview, PA 39162-7105",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:21.000000Z",
"updated_at": "2026-03-20T16:22:21.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": []
},
{
"id": 88,
"sender_id": 290,
"recipient_id": 291,
"device_id": null,
"meeting_date": "2026-03-20 16:22:23",
"meeting_type": "online_meeting",
"contact_email": "schoen.tobin@gmail.com",
"status": "new",
"created_at": "2026-03-20T16:22:24.000000Z",
"updated_at": "2026-03-20T16:22:24.000000Z",
"sender": {
"id": 290,
"mrn": "O1BWC4291774023742",
"name": "Mrs. Ena Brown",
"email": "1774023742tyreek07@example.com",
"language": "en",
"phone": "352.686.9242",
"phone_country": "DJ",
"phone_verified_at": null,
"address1": "241 Bailee Lake",
"address2": "South Concepcion, VT 26579",
"postal_code": "25178-8662",
"city": "Auer and Sons",
"country": "SK",
"clinic_name": "Weberchester",
"clinic_location": "4538 Tyree Union\nSouth Carli, AK 20518-1057",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:22.000000Z",
"updated_at": "2026-03-20T16:22:22.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 291,
"mrn": "2L10IXP71774023743",
"name": "Carolina Witting",
"email": "1774023743crona.marquis@example.org",
"language": "en",
"phone": "(929) 944-5382",
"phone_country": "PH",
"phone_verified_at": null,
"address1": "77841 Odessa Crest Suite 192",
"address2": "East Joseph, MI 50385-2821",
"postal_code": "40104",
"city": "Nolan-Schoen",
"country": "CY",
"clinic_name": "South Amie",
"clinic_location": "379 Walter Springs\nDoyleland, NY 47481-1035",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:23.000000Z",
"updated_at": "2026-03-20T16:22:23.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": []
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room tickets",
"code": "CHAT:LIST_TICKETS:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:LIST_TICKETS:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List of available patients for chat
requires authentication
Possible extend options:
- clinician - clinician assigned to this user
- devices - products assigned to user
- roles - user roles
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/available-patients" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/available-patients"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 292,
"mrn": "116885571774023744",
"name": "Alverta Schneider",
"email": "1774023744oreichel@example.com",
"language": "en",
"phone": "1-281-440-9832",
"phone_country": "LA",
"phone_verified_at": null,
"address1": "6394 Jermain Bridge Apt. 257",
"address2": "Shadfort, OH 97522-5838",
"postal_code": "94425",
"city": "Mertz PLC",
"country": "SI",
"clinic_name": "Felixstad",
"clinic_location": "830 Theresia Ville Suite 065\nNew Raquelfort, AZ 61298-8181",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:24.000000Z",
"updated_at": "2026-03-20T16:22:24.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"devices": [
{
"id": 141,
"serial": "617158a4-2867-3465-b026-f8595524caf5",
"bluetooth_id": "db98bd05-8a6d-37f7-93c4-2fcdac814089",
"company_id": null,
"model_id": null,
"amputee_id": 292,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:22:25.000000Z",
"updated_at": "2026-03-20T16:22:25.000000Z"
}
],
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
},
{
"id": 293,
"mrn": "2ZT24W7K1774023745",
"name": "Destiney Bernier II",
"email": "1774023745callie.wolff@example.org",
"language": "en",
"phone": "(678) 999-0519",
"phone_country": "HT",
"phone_verified_at": null,
"address1": "2500 Nikko Run Apt. 068",
"address2": "Fishershire, ND 06306-9693",
"postal_code": "38651",
"city": "Christiansen-Wyman",
"country": "AT",
"clinic_name": "Herbertside",
"clinic_location": "51708 Meda Station Suite 658\nStammburgh, DC 15353",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:25.000000Z",
"updated_at": "2026-03-20T16:22:25.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"devices": [
{
"id": 142,
"serial": "e42e6528-842f-3f52-a6fe-ab5e9add9553",
"bluetooth_id": "06711785-0dd7-3e53-bae2-ee6d8035da4f",
"company_id": null,
"model_id": null,
"amputee_id": 293,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:22:25.000000Z",
"updated_at": "2026-03-20T16:22:25.000000Z"
}
],
"roles": [
{
"id": 5,
"name": "Amputee"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list available patients",
"code": "CHAT:LIST_PATIENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List of available participants for chat
requires authentication
Possible extend options:
- roles - user roles
- permissions - user permissions
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/1/available-participants" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/1/available-participants"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 294,
"mrn": "EW89IJR41774023745",
"name": "Martin Rodriguez",
"email": "1774023745ortiz.carolyn@example.com",
"language": "en",
"phone": "+1-628-648-3451",
"phone_country": "MV",
"phone_verified_at": null,
"address1": "3740 Myles Ferry Apt. 316",
"address2": "Hegmannborough, NM 90542",
"postal_code": "41093",
"city": "Sporer-Fadel",
"country": "NL",
"clinic_name": "South Rachel",
"clinic_location": "4330 Rosemarie Via\nLomafurt, WI 90449",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:25.000000Z",
"updated_at": "2026-03-20T16:22:25.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
},
{
"id": 295,
"mrn": "01NGW45Z1774023746",
"name": "Hortense Watsica",
"email": "1774023746sparker@example.org",
"language": "en",
"phone": "484.220.1762",
"phone_country": "ME",
"phone_verified_at": null,
"address1": "82917 Keeling Cliffs",
"address2": "Krystalshire, CT 11785",
"postal_code": "23444",
"city": "Romaguera-Kessler",
"country": "UA",
"clinic_name": "Crystelport",
"clinic_location": "2884 Gorczany Stravenue Suite 135\nKorytown, NH 35355",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:26.000000Z",
"updated_at": "2026-03-20T16:22:26.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list available participants",
"code": "CHAT:LIST_PARTICIPANTS:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:LIST_PARTICIPANTS:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Config
API endpoints for device config management
Get device config
requires authentication
Definitions:
- config - current config entries
- config history entry - set of changes in config, updated during the session
- config history change - single change made to config (part of config history entry)
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config?_format=autem" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config"
);
const params = {
"_format": "autem",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (200):
[
{
"id": 1,
"device_id": 14,
"mode_id": 1,
"key": "veritatis",
"value": "maxime",
"created_at": "2026-03-20T16:18:54.000000Z",
"updated_at": "2026-03-20T16:18:54.000000Z",
"mode": {
"id": 1,
"device_id": 15,
"slot": null,
"name": "Ex maiores tempora et sint voluptatem.",
"active": 1,
"created_at": "2026-03-20T16:18:54.000000Z",
"updated_at": "2026-03-20T16:18:54.000000Z"
}
},
{
"id": 2,
"device_id": 16,
"mode_id": 2,
"key": "qui",
"value": "suscipit",
"created_at": "2026-03-20T16:18:54.000000Z",
"updated_at": "2026-03-20T16:18:54.000000Z",
"mode": {
"id": 2,
"device_id": 17,
"slot": null,
"name": "Et voluptas eius qui recusandae rerum quaerat.",
"active": 1,
"created_at": "2026-03-20T16:18:54.000000Z",
"updated_at": "2026-03-20T16:18:54.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:GET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config entry ID.
device_id
integer
Associated device ID.
mode_id
integer
Associated config mode ID.
key
string
Config key.
value
string
Config value.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
mode
object
Associated config mode.
Update device config
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote session 2022-05-30\",
\"common\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\",
\"updateNote\": true,
\"modes\": [
{
\"id\": 1,
\"config\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/device/1/config"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote session 2022-05-30",
"common": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]",
"updateNote": true,
"modes": [
{
"id": 1,
"config": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]"
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:UPDATE:DEVICE_NOT_FOUND"
}
Example response (422, Invalid config):
{
"message": "Config has some problems and cannot be saved.",
"errors": {
"modes": {
"mode_3": "Config mode 3 does not belong to device 12."
},
"values": {
"common.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"common.gripsPositions.1.initial": "Invalid value [200,\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values.",
"mode_1.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"mode_1.gripsPositions.0.initial": "Invalid value [\"200\",\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values."
}
},
"code": "CONFIG:UPDATE:INVALID_CONFIG"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get device config history
requires authentication
For amputees only restore points are returned.
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/history?restore_point=1&factory_reset_point=1&date_from=1642003200&date_to=1642003200" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"restore_point\": false,
\"factory_reset_point\": false
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/history"
);
const params = {
"restore_point": "1",
"factory_reset_point": "1",
"date_from": "1642003200",
"date_to": "1642003200",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"restore_point": false,
"factory_reset_point": false
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_id": 18,
"index": null,
"name": "Amet omnis vel asperiores et.",
"config": "{\"common\":{\"fingerStrength\":[1,100],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[27,29,42,38,70],\"limit\":[65,90,85,57,81]},\"1\":{\"initial\":[53,59,5,2,70],\"limit\":[72,63,53,8,93]},\"2\":{\"initial\":[16,38,34,30,11],\"limit\":[75,52,68,54,48]},\"3\":{\"initial\":[3,11,3,48,18],\"limit\":[35,66,53,60,37]},\"4\":{\"initial\":[72,15,10,18,10],\"limit\":[77,26,58,38,95]},\"5\":{\"initial\":[65,25,13,59,51],\"limit\":[66,30,24,63,69]},\"6\":{\"initial\":[7,3,30,14,37],\"limit\":[56,41,58,41,52]},\"7\":{\"initial\":[8,28,4,22,5],\"limit\":[9,31,50,83,47]},\"8\":{\"initial\":[62,11,8,12,34],\"limit\":[78,69,25,74,52]},\"9\":{\"initial\":[16,30,3,42,43],\"limit\":[17,93,64,79,87]},\"10\":{\"initial\":[19,12,47,7,78],\"limit\":[57,87,51,71,79]},\"11\":{\"initial\":[22,24,60,79,16],\"limit\":[78,70,74,87,52]},\"12\":{\"initial\":[13,1,14,4,37],\"limit\":[46,88,81,28,64]},\"13\":{\"initial\":[50,53,67,2,41],\"limit\":[87,86,70,76,67]}},\"inputSite\":[1]},\"modes\":[{\"id\":3,\"name\":\"Enim quia beatae id eaque repudiandae dolorem eaque sed.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[80,0,60,40,40,80,60,80,60,40],\"gripPairsConfig\":[2,3,13,6,12,7,8,11],\"gripSequentialConfig\":[13,3,5,6,11,12,2,255,10,8,255,255],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2500],\"pulseTimings\":[840,860,860,200],\"softGrip\":[1],\"speedControlStrategy\":[0]}},{\"id\":4,\"name\":\"Eos recusandae in ex inventore.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[500,400],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[0,100,0,50,10,30,40,30,90,70],\"gripPairsConfig\":[9,7,13,5,2,6,4,3],\"gripSequentialConfig\":[3,12,1,6,255,9,2,255,13,4,11,7],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2500],\"pulseTimings\":[470,700,900,340],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":5,\"name\":\"Vel enim architecto neque et dolores aut.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[200,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[90,40,90,50,80,70,80,30,80,0],\"gripPairsConfig\":[11,5,2,8,12,9,1,4],\"gripSequentialConfig\":[4,9,11,8,2,1,255,6,255,13,255,5],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2000],\"pulseTimings\":[630,440,350,410],\"softGrip\":[1],\"speedControlStrategy\":[0]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 46,
"created_at": "2026-03-20T16:18:55.000000Z",
"updated_at": "2026-03-20T16:18:55.000000Z",
"author": {
"id": 46,
"mrn": "GCHBOV231774023535",
"name": "Ruth Kunde",
"email": "1774023535domenick.johns@example.com",
"language": "en",
"phone": "(607) 426-8272",
"phone_country": "ZM",
"phone_verified_at": null,
"address1": "343 Hirthe Highway",
"address2": "New Ashamouth, NE 82327",
"postal_code": "47311-9979",
"city": "Ferry, O'Hara and Greenfelder",
"country": "DK",
"clinic_name": "East Kaela",
"clinic_location": "85375 Rosalinda Drives Suite 778\nNew Orieview, KS 10293-9662",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:55.000000Z",
"updated_at": "2026-03-20T16:18:55.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"entries": [
{
"id": 1,
"config_history_id": 1,
"config_id": 3,
"old_value": "laboriosam",
"new_value": "repellat",
"created_at": "2026-03-20T16:18:56.000000Z",
"updated_at": "2026-03-20T16:18:56.000000Z",
"config_entry": {
"id": 3,
"device_id": 26,
"mode_id": null,
"key": "expedita",
"value": "blanditiis",
"created_at": "2026-03-20T16:18:56.000000Z",
"updated_at": "2026-03-20T16:18:56.000000Z"
}
}
]
},
{
"id": 3,
"device_id": 27,
"index": null,
"name": "Facere doloremque officia adipisci molestias.",
"config": "{\"common\":{\"fingerStrength\":[1,300],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[24,94,12,32,78],\"limit\":[75,95,94,95,79]},\"1\":{\"initial\":[15,29,3,8,51],\"limit\":[87,58,92,48,86]},\"2\":{\"initial\":[20,68,11,84,36],\"limit\":[40,77,17,92,89]},\"3\":{\"initial\":[47,44,56,20,15],\"limit\":[52,91,85,35,75]},\"4\":{\"initial\":[11,45,18,3,51],\"limit\":[87,86,39,48,83]},\"5\":{\"initial\":[16,74,36,49,30],\"limit\":[47,87,46,69,74]},\"6\":{\"initial\":[4,69,62,12,48],\"limit\":[10,84,88,93,70]},\"7\":{\"initial\":[51,31,65,31,43],\"limit\":[60,41,78,88,77]},\"8\":{\"initial\":[75,3,25,70,56],\"limit\":[86,41,64,71,87]},\"9\":{\"initial\":[42,7,70,58,34],\"limit\":[69,95,88,88,95]},\"10\":{\"initial\":[3,40,64,19,12],\"limit\":[32,43,94,56,14]},\"11\":{\"initial\":[31,41,55,31,44],\"limit\":[55,48,60,66,58]},\"12\":{\"initial\":[3,47,54,3,11],\"limit\":[29,67,81,45,86]},\"13\":{\"initial\":[46,15,21,6,54],\"limit\":[55,45,94,14,56]}},\"inputSite\":[0]},\"modes\":[{\"id\":9,\"name\":\"Minus velit aut quia rem doloremque consequatur rerum.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[400,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[50,90,0,20,90,60,40,70,100,30],\"gripPairsConfig\":[3,11,4,9,10,13,7,8],\"gripSequentialConfig\":[2,5,255,255,12,255,8,9,11,4,6,10],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2000],\"pulseTimings\":[220,670,970,660],\"softGrip\":[0],\"speedControlStrategy\":[1]}},{\"id\":10,\"name\":\"Laborum rem totam aut odio eaque dignissimos.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[500,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[80,70,20,100,80,60,10,30,10,20],\"gripPairsConfig\":[5,6,11,1,13,7,2,3],\"gripSequentialConfig\":[255,255,4,255,9,6,13,255,10,2,8,11],\"gripSwitchingMode\":[2],\"holdOpen\":[2000,2500],\"pulseTimings\":[760,940,510,120],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":11,\"name\":\"Consequuntur ea eos consequatur doloremque.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[500,300],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[40,40,40,90,40,100,20,0,100,80],\"gripPairsConfig\":[8,9,1,10,2,13,6,5],\"gripSequentialConfig\":[3,255,11,255,255,12,7,10,255,2,255,8],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2500],\"pulseTimings\":[80,80,870,900],\"softGrip\":[1],\"speedControlStrategy\":[0]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 49,
"created_at": "2026-03-20T16:18:58.000000Z",
"updated_at": "2026-03-20T16:18:58.000000Z",
"author": {
"id": 49,
"mrn": "VKQ8D5MH1774023537",
"name": "Lillian Littel Sr.",
"email": "1774023537bradley25@example.com",
"language": "en",
"phone": "+13104569782",
"phone_country": "MH",
"phone_verified_at": null,
"address1": "54274 Lisette Valley Apt. 056",
"address2": "Gleasonshire, WY 37495-4233",
"postal_code": "32041-7434",
"city": "Zemlak, Hartmann and Romaguera",
"country": "FR",
"clinic_name": "Douglasside",
"clinic_location": "52192 Edmond Island\nEthylland, RI 27019",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:57.000000Z",
"updated_at": "2026-03-20T16:18:57.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"entries": [
{
"id": 2,
"config_history_id": 3,
"config_id": 4,
"old_value": "enim",
"new_value": "blanditiis",
"created_at": "2026-03-20T16:18:59.000000Z",
"updated_at": "2026-03-20T16:18:59.000000Z",
"config_entry": {
"id": 4,
"device_id": 35,
"mode_id": null,
"key": "vero",
"value": "nobis",
"created_at": "2026-03-20T16:18:59.000000Z",
"updated_at": "2026-03-20T16:18:59.000000Z"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:HISTORY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Config history entry ID.
device_id
integer
Associated device ID.
index
integer
Config history index.
name
string
Config snapshot name.
config
string
Serialized config data.
restore_point
boolean
Whether this entry is a restore point.
factory_reset_point
boolean
Whether this entry is a factory reset point.
changed_by
integer
ID of the user who made the change.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made the change.
entries
object[]
Individual config history entries.
notes
object[]
Notes attached to this history entry.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get device config history entry
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/history/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/history/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 5,
"device_id": 36,
"index": null,
"name": "Modi fugit sed aut unde.",
"config": "{\"common\":{\"fingerStrength\":[1,500],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[45,44,54,32,38],\"limit\":[78,79,66,49,60]},\"1\":{\"initial\":[9,37,72,19,17],\"limit\":[58,78,79,65,85]},\"2\":{\"initial\":[60,26,14,39,63],\"limit\":[74,30,45,51,74]},\"3\":{\"initial\":[28,61,51,8,7],\"limit\":[70,78,63,90,63]},\"4\":{\"initial\":[22,36,12,37,51],\"limit\":[71,91,64,64,69]},\"5\":{\"initial\":[6,44,75,6,9],\"limit\":[50,46,79,8,81]},\"6\":{\"initial\":[29,54,2,17,2],\"limit\":[41,68,91,71,54]},\"7\":{\"initial\":[4,14,15,24,41],\"limit\":[69,57,93,57,76]},\"8\":{\"initial\":[40,14,11,6,48],\"limit\":[93,51,17,13,94]},\"9\":{\"initial\":[4,84,4,11,45],\"limit\":[89,95,5,82,93]},\"10\":{\"initial\":[57,55,57,14,47],\"limit\":[69,57,84,45,54]},\"11\":{\"initial\":[11,5,65,1,18],\"limit\":[23,10,86,43,57]},\"12\":{\"initial\":[22,38,48,22,57],\"limit\":[89,85,92,84,82]},\"13\":{\"initial\":[17,9,51,37,1],\"limit\":[38,77,67,50,95]}},\"inputSite\":[0]},\"modes\":[{\"id\":15,\"name\":\"Atque id fugiat in nam veritatis amet.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[500,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[10,30,20,90,30,80,70,90,10,30],\"gripPairsConfig\":[7,5,1,3,6,13,4,10],\"gripSequentialConfig\":[10,7,255,11,6,9,2,8,3,13,1,255],\"gripSwitchingMode\":[2],\"holdOpen\":[2000,2500],\"pulseTimings\":[770,580,300,580],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":16,\"name\":\"Quo pariatur ab ut illo esse.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[400,400],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[30,0,80,50,40,10,100,40,50,0],\"gripPairsConfig\":[10,11,12,13,9,8,3,6],\"gripSequentialConfig\":[13,1,255,3,255,255,7,255,255,255,5,6],\"gripSwitchingMode\":[3],\"holdOpen\":[2000,2500],\"pulseTimings\":[180,210,30,560],\"softGrip\":[0],\"speedControlStrategy\":[1]}},{\"id\":17,\"name\":\"Mollitia velit maiores animi saepe odit.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[500,300],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[20,10,30,30,90,50,70,80,40,40],\"gripPairsConfig\":[10,3,12,2,5,6,8,4],\"gripSequentialConfig\":[255,255,255,7,255,12,2,4,255,9,11,10],\"gripSwitchingMode\":[2],\"holdOpen\":[2500,2500],\"pulseTimings\":[710,40,920,550],\"softGrip\":[1],\"speedControlStrategy\":[0]}}]}",
"restore_point": 0,
"factory_reset_point": 0,
"changed_by": 51,
"created_at": "2026-03-20T16:19:00.000000Z",
"updated_at": "2026-03-20T16:19:00.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:HISTORY_ENTRY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY_ENTRY:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:HISTORY_ENTRY:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config history entry ID.
device_id
integer
Associated device ID.
index
integer
Config history index.
name
string
Config snapshot name.
config
string
Serialized config data.
restore_point
boolean
Whether this entry is a restore point.
factory_reset_point
boolean
Whether this entry is a factory reset point.
changed_by
integer
ID of the user who made the change.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made the change.
entries
object[]
Individual config history entries.
notes
object[]
Notes attached to this history entry.
Update config history
requires authentication
Returns updated config history in response.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/history/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote session 2022-05-30\",
\"restore_point\": true,
\"factory_reset_point\": false
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/history/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote session 2022-05-30",
"restore_point": true,
"factory_reset_point": false
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 6,
"device_id": 40,
"index": null,
"name": "Et in non id doloribus voluptatibus.",
"config": "{\"common\":{\"fingerStrength\":[1,200],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[4,12,52,34,1],\"limit\":[40,58,94,87,74]},\"1\":{\"initial\":[28,8,50,47,58],\"limit\":[48,62,80,81,74]},\"2\":{\"initial\":[23,23,75,4,49],\"limit\":[29,52,76,82,60]},\"3\":{\"initial\":[3,37,6,30,18],\"limit\":[47,62,95,52,88]},\"4\":{\"initial\":[26,4,57,27,43],\"limit\":[50,89,85,55,82]},\"5\":{\"initial\":[33,46,27,15,35],\"limit\":[68,84,75,85,87]},\"6\":{\"initial\":[15,2,42,47,40],\"limit\":[30,14,92,62,84]},\"7\":{\"initial\":[4,4,38,28,12],\"limit\":[60,70,61,95,22]},\"8\":{\"initial\":[67,20,12,20,17],\"limit\":[81,42,26,30,62]},\"9\":{\"initial\":[56,7,30,10,86],\"limit\":[58,38,36,44,89]},\"10\":{\"initial\":[27,33,61,17,47],\"limit\":[71,60,80,60,85]},\"11\":{\"initial\":[33,48,3,13,24],\"limit\":[78,54,57,74,62]},\"12\":{\"initial\":[41,68,20,63,35],\"limit\":[76,73,83,67,80]},\"13\":{\"initial\":[54,85,4,31,75],\"limit\":[74,87,5,46,79]}},\"inputSite\":[1]},\"modes\":[{\"id\":18,\"name\":\"Ipsam quo cumque qui alias nihil perspiciatis.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[200,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[30,70,90,80,20,20,100,70,0,30],\"gripPairsConfig\":[9,5,10,8,13,1,4,6],\"gripSequentialConfig\":[255,255,255,13,255,7,6,8,9,4,5,10],\"gripSwitchingMode\":[1],\"holdOpen\":[2000,2000],\"pulseTimings\":[890,970,570,760],\"softGrip\":[0],\"speedControlStrategy\":[1]}},{\"id\":19,\"name\":\"Dignissimos error quidem aut ipsa.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[500,400],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[30,0,50,40,100,20,60,70,70,70],\"gripPairsConfig\":[7,13,6,8,4,5,3,11],\"gripSequentialConfig\":[12,3,255,11,1,255,5,8,255,255,13,10],\"gripSwitchingMode\":[3],\"holdOpen\":[2000,2500],\"pulseTimings\":[860,1000,50,870],\"softGrip\":[0],\"speedControlStrategy\":[1]}},{\"id\":20,\"name\":\"Asperiores et consequatur cumque cum esse assumenda aut.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,400],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[100,0,10,60,50,100,100,100,30,40],\"gripPairsConfig\":[4,1,3,9,2,13,7,12],\"gripSequentialConfig\":[255,4,5,255,13,9,7,12,11,8,255,255],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2500],\"pulseTimings\":[790,140,750,500],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 52,
"created_at": "2026-03-20T16:19:01.000000Z",
"updated_at": "2026-03-20T16:19:01.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:HISTORY_UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Factory reset point already exists):
{
"message": "Factory reset point does not exist",
"code": "CONFIG:HISTORY_UPDATE:FACTORY_RESET_POINT_ALREADY_EXISTS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY_UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:HISTORY_UPDATE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config history entry ID.
device_id
integer
Associated device ID.
index
integer
Config history index.
name
string
Config snapshot name.
config
string
Serialized config data.
restore_point
boolean
Whether this entry is a restore point.
factory_reset_point
boolean
Whether this entry is a factory reset point.
changed_by
integer
ID of the user who made the change.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made the change.
entries
object[]
Individual config history entries.
notes
object[]
Notes attached to this history entry.
Undo single config history change
requires authentication
Returns updated config in response.
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/config/history/undo/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/history/undo/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:UNDO:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:UNDO:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:UNDO:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Restore config history entry
requires authentication
Restores config from given config history entry (all changes). Sends support ticket if patient is assigned to device, returns config instead.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/restore/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/restore/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, Patient not assigned, returns config):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (202):
{
"id": 1,
"sender_id": 53,
"recipient_id": 54,
"device_id": null,
"meeting_date": "2026-03-20 16:19:02",
"meeting_type": "online_meeting",
"contact_email": "daryl.sawayn@paucek.com",
"status": "new",
"created_at": "2026-03-20T16:19:03.000000Z",
"updated_at": "2026-03-20T16:19:03.000000Z",
"sender": {
"id": 53,
"mrn": "BT5R6JF91774023541",
"name": "Sasha Johnson",
"email": "1774023541fmills@example.com",
"language": "en",
"phone": "903.914.4593",
"phone_country": "NC",
"phone_verified_at": null,
"address1": "21767 Lehner Drive Apt. 063",
"address2": "Rempelfurt, DC 96434-8216",
"postal_code": "65822-1805",
"city": "Fisher, Legros and Heathcote",
"country": "ES",
"clinic_name": "New Kyleigh",
"clinic_location": "52241 Katlynn Cliffs\nCarterhaven, CO 37877",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:01.000000Z",
"updated_at": "2026-03-20T16:19:01.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 54,
"mrn": "9D6QZY6L1774023542",
"name": "Porter Jaskolski",
"email": "1774023542cornelius.schroeder@example.com",
"language": "en",
"phone": "678-719-6620",
"phone_country": "WF",
"phone_verified_at": null,
"address1": "39827 Wisoky Mountain",
"address2": "Lake Ilianahaven, MS 48268-0333",
"postal_code": "02277",
"city": "Boehm Ltd",
"country": "BE",
"clinic_name": "West Arianeshire",
"clinic_location": "6619 Johnson Plaza Apt. 918\nAlexaville, MN 67683-2803",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:02.000000Z",
"updated_at": "2026-03-20T16:19:02.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 55,
"title": "Miss",
"content": "Similique debitis accusamus labore nemo dolorum nisi.",
"is_read": false,
"created_at": "2026-03-20T16:19:05.000000Z",
"updated_at": "2026-03-20T16:19:05.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:RESTORE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:RESTORE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:RESTORE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Restore to factory reset point
requires authentication
Restores config from the device's factory reset point. Sends a support ticket if the patient is assigned to the device. Returns the array that contains:
config- The factory reset config. It might be updated with current config entries when the restored config does not contain a key or its value is false, but the key is available in the current config, has a non-false value, and is required by the config schema.not_modified- The part of the current config that contains keys which were ignored (because they’re on the ignore list, such as custom grips settings), or were not updated with values from the factory reset config (because the values are the same in both configs, or missing in the factory reset config but present and non-false in the current config). These are included in theconfigto ensure their values remain unchanged and are not replaced with defaults.ticket- Support ticket entity, if patient is assigned, null otherwise.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/restore-factory-reset" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/restore-factory-reset"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"config": {
"common": {
"inputSite": [
1
],
"generalHandSettings": false,
"batteryBeep": [
1,
0
],
"emgGains": false,
"autoGrasp": false
},
"modes": [
{
"id": 1,
"name": "Mode 0",
"slot": 0,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
},
{
"id": 1530,
"name": "Mode 1",
"slot": 1,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
},
{
"id": 1531,
"name": "Mode 2",
"slot": 2,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
}
]
},
"not_modified": {
"common": {
"inputSite": [
1
],
"batteryBeep": [
1,
0
],
"generalHandSettings": [
1,
2,
3,
4
]
},
"modes": [
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
},
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
},
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
}
]
},
"ticket": {
"id": 1,
"sender_id": 1,
"recipient_id": 2,
"device_id": 1,
"meeting_date": "2025-07-22T15:00:00.000000Z",
"meeting_type": "none",
"contact_email": null,
"status": "new",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z",
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 1,
"title": "New config update",
"content": "",
"is_read": false,
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z",
"attachments": [
{
"id": 6629,
"ticket_id": 12973,
"ticket_message_id": 6517,
"type": "json",
"title": "Current config",
"attachment": "{\"common\":{},\"modes\":[{\"id\":1,\"name\":\"Mode 0\",\"slot\":0,\"config\":{}},{\"id\":2,\"name\":\"Mode 1\",\"slot\":1,\"config\":{}},{\"id\":3,\"name\":\"Mode 2\",\"slot\":2,\"config\":{}}]}",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z"
},
{
"id": 6630,
"ticket_id": 12973,
"ticket_message_id": 6517,
"type": "json",
"title": "New config",
"attachment": "{\"common\":{},\"modes\":[{\"id\":1,\"name\":\"Mode 0\",\"slot\":0,\"config\":{}},{\"id\":2,\"name\":\"Mode 1\",\"slot\":1,\"config\":{}},{\"id\":3,\"name\":\"Mode 2\",\"slot\":2,\"config\":{}}]}",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z"
}
]
}
]
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:RESTORE_FACTORY_RESET:INSUFFICIENT_PERMISSION"
}
Example response (403, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:RESTORE_FACTORY_RESET:NO_RESTORE_POINT"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:RESTORE_FACTORY_RESET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send test config
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"description\": \"Fixed problem with grips.\",
\"p2p_session\": 1,
\"updateConfig\": false,
\"common\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\",
\"modes\": [
{
\"id\": 1,
\"config\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"description": "Fixed problem with grips.",
"p2p_session": 1,
"updateConfig": false,
"common": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]",
"modes": [
{
"id": 1,
"config": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]"
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 7,
"sender_id": 64,
"recipient_id": 65,
"device_id": null,
"meeting_date": "2026-03-20 16:19:11",
"meeting_type": "online_meeting",
"contact_email": "reynold46@hotmail.com",
"status": "new",
"created_at": "2026-03-20T16:19:12.000000Z",
"updated_at": "2026-03-20T16:19:12.000000Z",
"sender": {
"id": 64,
"mrn": "LPVOMQ1J1774023551",
"name": "Flavie Okuneva",
"email": "1774023551konopelski.kayli@example.org",
"language": "en",
"phone": "870.795.2110",
"phone_country": "DO",
"phone_verified_at": null,
"address1": "292 Amaya Loaf Suite 663",
"address2": "Nestorland, MN 23048",
"postal_code": "10011",
"city": "Abbott-Jones",
"country": "ES",
"clinic_name": "North Elenoraland",
"clinic_location": "87273 Maeve Estates\nGeovanyfurt, WI 09281-7048",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:11.000000Z",
"updated_at": "2026-03-20T16:19:11.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 65,
"mrn": "LA5JO0FD1774023551",
"name": "Kim Dietrich",
"email": "1774023551winona.barton@example.com",
"language": "en",
"phone": "1-816-395-5977",
"phone_country": "KW",
"phone_verified_at": null,
"address1": "179 Nolan Forges Suite 549",
"address2": "Kemmerburgh, NH 89541-4074",
"postal_code": "41434",
"city": "Corkery-Friesen",
"country": "IT",
"clinic_name": "New Albertha",
"clinic_location": "787 Llewellyn Glen\nNolanton, MS 18583-1290",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:12.000000Z",
"updated_at": "2026-03-20T16:19:12.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 4,
"ticket_id": 7,
"sender_id": 66,
"title": "Miss",
"content": "Distinctio ut atque consequuntur fugiat quidem optio et.",
"is_read": false,
"created_at": "2026-03-20T16:19:15.000000Z",
"updated_at": "2026-03-20T16:19:15.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:SEND:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:SEND:DEVICE_NOT_FOUND"
}
Example response (422, Device does not have an amputee assigned):
{
"message": "Device does not have an amputee assigned",
"code": "CONFIG:SEND:NO_PATIENT"
}
Example response (422, Invalid P2P session):
{
"message": "Invalid P2P session",
"code": "CONFIG:SEND:INVALID_P2P_SESSION"
}
Example response (422, Invalid config):
{
"message": "Config has some problems and cannot be saved.",
"errors": {
"modes": {
"mode_3": "Config mode 3 does not belong to device 12."
},
"values": {
"common.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"common.gripsPositions.1.initial": "Invalid value [200,\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values.",
"mode_1.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"mode_1.gripsPositions.0.initial": "Invalid value [\"200\",\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values."
}
},
"code": "CONFIG:SEND:INVALID_CONFIG"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Convert config
requires authentication
Convert config JSON to match given Firmware Version. Keys are moved between common config and modes.
Example request:
curl --request POST \
"http://localhost:8000/api/config/convert" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"config\": \"[\\\"consequatur\\\",\\\"quam\\\"]\",
\"firmware\": 1
}"
const url = new URL(
"http://localhost:8000/api/config/convert"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"config": "[\"consequatur\",\"quam\"]",
"firmware": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:CONVERT:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG:CONVERT:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Demo
API endpoints for managing config demos
List config demos
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/demos?accepted=6" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/demos"
);
const params = {
"accepted": "6",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_id": 72,
"message_id": 8,
"config": "Vitae sint et molestiae doloribus.",
"is_accepted": 1,
"notes": "In quia sed quia.",
"created_at": "2026-03-20T16:19:31.000000Z",
"updated_at": "2026-03-20T16:19:31.000000Z",
"message": {
"id": 8,
"ticket_id": 15,
"sender_id": 87,
"title": "Prof.",
"content": "Corporis consequatur enim nihil aut.",
"is_read": false,
"created_at": "2026-03-20T16:19:31.000000Z",
"updated_at": "2026-03-20T16:19:31.000000Z"
}
},
{
"id": 2,
"device_id": 73,
"message_id": 10,
"config": "Voluptas quia nulla aut architecto distinctio.",
"is_accepted": 1,
"notes": "Deleniti deleniti sapiente ut sint reprehenderit inventore.",
"created_at": "2026-03-20T16:19:35.000000Z",
"updated_at": "2026-03-20T16:19:35.000000Z",
"message": {
"id": 10,
"ticket_id": 18,
"sender_id": 92,
"title": "Dr.",
"content": "Rerum cupiditate nemo laborum numquam.",
"is_read": false,
"created_at": "2026-03-20T16:19:35.000000Z",
"updated_at": "2026-03-20T16:19:35.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config demos",
"code": "CONFIG_DEMO:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_DEMO:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update config demo
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/config/demos/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"is_accepted\": false,
\"notes\": \"Something is still not working\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/demos/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"is_accepted": false,
"notes": "Something is still not working"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"device_id": 74,
"message_id": 11,
"config": "Et deserunt dolor illo sed rerum.",
"is_accepted": 0,
"notes": "Repudiandae accusamus eum omnis repudiandae optio.",
"created_at": "2026-03-20T16:19:38.000000Z",
"updated_at": "2026-03-20T16:19:38.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config demos",
"code": "CONFIG_DEMO:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_DEMO:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config demo not found):
{
"message": "Config demo not found",
"code": "CONFIG_DEMO:UPDATE:DEMO_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Modes
API endpoints for managing config modes
List config modes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config-modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 72,
"device_id": 103,
"slot": null,
"name": "Rerum veniam consequuntur earum quia.",
"active": 0,
"created_at": "2026-03-20T16:19:47.000000Z",
"updated_at": "2026-03-20T16:19:47.000000Z",
"device": {
"id": 103,
"serial": "3d7767dd-2cad-3f5b-b292-15ea49e6cc51",
"bluetooth_id": "d6f5c549-e9e5-3276-ae5f-12c2a2457f2a",
"company_id": null,
"model_id": null,
"amputee_id": 105,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:19:47.000000Z",
"updated_at": "2026-03-20T16:19:47.000000Z"
}
},
{
"id": 73,
"device_id": 105,
"slot": null,
"name": "Natus assumenda reiciendis eos et fugiat deserunt animi.",
"active": 0,
"created_at": "2026-03-20T16:19:48.000000Z",
"updated_at": "2026-03-20T16:19:48.000000Z",
"config": {}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config modes",
"code": "CONFIG_MODES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get config mode
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config-modes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 74,
"device_id": 106,
"slot": null,
"name": "Consequatur beatae iure voluptas qui ad.",
"active": 0,
"created_at": "2026-03-20T16:19:48.000000Z",
"updated_at": "2026-03-20T16:19:48.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config modes",
"code": "CONFIG_MODES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:GET:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:GET:MODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create config mode
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config-modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"slot\": 0,
\"name\": \"Sport mode\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config-modes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"slot": 0,
"name": "Sport mode",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 75,
"device_id": 107,
"slot": null,
"name": "Voluptas numquam officiis consequatur non illo quo quam minus.",
"active": 0,
"created_at": "2026-03-20T16:19:48.000000Z",
"updated_at": "2026-03-20T16:19:48.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create config modes",
"code": "CONFIG_MODES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:CREATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update config mode
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/config-modes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"slot\": 0,
\"name\": \"Sport mode\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"slot": 0,
"name": "Sport mode",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 76,
"device_id": 108,
"slot": null,
"name": "Voluptatem itaque harum doloribus qui.",
"active": 1,
"created_at": "2026-03-20T16:19:48.000000Z",
"updated_at": "2026-03-20T16:19:48.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config mode",
"code": "CONFIG_MODES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:UPDATE:MODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config mode ID.
device_id
integer
Associated device ID.
slot
integer
Mode slot index (0, 1 or 2).
name
string
Mode name.
active
boolean
Whether the mode is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Copy device config from template
requires authentication
Copy config template into selected config mode. Sends support ticket if patient is assigned to device, returns config instead.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config-modes/1/from-template/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1/from-template/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, Patient not assigned, returns config):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (202):
{
"id": 21,
"sender_id": 107,
"recipient_id": 108,
"device_id": null,
"meeting_date": "2026-03-20 16:19:49",
"meeting_type": "online_meeting",
"contact_email": "considine.korey@hotmail.com",
"status": "new",
"created_at": "2026-03-20T16:19:50.000000Z",
"updated_at": "2026-03-20T16:19:50.000000Z",
"sender": {
"id": 107,
"mrn": "0G04ZZX11774023588",
"name": "Dr. Dangelo Orn",
"email": "1774023588nasir.ohara@example.net",
"language": "en",
"phone": "(308) 516-9001",
"phone_country": "MK",
"phone_verified_at": null,
"address1": "690 Hollie Ridges Suite 911",
"address2": "Port Dawsontown, MA 40800",
"postal_code": "76110-3630",
"city": "Ondricka, Nienow and Hayes",
"country": "FR",
"clinic_name": "Nathanielshire",
"clinic_location": "632 Leda Shore Suite 142\nSchummmouth, WA 03548",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:48.000000Z",
"updated_at": "2026-03-20T16:19:48.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 108,
"mrn": "WE3K5WIB1774023589",
"name": "Dr. Rhett Haley II",
"email": "1774023589turner.gerard@example.com",
"language": "en",
"phone": "(872) 806-0198",
"phone_country": "EC",
"phone_verified_at": null,
"address1": "73287 Vivianne Landing",
"address2": "New Lupe, NC 75348",
"postal_code": "54303-1184",
"city": "Roberts-Mayer",
"country": "PT",
"clinic_name": "Ullrichport",
"clinic_location": "86344 Funk Pass Apt. 128\nNew Melissa, CO 84503-6849",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:49.000000Z",
"updated_at": "2026-03-20T16:19:49.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 12,
"ticket_id": 21,
"sender_id": 109,
"title": "Mr.",
"content": "Reiciendis ipsam error accusamus animi voluptatem.",
"is_read": false,
"created_at": "2026-03-20T16:19:52.000000Z",
"updated_at": "2026-03-20T16:19:52.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config mode",
"code": "CONFIG_MODES:COPY_TEMPLATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:MODE_NOT_FOUND"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Config Notes
API endpoints for config history notes
Get config entry notes list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/1/notes?user=1&type=public" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes"
);
const params = {
"user": "1",
"type": "public",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"config_history_id": 7,
"user_id": 76,
"note": "Facilis nisi aut repellat porro.",
"type": "public",
"created_at": "2026-03-20T16:19:22.000000Z",
"updated_at": "2026-03-20T16:19:22.000000Z",
"author": {
"id": 76,
"mrn": "JW71DE4B1774023561",
"name": "Mr. Weston Zboncak IV",
"email": "1774023561gerlach.prudence@example.com",
"language": "en",
"phone": "267.767.8713",
"phone_country": "KR",
"phone_verified_at": null,
"address1": "76097 Omari Wells",
"address2": "East Devan, UT 69753",
"postal_code": "40781-4676",
"city": "Jones, Hauck and Bosco",
"country": "US",
"clinic_name": "Saraihaven",
"clinic_location": "2073 Boyer Estates Apt. 584\nNyasiaport, MD 30239",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:21.000000Z",
"updated_at": "2026-03-20T16:19:21.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"config_history_id": 8,
"user_id": 78,
"note": "Totam enim deserunt sint quod iure aliquid tempora.",
"type": "public",
"created_at": "2026-03-20T16:19:24.000000Z",
"updated_at": "2026-03-20T16:19:24.000000Z",
"author": {
"id": 78,
"mrn": "XX7UDNGF1774023563",
"name": "Jed Bode",
"email": "1774023563volkman.jeanette@example.net",
"language": "en",
"phone": "+1 (279) 923-3955",
"phone_country": "AZ",
"phone_verified_at": null,
"address1": "30207 Hettinger Ports",
"address2": "Adrienmouth, MD 11645-6678",
"postal_code": "08793",
"city": "Senger Ltd",
"country": "AT",
"clinic_name": "Priceburgh",
"clinic_location": "47679 Kessler Inlet Suite 298\nNorth Trudie, TN 56981-6781",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:23.000000Z",
"updated_at": "2026-03-20T16:19:23.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config notes",
"code": "CONFIG_NOTES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:LIST:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:LIST:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Note ID.
config_history_id
integer
Associated config history entry ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
type
string
Note visibility.
Must be one of:publicprivate
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get config entry note
requires authentication
Returns single config history entry note in response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"config_history_id": 9,
"user_id": 80,
"note": "Omnis veniam rerum eum molestiae.",
"type": "public",
"created_at": "2026-03-20T16:19:25.000000Z",
"updated_at": "2026-03-20T16:19:25.000000Z",
"author": {
"id": 80,
"mrn": "ULNSWD411774023565",
"name": "Jaida Klein",
"email": "1774023565celine95@example.net",
"language": "en",
"phone": "+1 (332) 859-5092",
"phone_country": "HK",
"phone_verified_at": null,
"address1": "3361 Beer Canyon Suite 203",
"address2": "Braunfort, UT 91044-7268",
"postal_code": "65927-4862",
"city": "Sawayn, Stehr and Langworth",
"country": "GR",
"clinic_name": "Reymundoside",
"clinic_location": "41889 Jeffery Road Apt. 063\nEast Helmertown, WA 88879",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:25.000000Z",
"updated_at": "2026-03-20T16:19:25.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config notes",
"code": "CONFIG_NOTES:GET_ENTRY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:GET_ENTRY:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:GET_ENTRY:HISTORY_ENTRY_NOT_FOUND"
}
Example response (404, Config history note not found):
{
"message": "Config history note not found",
"code": "CONFIG_NOTES:GET_ENTRY:HISTORY_NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Note ID.
config_history_id
integer
Associated config history entry ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
type
string
Note visibility.
Must be one of:publicprivate
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Create config entry note
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/1/notes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"note\": \"Sequi esse iure rerum et.\",
\"type\": \"public\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"note": "Sequi esse iure rerum et.",
"type": "public"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 4,
"config_history_id": 10,
"user_id": 82,
"note": "Amet libero dolores facere numquam.",
"type": "public",
"created_at": "2026-03-20T16:19:27.000000Z",
"updated_at": "2026-03-20T16:19:27.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add config notes",
"code": "CONFIG_NOTES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:CREATE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:CREATE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Note ID.
config_history_id
integer
Associated config history entry ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
type
string
Note visibility.
Must be one of:publicprivate
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Delete config note
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/config/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config history note deleted",
"code": "CONFIG_NOTES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config notes",
"code": "CONFIG_NOTES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:DELETE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:DELETE:HISTORY_ENTRY_NOT_FOUND"
}
Example response (404, Config history note not found):
{
"message": "Config history note not found",
"code": "CONFIG_NOTES:DELETE:HISTORY_NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Schema
API endpoints for config schema management
Get config schema
requires authentication
Returns list of config schema entries for given firmware version.
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/firmware/1/schema?filter=modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1/schema"
);
const params = {
"filter": "modes",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"firmware_id": 7,
"key": "ut",
"is_common": 0,
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
},
{
"id": 2,
"firmware_id": 9,
"key": "nisi",
"is_common": 0,
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view config schema",
"code": "CONFIG_SCHEMA:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:GET:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config schema ID.
firmware_id
integer
Associated firmware version ID.
key
string
Config schema key.
is_common
boolean
Whether this key is shared across all modes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
firmware
object
Associated firmware version.
Add config schema
requires authentication
Add one or many config schema entries. Each entry is one key in config. Body of this request is simple array of objects:
[
{"key": "key_name", "is_common": 1},
{"key": "another_name", "is_common": 0},
...
]
Example request:
curl --request POST \
"http://localhost:8000/api/versions/firmware/voluptatum/schema" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "[
{
\"key\": \"gripsPosition.0.initial\",
\"is_common\": 1
}
]"
const url = new URL(
"http://localhost:8000/api/versions/firmware/voluptatum/schema"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = [
{
"key": "gripsPosition.0.initial",
"is_common": 1
}
];
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"firmware_id": 11,
"key": "quia",
"is_common": 1,
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
},
{
"id": 4,
"firmware_id": 13,
"key": "exercitationem",
"is_common": 1,
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage config schema",
"code": "CONFIG_SCHEMA:ADD:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:ADD:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config schema ID.
firmware_id
integer
Associated firmware version ID.
key
string
Config schema key.
is_common
boolean
Whether this key is shared across all modes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
firmware
object
Associated firmware version.
Delete config schema
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/firmware/1/schema/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1/schema/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config schema entry deleted",
"code": "CONFIG_SCHEMA:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage config schema",
"code": "CONFIG_SCHEMA:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:DELETE:FIRMWARE_NOT_FOUND"
}
Example response (404, Config schema entry not found):
{
"message": "Config schema entry not found",
"code": "CONFIG_SCHEMA:DELETE:SCHEMA_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Templates
API endpoints for managing config templates
Get config templates list
requires authentication
Entries where author is present are private and owned by its author. Entries where author is null should be considered as global templates prepared by Aether team.
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates?search=sport&author=1&scope=me" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates"
);
const params = {
"search": "sport",
"author": "1",
"scope": "me",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Ducimus et quia cumque repellat perferendis consequuntur.",
"description": "Id quis fuga sit et saepe rerum.",
"author_id": 96,
"company_id": null,
"config": "{\"autoGrasp\":[1,0],\"coContractionTimings\":[200,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[100,90,70,100,50,90,0,20,100,80],\"gripPairsConfig\":[1,9,13,12,11,6,10,7],\"gripSequentialConfig\":[7,8,5,13,10,11,3,9,12,6,4,1],\"gripSwitchingMode\":[2],\"holdOpen\":[2500,2500],\"pulseTimings\":[270,340,590,990],\"softGrip\":[1],\"speedControlStrategy\":[0]}",
"created_at": "2026-03-20T16:19:39.000000Z",
"updated_at": "2026-03-20T16:19:39.000000Z",
"author": {
"id": 96,
"mrn": "KNDP3LD51774023578",
"name": "Mrs. Ara Feeney I",
"email": "1774023578fmurazik@example.org",
"language": "en",
"phone": "838.402.8047",
"phone_country": "KE",
"phone_verified_at": null,
"address1": "7622 Terrence Coves Suite 232",
"address2": "Port Brandi, MA 20559",
"postal_code": "88238-7375",
"city": "Parisian Group",
"country": "CZ",
"clinic_name": "Lake Adalineton",
"clinic_location": "25393 Bernie Trail\nSouth Ivoryshire, MT 02554-5625",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:38.000000Z",
"updated_at": "2026-03-20T16:19:38.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"name": "Aliquam culpa et labore exercitationem doloribus harum.",
"description": "Molestiae voluptas dolor optio voluptatem incidunt vitae possimus sequi.",
"author_id": 97,
"company_id": null,
"config": "{\"autoGrasp\":[0,0],\"coContractionTimings\":[400,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[70,20,0,30,40,90,80,50,80,60],\"gripPairsConfig\":[5,13,1,3,7,12,6,10],\"gripSequentialConfig\":[11,6,7,2,13,9,1,255,10,255,8,12],\"gripSwitchingMode\":[2],\"holdOpen\":[2000,2000],\"pulseTimings\":[720,730,30,280],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-03-20T16:19:40.000000Z",
"updated_at": "2026-03-20T16:19:40.000000Z",
"author": {
"id": 97,
"mrn": "A5H7J6011774023579",
"name": "Mr. Ransom Zulauf PhD",
"email": "1774023579camden99@example.com",
"language": "en",
"phone": "(414) 299-6162",
"phone_country": "BH",
"phone_verified_at": null,
"address1": "96638 Anibal Expressway Apt. 167",
"address2": "Sporerstad, PA 27722",
"postal_code": "60160-9790",
"city": "Bartell, Boehm and Schaden",
"country": "NL",
"clinic_name": "Satterfieldberg",
"clinic_location": "12729 Torrance Port Apt. 027\nLeonelton, MD 93877",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:39.000000Z",
"updated_at": "2026-03-20T16:19:39.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config templates",
"code": "CONFIG_TEMPLATES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get config template
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"name": "Adipisci laboriosam nostrum quod.",
"description": "Eligendi ipsam voluptatum et accusantium.",
"author_id": 98,
"company_id": null,
"config": "{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,500],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[100,10,20,40,30,20,30,20,50,80],\"gripPairsConfig\":[11,13,3,6,1,9,8,7],\"gripSequentialConfig\":[255,3,13,255,7,8,12,10,2,4,11,1],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2000],\"pulseTimings\":[880,900,580,1000],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-03-20T16:19:41.000000Z",
"updated_at": "2026-03-20T16:19:41.000000Z",
"author": {
"id": 98,
"mrn": "KYBY6Z361774023580",
"name": "Carlos Orn",
"email": "1774023580zelma88@example.com",
"language": "en",
"phone": "708-488-4572",
"phone_country": "DO",
"phone_verified_at": null,
"address1": "3928 Maurine Landing",
"address2": "East Tad, DC 33362-4886",
"postal_code": "35331",
"city": "Runte-Langworth",
"country": "GR",
"clinic_name": "New Generalfort",
"clinic_location": "740 Julien Lodge\nLillianafurt, NM 58557",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:40.000000Z",
"updated_at": "2026-03-20T16:19:40.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view config template",
"code": "CONFIG_TEMPLATES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:GET:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
Create new config template
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/config/templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Default config for Aether Zeus\",
\"description\": \"Description of the config template.\",
\"owner\": \"company\",
\"author\": 1,
\"config\": \"{\\\"param_1\\\": [100, 200], \\\"param_2\\\": [100, 200, 300]}\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Default config for Aether Zeus",
"description": "Description of the config template.",
"owner": "company",
"author": 1,
"config": "{\"param_1\": [100, 200], \"param_2\": [100, 200, 300]}"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "Voluptates nisi at enim.",
"description": "At ut a enim eum explicabo quia possimus numquam.",
"author_id": 99,
"company_id": null,
"config": "{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[30,90,40,90,60,50,40,60,30,100],\"gripPairsConfig\":[13,2,12,5,3,6,10,4],\"gripSequentialConfig\":[255,11,255,9,13,255,255,1,5,12,255,10],\"gripSwitchingMode\":[3],\"holdOpen\":[2000,2500],\"pulseTimings\":[610,460,300,940],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-03-20T16:19:42.000000Z",
"updated_at": "2026-03-20T16:19:42.000000Z",
"author": {
"id": 99,
"mrn": "4RHAUK2X1774023581",
"name": "Jaunita Jakubowski",
"email": "1774023581deven54@example.com",
"language": "en",
"phone": "540-232-0406",
"phone_country": "MC",
"phone_verified_at": null,
"address1": "13682 Raquel Via Suite 603",
"address2": "East Savanna, ND 31940-5594",
"postal_code": "77689-0916",
"city": "Strosin-Schuster",
"country": "EE",
"clinic_name": "Kadinberg",
"clinic_location": "34491 Johnston Meadow\nLake Leathaville, ND 39822",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:41.000000Z",
"updated_at": "2026-03-20T16:19:41.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create config template",
"code": "CONFIG_TEMPLATES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
Update config template
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Default config for Aether Zeus\",
\"description\": \"Description of the config template.\",
\"owner\": \"company\",
\"author\": 1,
\"config\": \"{\\\"param_1\\\": [100, 200], \\\"param_2\\\": [100, 200, 300]}\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Default config for Aether Zeus",
"description": "Description of the config template.",
"owner": "company",
"author": 1,
"config": "{\"param_1\": [100, 200], \"param_2\": [100, 200, 300]}"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"name": "Est perferendis consequatur quia ipsa praesentium sed.",
"description": "Eaque officiis esse earum non aut eligendi ipsa aut.",
"author_id": 100,
"company_id": null,
"config": "{\"autoGrasp\":[0,100],\"coContractionTimings\":[500,200],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[60,40,50,0,50,60,50,50,80,30],\"gripPairsConfig\":[13,5,8,11,4,9,6,3],\"gripSequentialConfig\":[13,5,255,255,10,4,255,255,255,2,8,7],\"gripSwitchingMode\":[2],\"holdOpen\":[2000,2500],\"pulseTimings\":[710,380,930,30],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-03-20T16:19:43.000000Z",
"updated_at": "2026-03-20T16:19:43.000000Z",
"author": {
"id": 100,
"mrn": "NOAF3NF91774023582",
"name": "Prof. Nolan Nolan PhD",
"email": "1774023582skonopelski@example.org",
"language": "en",
"phone": "+1.865.371.1978",
"phone_country": "EH",
"phone_verified_at": null,
"address1": "1861 Price Terrace",
"address2": "Cormiermouth, MA 30699-4207",
"postal_code": "79607-4234",
"city": "Bins, Leannon and Vandervort",
"country": "PT",
"clinic_name": "Krajcikton",
"clinic_location": "73018 Anderson Coves\nWest Marilyneview, ID 93873",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:42.000000Z",
"updated_at": "2026-03-20T16:19:42.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config template",
"code": "CONFIG_TEMPLATES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:UPDATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Config template ID.
name
string
Template name.
description
string
Template description.
author_id
integer
ID of the user who created the template.
company_id
integer
Associated company ID.
config
string
Serialized config data.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who created the template.
notes
object[]
Notes attached to this template.
Delete config template
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config template deleted",
"code": "CONFIG_TEMPLATES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config template",
"code": "CONFIG_TEMPLATES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:DELETE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Templates Notes
API endpoints for config templates notes
Get config templates notes list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1/notes?user=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes"
);
const params = {
"user": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"template_id": 6,
"user_id": 101,
"note": "Voluptas hic quae sed praesentium amet.",
"created_at": "2026-03-20T16:19:44.000000Z",
"updated_at": "2026-03-20T16:19:44.000000Z",
"author": {
"id": 101,
"mrn": "BN5TTS2X1774023583",
"name": "Prof. Hazel Altenwerth DDS",
"email": "1774023583wgorczany@example.net",
"language": "en",
"phone": "(743) 283-9039",
"phone_country": "MO",
"phone_verified_at": null,
"address1": "16013 Bulah Passage",
"address2": "West Sylvanport, CO 64209",
"postal_code": "09359",
"city": "Rippin-Schiller",
"country": "SE",
"clinic_name": "Lake Elisabeth",
"clinic_location": "849 Hansen Way\nEsperanzaview, CO 79536-1162",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:43.000000Z",
"updated_at": "2026-03-20T16:19:43.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"template_id": 7,
"user_id": 102,
"note": "Excepturi maxime sed voluptatum blanditiis ex.",
"created_at": "2026-03-20T16:19:44.000000Z",
"updated_at": "2026-03-20T16:19:44.000000Z",
"author": {
"id": 102,
"mrn": "R90V6W8G1774023584",
"name": "Laverna Schulist",
"email": "1774023584schmitt.vena@example.org",
"language": "en",
"phone": "+1-341-883-8772",
"phone_country": "LK",
"phone_verified_at": null,
"address1": "91423 Grady Plains",
"address2": "Mantehaven, CA 08702-6805",
"postal_code": "73612",
"city": "Abshire, Wehner and Frami",
"country": "LV",
"clinic_name": "Anjalihaven",
"clinic_location": "712 Rempel Square\nBeahantown, IN 22866",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:44.000000Z",
"updated_at": "2026-03-20T16:19:44.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:LIST:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Note ID.
template_id
integer
Associated config template ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get config template note
requires authentication
Returns single config template note in response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"template_id": 8,
"user_id": 103,
"note": "Voluptatem excepturi impedit mollitia.",
"created_at": "2026-03-20T16:19:45.000000Z",
"updated_at": "2026-03-20T16:19:45.000000Z",
"author": {
"id": 103,
"mrn": "K0Q79NDU1774023585",
"name": "Queenie Schmidt",
"email": "1774023585walton.kub@example.net",
"language": "en",
"phone": "1-206-340-9584",
"phone_country": "TM",
"phone_verified_at": null,
"address1": "731 Ursula Shoal Suite 271",
"address2": "Lake Myrtice, PA 65686-7108",
"postal_code": "01016-5949",
"city": "Breitenberg-Frami",
"country": "HU",
"clinic_name": "North Bertaberg",
"clinic_location": "5760 Kunze Terrace\nNew Maryseburgh, MI 50465",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:45.000000Z",
"updated_at": "2026-03-20T16:19:45.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:GET:TEMPLATE_NOT_FOUND"
}
Example response (404, Config template note not found):
{
"message": "Config template note not found",
"code": "CONFIG_TEMPLATE_NOTES:GET:NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Note ID.
template_id
integer
Associated config template ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Create new config template note
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/config/templates/1/notes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"note\": \"Vel accusamus veritatis expedita suscipit tempore facilis et.\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates/1/notes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"note": "Vel accusamus veritatis expedita suscipit tempore facilis et."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"template_id": 9,
"user_id": 104,
"note": "Praesentium voluptatem facere sint pariatur praesentium et.",
"created_at": "2026-03-20T16:19:46.000000Z",
"updated_at": "2026-03-20T16:19:46.000000Z",
"author": {
"id": 104,
"mrn": "SO5E6J7K1774023585",
"name": "Manuela Schamberger",
"email": "1774023585dmayer@example.net",
"language": "en",
"phone": "762-216-0771",
"phone_country": "GF",
"phone_verified_at": null,
"address1": "49682 Helena Rapids",
"address2": "Vernhaven, NJ 06581-6300",
"postal_code": "52352-3210",
"city": "Feeney PLC",
"country": "LU",
"clinic_name": "Lake Alekton",
"clinic_location": "2180 Lourdes Passage\nClementineland, WV 22511",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:19:46.000000Z",
"updated_at": "2026-03-20T16:19:46.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:CREATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Note ID.
template_id
integer
Associated config template ID.
user_id
integer
ID of the user who wrote the note.
note
string
Note content.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who wrote the note.
Delete config template note
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/config/templates/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config template note deleted",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:TEMPLATE_NOT_FOUND"
}
Example response (404, Config template note not found):
{
"message": "Config template note not found",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Custom Grips
API endpoints for custom grips management
List custom grips templates
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/custom-grips-templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/custom-grips-templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": 255,
"name": "grover.raynor",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-03-20T16:21:53.000000Z",
"updated_at": "2026-03-20T16:21:53.000000Z"
},
{
"id": 2,
"user_id": 256,
"name": "watsica.tommie",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-03-20T16:21:54.000000Z",
"updated_at": "2026-03-20T16:21:54.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Custom grip template ID.
user_id
integer
Owner user ID.
name
string
Template name.
initial_position
string
Initial finger positions.
limit_position
string
Limit finger positions.
active_fingers
string
Active fingers configuration.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create custom grip template
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/custom-grips-templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip Template 1\",
\"initial_position\": \"[50, 50, 50, 50, 50]\",
\"limit_position\": \"[900, 900, 900, 900, 900]\",
\"active_fingers\": \"[0, 1, 1, 1, 1]\"
}"
const url = new URL(
"http://localhost:8000/api/custom-grips-templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip Template 1",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"user_id": 257,
"name": "edmond.torp",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-03-20T16:21:54.000000Z",
"updated_at": "2026-03-20T16:21:54.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip template name in use):
{
"message": "Custom grip template name already in use",
"code": "CUSTOM_GRIPS_TEMPLATES:CREATE:NAME_IN_USE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Custom grip template ID.
user_id
integer
Owner user ID.
name
string
Template name.
initial_position
string
Initial finger positions.
limit_position
string
Limit finger positions.
active_fingers
string
Active fingers configuration.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete custom grip template
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/custom-grips-templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/custom-grips-templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Custom grip deleted",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Custom grip template not found):
{
"message": "Custom grip template not found",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List custom grips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/custom-grips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/custom-grips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_id": 130,
"name": "bailey.randy",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-03-20T16:21:55.000000Z",
"updated_at": "2026-03-20T16:21:55.000000Z"
},
{
"id": 2,
"device_id": 131,
"name": "lela.borer",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-03-20T16:21:55.000000Z",
"updated_at": "2026-03-20T16:21:55.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view custom grips",
"code": "CUSTOM_GRIPS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Custom grip ID.
device_id
integer
Associated device ID.
name
string
Custom grip name.
opposed
boolean
Whether the grip is opposed.
grip_number
integer
Grip slot number.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create custom grip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/custom-grips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip 1\",
\"opposed\": true,
\"grip_number\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/1/custom-grips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip 1",
"opposed": true,
"grip_number": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"device_id": 132,
"name": "luettgen.greyson",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-03-20T16:21:55.000000Z",
"updated_at": "2026-03-20T16:21:55.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip name in use):
{
"message": "Custom grip name already in use",
"code": "CUSTOM_GRIPS:CREATE:NAME_IN_USE"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:CREATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Custom grip ID.
device_id
integer
Associated device ID.
name
string
Custom grip name.
opposed
boolean
Whether the grip is opposed.
grip_number
integer
Grip slot number.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update custom grip
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/custom-grips/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip 1\",
\"opposed\": true,
\"grip_number\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/1/custom-grips/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip 1",
"opposed": true,
"grip_number": 1
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"device_id": 133,
"name": "kunde.wilburn",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-03-20T16:21:55.000000Z",
"updated_at": "2026-03-20T16:21:55.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip name in use):
{
"message": "Custom grip name already in use",
"code": "CUSTOM_GRIPS:UPDATE:NAME_IN_USE"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Custom grip not found):
{
"message": "Custom grip not found",
"code": "CUSTOM_GRIPS:UPDATE:GRIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Custom grip ID.
device_id
integer
Associated device ID.
name
string
Custom grip name.
opposed
boolean
Whether the grip is opposed.
grip_number
integer
Grip slot number.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete custom grip
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/custom-grips/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/custom-grips/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Custom grip template deleted",
"code": "CUSTOM_GRIPS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:DELETE:DEVICE_NOT_FOUND"
}
Example response (404, Custom grip not found):
{
"message": "Custom grip not found",
"code": "CUSTOM_GRIPS:DELETE:GRIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Device Models
API endpoints for device models management
Get device models list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/devices/models?active=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/devices/models"
);
const params = {
"active": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "left",
"active": 1,
"created_at": "2026-03-20T16:18:43.000000Z",
"updated_at": "2026-03-20T16:18:43.000000Z"
},
{
"id": 4,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "right",
"active": 1,
"created_at": "2026-03-20T16:18:43.000000Z",
"updated_at": "2026-03-20T16:18:43.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list device models",
"code": "DEVICE_MODELS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create device model
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/devices/models" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Zeus hand v1\",
\"type\": \"hand\",
\"orientation\": \"left\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/devices/models"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Zeus hand v1",
"type": "hand",
"orientation": "left",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-03-20T16:18:43.000000Z",
"updated_at": "2026-03-20T16:18:43.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create device model",
"code": "DEVICE_MODELS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update device model
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/devices/models/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Zeus hand v1\",
\"type\": \"hand\",
\"orientation\": \"right\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/devices/models/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Zeus hand v1",
"type": "hand",
"orientation": "right",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 6,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "right",
"active": 1,
"created_at": "2026-03-20T16:18:43.000000Z",
"updated_at": "2026-03-20T16:18:43.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device model",
"code": "DEVICE_MODELS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device model not found):
{
"message": "Device model not found",
"code": "DEVICE_MODELS:UPDATE:MODEL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Devices
API endpoints for devices management
Check serial number or bluetooth ID
Public endpoint responding with status of given device serial number or bluetooth ID. If any of these numbers can be found in database, status will be true. Otherwise, status will be false (device does not exist).
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/check/S3R1AL-NUM83R" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"serial\"
}"
const url = new URL(
"http://localhost:8000/api/device/check/S3R1AL-NUM83R"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "serial"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"status": true
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get devices list
requires authentication
Possible extend options:
- model - device model details
- amputee - end-user assigned to device
- clinicians - list of clinicians assigned to the device
- firmwareVersion - device firmware version
- pcbVersion - PCB version
Example request:
curl --request GET \
--get "http://localhost:8000/api/devices?search=S3R1AL-NUM83R&active=-1&utee=1&clinician=1&model=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/devices"
);
const params = {
"search": "S3R1AL-NUM83R",
"active": "-1",
"amputee": "1",
"clinician": "1",
"model": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 5,
"serial": "9bbb2645-8989-393c-857e-e3e738868001",
"bluetooth_id": "c9dce2ae-488f-3b53-9ce9-035a5c15fd1e",
"company_id": null,
"model_id": 7,
"amputee_id": 34,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:44.000000Z",
"updated_at": "2026-03-20T16:18:44.000000Z",
"model": {
"id": 7,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-03-20T16:18:43.000000Z",
"updated_at": "2026-03-20T16:18:43.000000Z"
},
"amputee": {
"id": 34,
"mrn": "K4YEGVLV1774023523",
"name": "Dillon Wintheiser Jr.",
"email": "1774023523bergnaum.julien@example.net",
"language": "en",
"phone": "+1-231-726-0060",
"phone_country": "GE",
"phone_verified_at": null,
"address1": "110 Rutherford Well",
"address2": "East Sonya, NE 17601",
"postal_code": "07581",
"city": "Senger Group",
"country": "DE",
"clinic_name": "Bertramtown",
"clinic_location": "97458 Jast Path\nPort Delia, IA 24617-2169",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:43.000000Z",
"updated_at": "2026-03-20T16:18:43.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 6,
"serial": "c7a93e7b-6e23-3f70-8f45-d50e9dcff612",
"bluetooth_id": "112211e2-8aa7-3e2a-82c5-949ae20249ea",
"company_id": null,
"model_id": 8,
"amputee_id": 35,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:45.000000Z",
"updated_at": "2026-03-20T16:18:45.000000Z",
"model": {
"id": 8,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "right",
"active": 1,
"created_at": "2026-03-20T16:18:44.000000Z",
"updated_at": "2026-03-20T16:18:44.000000Z"
},
"amputee": {
"id": 35,
"mrn": "3RE9UT991774023524",
"name": "Prof. Garnet Stroman",
"email": "1774023524qtromp@example.com",
"language": "en",
"phone": "+18629393168",
"phone_country": "BJ",
"phone_verified_at": null,
"address1": "3355 Lehner Roads Apt. 267",
"address2": "West Trevor, WI 70679-8126",
"postal_code": "95351",
"city": "Mosciski, Kshlerin and Metz",
"country": "PL",
"clinic_name": "Kozeyside",
"clinic_location": "721 Schaefer Walks Suite 374\nEast Heleneville, WV 83402-2812",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:44.000000Z",
"updated_at": "2026-03-20T16:18:44.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list devices",
"code": "DEVICES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get device information
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 7,
"serial": "2aea357d-7d0a-3111-8692-2922f177032f",
"bluetooth_id": "4302531b-a0c6-3eb9-abf1-e3ecc6ebbc5e",
"company_id": null,
"model_id": 9,
"amputee_id": 36,
"clinician_id": null,
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z",
"model": {
"id": 9,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-03-20T16:18:45.000000Z",
"updated_at": "2026-03-20T16:18:45.000000Z"
},
"amputee": {
"id": 36,
"mrn": "MPD61UZ81774023525",
"name": "Jessika Friesen",
"email": "1774023525anderson.deonte@example.org",
"language": "en",
"phone": "562-354-6294",
"phone_country": "MT",
"phone_verified_at": null,
"address1": "629 Marcus Wells",
"address2": "Thompsonville, ND 45301",
"postal_code": "62777",
"city": "Zemlak and Sons",
"country": "CZ",
"clinic_name": "Karinaton",
"clinic_location": "1516 Hauck Causeway Suite 841\nSwaniawskiville, MS 70289-9831",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:45.000000Z",
"updated_at": "2026-03-20T16:18:45.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"pcb_version": {
"id": 1,
"name": "7.32.55",
"hardware_id": "",
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z"
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:GET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Create new device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"serial\": \"S3R1AL-NUM83R\",
\"bluetooth_id\": \"BL0123456789\",
\"model_id\": 1,
\"amputee_id\": 1,
\"clinicians\": [
2
],
\"firmware_version_id\": 1,
\"pcb_version_id\": 1,
\"reverse_magnets\": false,
\"is_electrode\": false,
\"active\": true,
\"last_activity_at\": \"2022-08-15 12:00:00\"
}"
const url = new URL(
"http://localhost:8000/api/device"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"serial": "S3R1AL-NUM83R",
"bluetooth_id": "BL0123456789",
"model_id": 1,
"amputee_id": 1,
"clinicians": [
2
],
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": false,
"is_electrode": false,
"active": true,
"last_activity_at": "2022-08-15 12:00:00"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 8,
"serial": "717e7411-a8ac-3d68-93d9-24e83afd27a0",
"bluetooth_id": "86592a8a-c3cd-3392-901f-d89bded896ba",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create device",
"code": "DEVICES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Firmware has no schema):
{
"message": "Cannot create: firmware has no schema",
"code": "DEVICES:CREATE:NO_FIRMWARE_SCHEMA"
}
Example response (500, Server error):
{
"message": "Server error: device not created",
"code": "DEVICES:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Update device
requires authentication
Amputee of device can update only these fields:
serial, bluetooth_id, firmware_version_id, pcb_version_id
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"serial\": \"S3R1AL-NUM83R\",
\"bluetooth_id\": \"BL0123456789\",
\"model_id\": 1,
\"amputee_id\": 1,
\"clinicians\": [
2
],
\"firmware_version_id\": 1,
\"pcb_version_id\": 1,
\"reverse_magnets\": false,
\"is_electrode\": false,
\"active\": true,
\"last_activity_at\": \"2022-08-15 12:00:00\"
}"
const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"serial": "S3R1AL-NUM83R",
"bluetooth_id": "BL0123456789",
"model_id": 1,
"amputee_id": 1,
"clinicians": [
2
],
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": false,
"is_electrode": false,
"active": true,
"last_activity_at": "2022-08-15 12:00:00"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 9,
"serial": "9e54a23c-193f-33de-ac5c-e77dee6717a4",
"bluetooth_id": "81e0b98d-6179-3e9f-b52d-90b49f0959b3",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device",
"code": "DEVICES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Firmware has no schema):
{
"message": "Cannot update: firmware has no schema",
"code": "DEVICES:UPDATE:NO_FIRMWARE_SCHEMA"
}
Example response (403):
{
"message": "Cannot update: no clinicians left for patient relation",
"code": "DEVICES:UPDATE:NO_CLINICIANS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:UPDATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Delete device
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Device deleted",
"code": "DEVICES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete device",
"code": "DEVICES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DELETE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get device hashes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/hash" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/hash"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access device hashes",
"code": "DEVICES:GET_HASHES:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:GET_HASHES:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update device hashes
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/hash" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"hash_global\": \"123456789012345\",
\"hash_common_settings\": \"123456789012345\",
\"hash_common_grips\": \"123456789012345\",
\"hash_mode1\": \"123456789012345\",
\"hash_mode2\": \"123456789012345\",
\"hash_mode3\": \"123456789012345\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/hash"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access device hashes",
"code": "DEVICES:SET_HASHES:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:SET_HASHES:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Detach device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/detach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/detach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Device detached",
"code": "DEVICES:DETACH:DETACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to detach device",
"code": "DEVICES:DETACH:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DETACH:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Add device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/add/S3R1AL-NUM83R" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/add/S3R1AL-NUM83R"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 10,
"serial": "c9d736cd-e2ea-3f95-ab94-677b526c95de",
"bluetooth_id": "153481ba-03c2-3edf-bc01-afdf5f1822f8",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to assign devices with code",
"code": "DEVICES:ASSIGN:INSUFFICIENT_PERMISSION"
}
Example response (403, User reached the temporary limit of attached devices):
{
"message": "Reached the limit of assigned devices",
"code": "DEVICES:ASSIGN:LIMIT_REACHED"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:ASSIGN:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Connect device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/connect/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/connect/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Device connected",
"code": "DEVICES:CONNECT:CONNECTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:CONNECT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:CONNECT:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Disconnect device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/disconnect/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/disconnect/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Device disconnected",
"code": "DEVICES:DISCONNECT:DISCONNECTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:DISCONNECT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DISCONNECT:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Join devices
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/join/1/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"force\": false,
\"patient\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/join/1/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"force": false,
"patient": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 11,
"serial": "01447209-941f-358d-9af8-09cbd9c7093b",
"bluetooth_id": "44ae582d-e772-3af3-a742-e9e4b4b07422",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z",
"joined_devices": [
{
"id": 12,
"serial": "0bba1e1f-cced-3bcb-a111-9e0b3d9d113d",
"bluetooth_id": "9172e075-314b-3001-b755-f7730efa16c7",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z",
"pivot": {
"electrode_id": 11,
"device_id": 12,
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z"
}
}
],
"joined_electrodes": [
{
"id": 13,
"serial": "0621998f-8d4f-3a60-b23b-7e7e41155952",
"bluetooth_id": "35a09e0f-e25e-38a6-861f-335c16fbfde4",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z",
"pivot": {
"device_id": 11,
"electrode_id": 13,
"created_at": "2026-03-20T16:18:46.000000Z",
"updated_at": "2026-03-20T16:18:46.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to join devices",
"code": "DEVICES:JOIN:INSUFFICIENT_PERMISSION"
}
Example response (403, Device already has an electrode joined):
{
"message": "Device already has an electrode joined",
"code": "DEVICES:JOIN:ALREADY_JOINED"
}
Example response (403, Server error):
{
"message": "Server error",
"code": "DEVICES:JOIN:SERVER_ERROR"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:JOIN:DEVICE_NOT_FOUND"
}
Example response (404, Device 1 cannot be an electrode):
{
"message": "Device 1 cannot be an electrode",
"code": "DEVICES:JOIN:INCORRECT_DEVICE1_TYPE"
}
Example response (404, Device 2 must be an electrode):
{
"message": "Device 1 must be an electrode",
"code": "DEVICES:JOIN:INCORRECT_DEVICE2_TYPE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
Detach joined devices
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/unjoin/1/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/unjoin/1/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Devices unjoined",
"code": "DEVICES:UNJOIN:UNJOINED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to join devices",
"code": "DEVICES:UNJOIN:INSUFFICIENT_PERMISSION"
}
Example response (403, OK):
{
"message": "Devices are not joined",
"code": "DEVICES:UNJOIN:NOT_JOINED"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:UNJOIN:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create demo patient
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/dummy-patient" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/dummy-patient"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201, OK):
{
"email": "SERIAL@gmail.com",
"password": "Demo@123"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create dummy patient",
"code": "DEVICES:DUMMY_PATIENT:INSUFFICIENT_PERMISSION"
}
Example response (403, Device already has a patient):
{
"message": "Device already has a patient",
"code": "DEVICES:DUMMY_PATIENT:PATIENT_EXISTS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DUMMY_PATIENT:DEVICE_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: dummy patient not created",
"code": "DEVICES:DUMMY_PATIENT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Documents
API endpoints for documents management
List documents
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents?type=web" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents"
);
const params = {
"type": "web",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Engineering Teacher",
"type": "web",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
},
{
"id": 2,
"name": "Heating and Air Conditioning Mechanic",
"type": "mobile",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Document ID.
name
string
Document name.
type
string
Document target platform.
Must be one of:webmobile
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
versions
object[]
Document versions.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create document
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Privacy Policy\",
\"type\": \"web\"
}"
const url = new URL(
"http://localhost:8000/api/documents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Privacy Policy",
"type": "web"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "Electrical Engineering Technician",
"type": "mobile",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Document ID.
name
string
Document name.
type
string
Document target platform.
Must be one of:webmobile
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
versions
object[]
Document versions.
Delete document
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/documents/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Document deleted",
"code": "DOCUMENTS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Document has existing versions):
{
"message": "Cannot delete: document has existing versions (1)",
"code": "DOCUMENTS:DELETE:HAS_VERSIONS"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:DELETE:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List document versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents/1/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"document_id": null,
"index": 95651,
"file": "http://lang.info/et-sint-recusandae-distinctio.html",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
},
{
"id": 2,
"document_id": null,
"index": 218172,
"file": "http://www.goodwin.com/id-qui-animi-sed-ut",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:LIST_VERSIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:LIST_VERSIONS:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Document version ID.
document_id
integer
Associated document ID.
index
integer
Version index number.
file
string
File path or URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
document
object
Parent document.
Create document version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents/1/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"file\": \"https:\\/\\/www.aetherbiomedical.com\\/privacy-policy\"
}"
const url = new URL(
"http://localhost:8000/api/documents/1/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"file": "https:\/\/www.aetherbiomedical.com\/privacy-policy"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"document_id": null,
"index": 35,
"file": "http://www.johns.info/maxime-porro-rerum-est-minus-quam-quia-amet-error",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:CREATE_VERSION:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:CREATE_VERSION:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Document version ID.
document_id
integer
Associated document ID.
index
integer
Version index number.
file
string
File path or URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
document
object
Parent document.
Delete document version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/documents/1/versions/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1/versions/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Document version deleted",
"code": "DOCUMENTS:DELETE_VERSION:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:DELETE_VERSION:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:DELETE_VERSION:DOCUMENT_NOT_FOUND"
}
Example response (404, Document version not found):
{
"message": "Document version not found",
"code": "DOCUMENTS:DELETE_VERSION:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get documents status
requires authentication
Any document on the list has to be accepted. Use POST /documents/accept endpoint to mark them as accepted once user agrees to that.
Empty list means that user is up-to-date with all required documents and nothing has to be accepted.
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents/status?type=web" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/status"
);
const params = {
"type": "web",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"documents": [],
"texts": {
"title": "Changes to the Privacy Policy",
"description": "Due to the addition of a new data processing entity, please familiarize yourself with and accept the new privacy policy",
"checkbox": "I declare that I have read the content of the Privacy Policy and the Terms and Conditions and accept their provisions. I understand that acceptance is a condition for using the application."
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view documents status",
"code": "DOCUMENTS:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Accept documents
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents/accept" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"documents\": [
1
]
}"
const url = new URL(
"http://localhost:8000/api/documents/accept"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"documents": [
1
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Accepted 1 document(s)",
"code": "DOCUMENTS:ACCEPT:ACCEPTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update documents status",
"code": "DOCUMENTS:ACCEPT:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Feature announcements
Endpoints related to feature announcements
List feature announcements
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feature-announcements" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feature-announcements"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Maroon",
"notification_title": "sed-voluptatem-numquam.title",
"notification_body": "sed-voluptatem-numquam.body",
"created_at": "2026-03-20T16:22:52.000000Z",
"updated_at": "2026-03-20T16:22:52.000000Z"
},
{
"id": 2,
"name": "HoneyDew",
"notification_title": "molestiae-assumenda-quidem.title",
"notification_body": "molestiae-assumenda-quidem.body",
"created_at": "2026-03-20T16:22:52.000000Z",
"updated_at": "2026-03-20T16:22:52.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create feature announcement
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feature-announcements" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Notification about 1.15 release\",
\"notification_title\": \"release_1.15.title\",
\"notification_body\": \"release_1.15.body\"
}"
const url = new URL(
"http://localhost:8000/api/feature-announcements"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Notification about 1.15 release",
"notification_title": "release_1.15.title",
"notification_body": "release_1.15.body"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "DodgerBlue",
"notification_title": "harum-laboriosam-modi.title",
"notification_body": "harum-laboriosam-modi.body",
"created_at": "2026-03-20T16:22:53.000000Z",
"updated_at": "2026-03-20T16:22:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update feature announcement
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/feature-announcements/14" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Notification about 1.15 release\",
\"notification_title\": \"release_1.15.title\",
\"notification_body\": \"release_1.15.body\"
}"
const url = new URL(
"http://localhost:8000/api/feature-announcements/14"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Notification about 1.15 release",
"notification_title": "release_1.15.title",
"notification_body": "release_1.15.body"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"name": "NavajoWhite",
"notification_title": "voluptatem-officia.title",
"notification_body": "voluptatem-officia.body",
"created_at": "2026-03-20T16:22:53.000000Z",
"updated_at": "2026-03-20T16:22:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Feature announcement not found):
{
"message": "Feature announcement not found",
"code": "FEATURE_ANNOUNCEMENTS:UPDATE:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete feature announcement
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/feature-announcements/13" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feature-announcements/13"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Feature announcement deleted",
"code": "FEATURE_ANNOUNCEMENTS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Feature announcement not found):
{
"message": "Feature announcement not found",
"code": "FEATURE_ANNOUNCEMENTS:DELETE:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send feature announcement
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feature-announcements/14/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feature-announcements/14/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Feature announcement sent",
"code": "FEATURE_ANNOUNCEMENTS:SEND:SENT"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feature announcements",
"code": "FEATURE_ANNOUNCEMENTS:SEND:INSUFFICIENT_PERMISSION"
}
Example response (404, Feature announcement not found):
{
"message": "Feature announcement not found",
"code": "FEATURE_ANNOUNCEMENTS:SEND:NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Feedback
Endpoints related to feedback collecting
Check feedback token
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA/check" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA/check"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"valid": true
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send feedback with token
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"rate\": 5,
\"description\": \"That was amazing!\",
\"skipped\": false,
\"training_day_id\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"rate": 5,
"description": "That was amazing!",
"skipped": false,
"training_day_id": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 6,
"type": "periodic",
"trigger": "clinician_invite",
"platform": "mobile",
"rate": 3,
"description": "Dolorem cupiditate facere ullam eligendi.",
"skipped": 0,
"training_day_id": null,
"created_at": "2026-03-20T16:18:18.000000Z",
"updated_at": "2026-03-20T16:18:18.000000Z"
}
Example response (403, Invalid token):
{
"message": "Invalid token",
"code": "FEEDBACK:SEND_WITH_TOKEN:INVALID_TOKEN"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Feedback ID.
user_id
integer
User who submitted the feedback.
type
string
Feedback type.
trigger
string
What triggered the feedback.
platform
string
Platform the feedback was submitted from.
rate
integer
Feedback rating.
description
string
Feedback description.
skipped
boolean
Whether the feedback was skipped.
training_day_id
integer
Associated training day ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get feedback status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": true,
"firmware_update": true,
"local_session": true,
"async_session": true,
"patient_create": false,
"clinician_invite": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to check feedback status",
"code": "FEEDBACK:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send feedback
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feedback" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"contextual\",
\"trigger\": \"remote_session\",
\"platform\": \"web\",
\"rate\": 5,
\"description\": \"That was amazing!\",
\"skipped\": false,
\"training_day_id\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "contextual",
"trigger": "remote_session",
"platform": "web",
"rate": 5,
"description": "That was amazing!",
"skipped": false,
"training_day_id": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 2,
"user_id": 306,
"type": "on_demand",
"trigger": "clinician_invite",
"platform": "mobile",
"rate": 1,
"description": "Quasi doloribus iusto quod earum qui repellat eligendi inventore.",
"skipped": 0,
"training_day_id": null,
"created_at": "2026-03-20T16:22:37.000000Z",
"updated_at": "2026-03-20T16:22:37.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to send feedback",
"code": "FEEDBACK:SEND:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Feedback ID.
user_id
integer
User who submitted the feedback.
type
string
Feedback type.
trigger
string
What triggered the feedback.
platform
string
Platform the feedback was submitted from.
rate
integer
Feedback rating.
description
string
Feedback description.
skipped
boolean
Whether the feedback was skipped.
training_day_id
integer
Associated training day ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
List feedback
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 25,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"user_id": 307,
"type": "on_demand",
"trigger": "firmware_update",
"platform": "mobile",
"rate": 3,
"description": "Quo consequatur iure accusantium aut a quo.",
"skipped": 1,
"training_day_id": null,
"created_at": "2026-03-20T16:22:38.000000Z",
"updated_at": "2026-03-20T16:22:38.000000Z"
},
{
"id": 4,
"user_id": 308,
"type": "contextual",
"trigger": "local_session",
"platform": "web",
"rate": 5,
"description": "Facere eum non consequatur et dicta pariatur ut ipsam.",
"skipped": 0,
"training_day_id": null,
"created_at": "2026-03-20T16:22:39.000000Z",
"updated_at": "2026-03-20T16:22:39.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list feedback",
"code": "FEEDBACK:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Feedback ID.
user_id
integer
User who submitted the feedback.
type
string
Feedback type.
trigger
string
What triggered the feedback.
platform
string
Platform the feedback was submitted from.
rate
integer
Feedback rating.
description
string
Feedback description.
skipped
boolean
Whether the feedback was skipped.
training_day_id
integer
Associated training day ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Export feedback to CSV
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/csv" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/csv"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, CSV file):
{
"file": "https://staging-us-east-2-aether-biomedical-s3-us-bucket.s3.us-east-2.amazonaws.com/feedback/feedback-1759228216.csv",
"expires": "2025-09-30 10:40:00"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to export feedback",
"code": "FEEDBACK:EXPORT_CSV:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get feedback cooldowns
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/cooldowns" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/cooldowns"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:GET_COOLDOWNS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update feedback cooldowns
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/feedback/cooldowns" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"remote_session\": 1,
\"local_session\": 1,
\"async_session\": 1,
\"patient_create\": 1,
\"clinician_invite\": 1,
\"firmware_update\": 1,
\"new_config\": 1,
\"grip_change\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback/cooldowns"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:UPDATE_COOLDOWNS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Feedback statistics
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/statistics" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/statistics"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"submitted": 100,
"skipped": 150,
"total": 250,
"average_rating": 4.76
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view feedback statistics",
"code": "FEEDBACK:STATISTICS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.GeoData
API endpoints for geodata
Get supported timezones list
Example request:
curl --request GET \
--get "http://localhost:8000/api/timezones" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/timezones"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
"Africa/Abidjan",
"Africa/Accra",
"Africa/Addis_Ababa",
"Africa/Algiers",
"Africa/Asmara",
"Africa/Bamako",
"Africa/Bangui",
"Africa/Banjul",
"Africa/Bissau",
"Africa/Blantyre",
"Africa/Brazzaville",
"Africa/Bujumbura",
"Africa/Cairo",
"Africa/Casablanca",
"Africa/Ceuta",
"Africa/Conakry",
"Africa/Dakar",
"Africa/Dar_es_Salaam",
"Africa/Djibouti",
"Africa/Douala",
"Africa/El_Aaiun",
"Africa/Freetown",
"Africa/Gaborone",
"Africa/Harare",
"Africa/Johannesburg",
"Africa/Juba",
"Africa/Kampala",
"Africa/Khartoum",
"Africa/Kigali",
"Africa/Kinshasa",
"Africa/Lagos",
"Africa/Libreville",
"Africa/Lome",
"Africa/Luanda",
"Africa/Lubumbashi",
"Africa/Lusaka",
"Africa/Malabo",
"Africa/Maputo",
"Africa/Maseru",
"Africa/Mbabane",
"Africa/Mogadishu",
"Africa/Monrovia",
"Africa/Nairobi",
"Africa/Ndjamena",
"Africa/Niamey",
"Africa/Nouakchott",
"Africa/Ouagadougou",
"Africa/Porto-Novo",
"Africa/Sao_Tome",
"Africa/Tripoli",
"Africa/Tunis",
"Africa/Windhoek",
"America/Adak",
"America/Anchorage",
"America/Anguilla",
"America/Antigua",
"America/Araguaina",
"America/Argentina/Buenos_Aires",
"America/Argentina/Catamarca",
"America/Argentina/Cordoba",
"America/Argentina/Jujuy",
"America/Argentina/La_Rioja",
"America/Argentina/Mendoza",
"America/Argentina/Rio_Gallegos",
"America/Argentina/Salta",
"America/Argentina/San_Juan",
"America/Argentina/San_Luis",
"America/Argentina/Tucuman",
"America/Argentina/Ushuaia",
"America/Aruba",
"America/Asuncion",
"America/Atikokan",
"America/Bahia",
"America/Bahia_Banderas",
"America/Barbados",
"America/Belem",
"America/Belize",
"America/Blanc-Sablon",
"America/Boa_Vista",
"America/Bogota",
"America/Boise",
"America/Cambridge_Bay",
"America/Campo_Grande",
"America/Cancun",
"America/Caracas",
"America/Cayenne",
"America/Cayman",
"America/Chicago",
"America/Chihuahua",
"America/Costa_Rica",
"America/Creston",
"America/Cuiaba",
"America/Curacao",
"America/Danmarkshavn",
"America/Dawson",
"America/Dawson_Creek",
"America/Denver",
"America/Detroit",
"America/Dominica",
"America/Edmonton",
"America/Eirunepe",
"America/El_Salvador",
"America/Fort_Nelson",
"America/Fortaleza",
"America/Glace_Bay",
"America/Goose_Bay",
"America/Grand_Turk",
"America/Grenada",
"America/Guadeloupe",
"America/Guatemala",
"America/Guayaquil",
"America/Guyana",
"America/Halifax",
"America/Havana",
"America/Hermosillo",
"America/Indiana/Indianapolis",
"America/Indiana/Knox",
"America/Indiana/Marengo",
"America/Indiana/Petersburg",
"America/Indiana/Tell_City",
"America/Indiana/Vevay",
"America/Indiana/Vincennes",
"America/Indiana/Winamac",
"America/Inuvik",
"America/Iqaluit",
"America/Jamaica",
"America/Juneau",
"America/Kentucky/Louisville",
"America/Kentucky/Monticello",
"America/Kralendijk",
"America/La_Paz",
"America/Lima",
"America/Los_Angeles",
"America/Lower_Princes",
"America/Maceio",
"America/Managua",
"America/Manaus",
"America/Marigot",
"America/Martinique",
"America/Matamoros",
"America/Mazatlan",
"America/Menominee",
"America/Merida",
"America/Metlakatla",
"America/Mexico_City",
"America/Miquelon",
"America/Moncton",
"America/Monterrey",
"America/Montevideo",
"America/Montserrat",
"America/Nassau",
"America/New_York",
"America/Nipigon",
"America/Nome",
"America/Noronha",
"America/North_Dakota/Beulah",
"America/North_Dakota/Center",
"America/North_Dakota/New_Salem",
"America/Nuuk",
"America/Ojinaga",
"America/Panama",
"America/Pangnirtung",
"America/Paramaribo",
"America/Phoenix",
"America/Port-au-Prince",
"America/Port_of_Spain",
"America/Porto_Velho",
"America/Puerto_Rico",
"America/Punta_Arenas",
"America/Rainy_River",
"America/Rankin_Inlet",
"America/Recife",
"America/Regina",
"America/Resolute",
"America/Rio_Branco",
"America/Santarem",
"America/Santiago",
"America/Santo_Domingo",
"America/Sao_Paulo",
"America/Scoresbysund",
"America/Sitka",
"America/St_Barthelemy",
"America/St_Johns",
"America/St_Kitts",
"America/St_Lucia",
"America/St_Thomas",
"America/St_Vincent",
"America/Swift_Current",
"America/Tegucigalpa",
"America/Thule",
"America/Thunder_Bay",
"America/Tijuana",
"America/Toronto",
"America/Tortola",
"America/Vancouver",
"America/Whitehorse",
"America/Winnipeg",
"America/Yakutat",
"America/Yellowknife",
"Antarctica/Casey",
"Antarctica/Davis",
"Antarctica/DumontDUrville",
"Antarctica/Macquarie",
"Antarctica/Mawson",
"Antarctica/McMurdo",
"Antarctica/Palmer",
"Antarctica/Rothera",
"Antarctica/Syowa",
"Antarctica/Troll",
"Antarctica/Vostok",
"Arctic/Longyearbyen",
"Asia/Aden",
"Asia/Almaty",
"Asia/Amman",
"Asia/Anadyr",
"Asia/Aqtau",
"Asia/Aqtobe",
"Asia/Ashgabat",
"Asia/Atyrau",
"Asia/Baghdad",
"Asia/Bahrain",
"Asia/Baku",
"Asia/Bangkok",
"Asia/Barnaul",
"Asia/Beirut",
"Asia/Bishkek",
"Asia/Brunei",
"Asia/Chita",
"Asia/Choibalsan",
"Asia/Colombo",
"Asia/Damascus",
"Asia/Dhaka",
"Asia/Dili",
"Asia/Dubai",
"Asia/Dushanbe",
"Asia/Famagusta",
"Asia/Gaza",
"Asia/Hebron",
"Asia/Ho_Chi_Minh",
"Asia/Hong_Kong",
"Asia/Hovd",
"Asia/Irkutsk",
"Asia/Jakarta",
"Asia/Jayapura",
"Asia/Jerusalem",
"Asia/Kabul",
"Asia/Kamchatka",
"Asia/Karachi",
"Asia/Kathmandu",
"Asia/Khandyga",
"Asia/Kolkata",
"Asia/Krasnoyarsk",
"Asia/Kuala_Lumpur",
"Asia/Kuching",
"Asia/Kuwait",
"Asia/Macau",
"Asia/Magadan",
"Asia/Makassar",
"Asia/Manila",
"Asia/Muscat",
"Asia/Nicosia",
"Asia/Novokuznetsk",
"Asia/Novosibirsk",
"Asia/Omsk",
"Asia/Oral",
"Asia/Phnom_Penh",
"Asia/Pontianak",
"Asia/Pyongyang",
"Asia/Qatar",
"Asia/Qostanay",
"Asia/Qyzylorda",
"Asia/Riyadh",
"Asia/Sakhalin",
"Asia/Samarkand",
"Asia/Seoul",
"Asia/Shanghai",
"Asia/Singapore",
"Asia/Srednekolymsk",
"Asia/Taipei",
"Asia/Tashkent",
"Asia/Tbilisi",
"Asia/Tehran",
"Asia/Thimphu",
"Asia/Tokyo",
"Asia/Tomsk",
"Asia/Ulaanbaatar",
"Asia/Urumqi",
"Asia/Ust-Nera",
"Asia/Vientiane",
"Asia/Vladivostok",
"Asia/Yakutsk",
"Asia/Yangon",
"Asia/Yekaterinburg",
"Asia/Yerevan",
"Atlantic/Azores",
"Atlantic/Bermuda",
"Atlantic/Canary",
"Atlantic/Cape_Verde",
"Atlantic/Faroe",
"Atlantic/Madeira",
"Atlantic/Reykjavik",
"Atlantic/South_Georgia",
"Atlantic/St_Helena",
"Atlantic/Stanley",
"Australia/Adelaide",
"Australia/Brisbane",
"Australia/Broken_Hill",
"Australia/Darwin",
"Australia/Eucla",
"Australia/Hobart",
"Australia/Lindeman",
"Australia/Lord_Howe",
"Australia/Melbourne",
"Australia/Perth",
"Australia/Sydney",
"Europe/Amsterdam",
"Europe/Andorra",
"Europe/Astrakhan",
"Europe/Athens",
"Europe/Belgrade",
"Europe/Berlin",
"Europe/Bratislava",
"Europe/Brussels",
"Europe/Bucharest",
"Europe/Budapest",
"Europe/Busingen",
"Europe/Chisinau",
"Europe/Copenhagen",
"Europe/Dublin",
"Europe/Gibraltar",
"Europe/Guernsey",
"Europe/Helsinki",
"Europe/Isle_of_Man",
"Europe/Istanbul",
"Europe/Jersey",
"Europe/Kaliningrad",
"Europe/Kiev",
"Europe/Kirov",
"Europe/Lisbon",
"Europe/Ljubljana",
"Europe/London",
"Europe/Luxembourg",
"Europe/Madrid",
"Europe/Malta",
"Europe/Mariehamn",
"Europe/Minsk",
"Europe/Monaco",
"Europe/Moscow",
"Europe/Oslo",
"Europe/Paris",
"Europe/Podgorica",
"Europe/Prague",
"Europe/Riga",
"Europe/Rome",
"Europe/Samara",
"Europe/San_Marino",
"Europe/Sarajevo",
"Europe/Saratov",
"Europe/Simferopol",
"Europe/Skopje",
"Europe/Sofia",
"Europe/Stockholm",
"Europe/Tallinn",
"Europe/Tirane",
"Europe/Ulyanovsk",
"Europe/Uzhgorod",
"Europe/Vaduz",
"Europe/Vatican",
"Europe/Vienna",
"Europe/Vilnius",
"Europe/Volgograd",
"Europe/Warsaw",
"Europe/Zagreb",
"Europe/Zaporozhye",
"Europe/Zurich",
"Indian/Antananarivo",
"Indian/Chagos",
"Indian/Christmas",
"Indian/Cocos",
"Indian/Comoro",
"Indian/Kerguelen",
"Indian/Mahe",
"Indian/Maldives",
"Indian/Mauritius",
"Indian/Mayotte",
"Indian/Reunion",
"Pacific/Apia",
"Pacific/Auckland",
"Pacific/Bougainville",
"Pacific/Chatham",
"Pacific/Chuuk",
"Pacific/Easter",
"Pacific/Efate",
"Pacific/Fakaofo",
"Pacific/Fiji",
"Pacific/Funafuti",
"Pacific/Galapagos",
"Pacific/Gambier",
"Pacific/Guadalcanal",
"Pacific/Guam",
"Pacific/Honolulu",
"Pacific/Kanton",
"Pacific/Kiritimati",
"Pacific/Kosrae",
"Pacific/Kwajalein",
"Pacific/Majuro",
"Pacific/Marquesas",
"Pacific/Midway",
"Pacific/Nauru",
"Pacific/Niue",
"Pacific/Norfolk",
"Pacific/Noumea",
"Pacific/Pago_Pago",
"Pacific/Palau",
"Pacific/Pitcairn",
"Pacific/Pohnpei",
"Pacific/Port_Moresby",
"Pacific/Rarotonga",
"Pacific/Saipan",
"Pacific/Tahiti",
"Pacific/Tarawa",
"Pacific/Tongatapu",
"Pacific/Wake",
"Pacific/Wallis",
"UTC"
]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Goals
API endpoints for goals
The goals module consists of:
- exercises - predefined actions which should be performed by patient. Exercises can be managed only by SuperAdmin,
- goals - objectives defined for each patient which could consists of exercises, grips and grip switches,
- goal conditions - parts of the goal, single condition of type exercise, grips goal or switches goal.
List grips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/grips?model=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/grips"
);
const params = {
"model": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"number": 9994,
"name": "molestias grip",
"description": null,
"opposed": 0,
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
},
{
"id": 2,
"number": 1475,
"name": "et grip",
"description": null,
"opposed": 0,
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view grips",
"code": "GOALS:LIST_GRIPS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Grip ID.
number
integer
Grip number identifier.
name
string
Grip name.
description
string
Grip description.
opposed
boolean
Whether the grip is opposed.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
List exercises
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/exercises" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/exercises"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "exercises.Torphy Crossing",
"description": "exercises.Sed modi consequuntur ipsa soluta temporibus ut.",
"icon": "😢",
"created_at": "2026-03-20T16:21:55.000000Z",
"updated_at": "2026-03-20T16:21:55.000000Z"
},
{
"id": 2,
"name": "exercises.Abbigail Rest",
"description": "exercises.Facere ipsa totam voluptas ratione fuga.",
"icon": "😅",
"created_at": "2026-03-20T16:21:55.000000Z",
"updated_at": "2026-03-20T16:21:55.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view exercises",
"code": "GOALS:LIST_EXERCISES:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Exercise ID.
name
string
Exercise name.
description
string
Exercise description.
icon
string
Exercise icon identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create exercise
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/exercises" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Water plants\",
\"description\": \"Use Tripod Close Grip and water your plants\",
\"icon\": \"🪴\"
}"
const url = new URL(
"http://localhost:8000/api/exercises"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Water plants",
"description": "Use Tripod Close Grip and water your plants",
"icon": "🪴"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "exercises.Kris Freeway",
"description": "exercises.Explicabo sunt minus iusto minus.",
"icon": "😶",
"created_at": "2026-03-20T16:21:55.000000Z",
"updated_at": "2026-03-20T16:21:55.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:CREATE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Exercise ID.
name
string
Exercise name.
description
string
Exercise description.
icon
string
Exercise icon identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update exercise
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/exercises/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Water plants\",
\"description\": \"Use Tripod Close Grip and water your plants\",
\"icon\": \"🪴\"
}"
const url = new URL(
"http://localhost:8000/api/exercises/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Water plants",
"description": "Use Tripod Close Grip and water your plants",
"icon": "🪴"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"name": "exercises.Hayes Inlet",
"description": "exercises.Vero voluptas laborum sit non omnis vel.",
"icon": "😯",
"created_at": "2026-03-20T16:21:55.000000Z",
"updated_at": "2026-03-20T16:21:55.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:UPDATE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Example response (404, Exercise not found):
{
"message": "Exercise not found",
"code": "GOALS:UPDATE_EXERCISE:EXERCISE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Exercise ID.
name
string
Exercise name.
description
string
Exercise description.
icon
string
Exercise icon identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete exercise
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/exercises/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/exercises/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Exercise deleted",
"code": "GOALS:DELETE_EXERCISE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:DELETE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Example response (403, Exercise is used in goals):
{
"message": "Cannot delete: exercise is used in goals (1)",
"code": "GOALS:DELETE_EXERCISE:HAS_GOALS"
}
Example response (404, Exercise not found):
{
"message": "Exercise not found",
"code": "GOALS:DELETE_EXERCISE:EXERCISE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List user goals
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/goals?active=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals"
);
const params = {
"active": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"amputee_id": 258,
"clinician_id": 259,
"start_date": "1988-01-11",
"end_date": "1985-02-05",
"active": 0,
"created_at": "2026-03-20T16:21:56.000000Z",
"updated_at": "2026-03-20T16:21:56.000000Z"
},
{
"id": 2,
"amputee_id": 260,
"clinician_id": 261,
"start_date": "2016-05-25",
"end_date": "1984-03-22",
"active": 0,
"created_at": "2026-03-20T16:21:58.000000Z",
"updated_at": "2026-03-20T16:21:58.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user goals",
"code": "GOALS:LIST_GOALS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:LIST_GOALS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Goal ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
start_date
string
Goal start date.
end_date
string
Goal end date.
active
boolean
Whether the goal is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create user goal
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/goals" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"start_date\": \"2023-05-12\",
\"end_date\": \"2023-05-15\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"start_date": "2023-05-12",
"end_date": "2023-05-15",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"amputee_id": 262,
"clinician_id": 263,
"start_date": "2021-03-25",
"end_date": "1975-04-11",
"active": 0,
"created_at": "2026-03-20T16:22:00.000000Z",
"updated_at": "2026-03-20T16:22:00.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:CREATE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:CREATE_GOAL:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Goal ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
start_date
string
Goal start date.
end_date
string
Goal end date.
active
boolean
Whether the goal is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update user goal
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1/goals/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"start_date\": \"2023-05-12\",
\"end_date\": \"2023-05-15\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"start_date": "2023-05-12",
"end_date": "2023-05-15",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"amputee_id": 264,
"clinician_id": 265,
"start_date": "1982-04-01",
"end_date": "1991-06-17",
"active": 1,
"created_at": "2026-03-20T16:22:01.000000Z",
"updated_at": "2026-03-20T16:22:01.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:UPDATE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot activate ongoing goal):
{
"message": "Cannot activate ongoing goal",
"code": "GOALS:UPDATE_GOAL:GOAL_IS_ONGOING"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:UPDATE_GOAL:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:UPDATE_GOAL:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Goal ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
start_date
string
Goal start date.
end_date
string
Goal end date.
active
boolean
Whether the goal is active.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete user goal
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/goals/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Goal deleted",
"code": "GOALS:DELETE_GOAL:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:DELETE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot delete ongoing goal):
{
"message": "Cannot delete active ongoing goal",
"code": "GOALS:DELETE_GOAL:GOAL_IS_ONGOING"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:DELETE_GOAL:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:DELETE_GOAL:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List user goal conditions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/goals/1/conditions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"goal_id": 5,
"type": "switch",
"grip_id": 3,
"grips_frequency": "d",
"grips_count": 827,
"switches_frequency": "d",
"switches_count": 950,
"exercise_id": 5,
"exercise_frequency": "d",
"exercise_count": 10,
"created_at": "2026-03-20T16:22:03.000000Z",
"updated_at": "2026-03-20T16:22:03.000000Z"
},
{
"id": 2,
"goal_id": 6,
"type": "exercise",
"grip_id": 4,
"grips_frequency": "a",
"grips_count": 82,
"switches_frequency": "a",
"switches_count": 29,
"exercise_id": 6,
"exercise_frequency": "d",
"exercise_count": 4,
"created_at": "2026-03-20T16:22:05.000000Z",
"updated_at": "2026-03-20T16:22:05.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user goals",
"code": "GOALS:LIST_CONDITIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:LIST_CONDITIONS:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:LIST_CONDITIONS:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Goal condition ID.
goal_id
integer
Associated goal ID.
type
string
Condition type.
Must be one of:gripswitchexercise
grip_id
integer
Target grip ID.
grips_frequency
string
Grip frequency period.
Must be one of:dwma
grips_count
integer
Required grip count.
switches_frequency
string
Switch frequency period.
Must be one of:dwma
switches_count
integer
Required switch count.
exercise_id
integer
Target exercise ID.
exercise_frequency
string
Exercise frequency period.
Must be one of:dwm
exercise_count
integer
Required exercise count.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create user goal condition
requires authentication
Each goal condition could be one of type: grip, switch or exercise.
If goal condition is type of grip, fill only grip_id (optional), grips_frequency and grips_count.
If grip_id is null or missing, patient can perform any grip to fulfill objective.
If goal condition is type of switch, fill only switches_frequency and switches_count.
If goal condition is type of exercise, fill only exercise_id, exercise_frequency and exercise_count.
Restrictions:
- you can add one grip-any condition (
grip_id=null, any grip is counted) and many grip-specific conditions (for example: grip 1 - 100 times and grip 2 - 50 times), - all grips conditions must have same frequency (
grips_frequencyfield), - sum of grip-specific conditions (
grips_countfield) cannot be greater than grip-any condition for same goal - you can add only one switch condition for same goal,
- you can add multiple exercise conditions, but each exercise can be used only once.
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/goals/1/conditions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"grip\",
\"grip_id\": 1,
\"grips_frequency\": \"d\",
\"grips_count\": 100,
\"switches_frequency\": \"d\",
\"switches_count\": 100,
\"exercise_id\": 1,
\"exercise_frequency\": \"d\",
\"exercise_count\": 5
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "grip",
"grip_id": 1,
"grips_frequency": "d",
"grips_count": 100,
"switches_frequency": "d",
"switches_count": 100,
"exercise_id": 1,
"exercise_frequency": "d",
"exercise_count": 5
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"goal_id": 7,
"type": "grip",
"grip_id": 5,
"grips_frequency": "d",
"grips_count": 963,
"switches_frequency": "d",
"switches_count": 664,
"exercise_id": 7,
"exercise_frequency": "w",
"exercise_count": 6,
"created_at": "2026-03-20T16:22:07.000000Z",
"updated_at": "2026-03-20T16:22:07.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:CREATE_CONDITION:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot create condition: all grip conditions have to be same frequency):
{
"message": "Cannot create condition: all grip conditions have to be same frequency",
"code": "GOALS:CREATE_CONDITION:INVALID_FREQUENCY"
}
Example response (403, Cannot create condition: grip-any condition for this goal already exist):
{
"message": "Cannot create condition: grip-any condition for this goal already exist",
"code": "GOALS:CREATE_CONDITION:GRIP_ANY_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: condition with this grip already exist):
{
"message": "Cannot create condition: condition with this grip already exist",
"code": "GOALS:CREATE_CONDITION:GRIP_CONDITION_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: grip-any value cannot be lower than sum of grip-specific conditions):
{
"message": "Cannot create condition: grip-any value cannot be lower than sum of grip-specific conditions",
"code": "GOALS:CREATE_CONDITION:GRIP_ANY_LOWER_THAN_GRIPS_SUM"
}
Example response (403, Cannot create condition: sum of grip-specific conditions cannot be greater than value of grip-any condition):
{
"message": "Cannot create condition: sum of grip-specific conditions cannot be greater than value of grip-any condition",
"code": "GOALS:CREATE_CONDITION:GRIPS_SUM_GREATER_THAN_GRIP_ANY"
}
Example response (403, Cannot create condition: switch condition for this goal already exist):
{
"message": "Cannot create condition: switch condition for this goal already exist",
"code": "GOALS:CREATE_CONDITION:SWITCH_CONDITION_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: condition with this exercise already exist):
{
"message": "Cannot create condition: condition with this exercise already exist",
"code": "GOALS:CREATE_CONDITION:EXERCISE_CONDITION_ALREADY_EXISTS"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:CREATE_CONDITION:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:CREATE_CONDITION:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Goal condition ID.
goal_id
integer
Associated goal ID.
type
string
Condition type.
Must be one of:gripswitchexercise
grip_id
integer
Target grip ID.
grips_frequency
string
Grip frequency period.
Must be one of:dwma
grips_count
integer
Required grip count.
switches_frequency
string
Switch frequency period.
Must be one of:dwma
switches_count
integer
Required switch count.
exercise_id
integer
Target exercise ID.
exercise_frequency
string
Exercise frequency period.
Must be one of:dwm
exercise_count
integer
Required exercise count.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete user goal condition
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/goals/1/conditions/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Goal condition deleted",
"code": "GOALS:DELETE_CONDITION:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:DELETE_CONDITION:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:DELETE_CONDITION:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:DELETE_CONDITION:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user goal progress
requires authentication
Data is grouped into three parts:
grips- data about grips progress,switches- data about switches progress,exercises- data about exercises progress and attempts made.
overall- summary of whole goal time-frame,period- summary of given period, according to frequency (for example: if frequency of conditions is "weekly", these data is summary of current's week).today- summary of today's, used mainly to send daily summary notifications,conditions- goal conditions with progress for each one.
typefor grips overall summary, which points which conditions were used to calculate the summary. If grip-any condition exists, it has priority over grip-specific conditions, otherwise summary contains sum of all grip-specific conditions,frequency,frequency_fromandfrequency_tofor period summary for both grips and switches, which describe time-frame of frequency and period,donefor today's summary for both grips and switches, indicates if today's goal is reached (it's calculated only for conditions of frequency "daily").
Example request:
curl --request GET \
--get "http://localhost:8000/api/goals/1/progress" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/goals/1/progress"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"grips": {
"meta": {
"overall": {
"from": "2023-09-01 00:00:00",
"to": "2023-08-30 23:59:59"
},
"period": {
"from": "2023-09-15 23:59:59",
"to": "2023-09-21 23:59:59",
"frequency": "w"
}
},
"summary": {
"type": "grips-specific",
"progress": 222,
"goal": 2535
},
"progress": [
{
"grip": {
"id": 1,
"number": 0,
"name": "Rest Opposition",
"description": null,
"created_at": "2023-08-30T12:20:00.000000Z",
"updated_at": "2023-08-30T12:20:00.000000Z"
},
"overall": {
"progress": 125,
"goal": 200
},
"period": {
"progress": 22,
"goal": 50
}
},
{
"grip": {
"id": 2,
"number": 1,
"name": "Power",
"description": null,
"created_at": "2023-05-18T11:24:11.000000Z",
"updated_at": "2023-05-18T11:24:11.000000Z"
},
"overall": {
"progress": 90,
"goal": 150
},
"period": {
"progress": 10,
"goal": 30
}
},
{
"grip": null,
"overall": {
"progress": 78,
"goal": 1250
},
"period": {
"progress": 17,
"goal": 240
}
}
],
"today": {
"performed": 0,
"goal": 0,
"done": true
}
},
"switches": {
"overall": {
"performed": 55,
"goal": 300
},
"period": {
"performed": 25,
"goal": 30,
"frequency": "d",
"frequency_from": "2023-09-20 00:00:00",
"frequency_to": "2023-09-20 23:59:59"
},
"today": {
"performed": 25,
"goal": 30,
"done": false
},
"condition": {
"type": "switch",
"switches_frequency": "d",
"switches_count": 30
}
},
"exercises": {
"performed": 1,
"goal": 3,
"done": false,
"conditions": [
{
"type": "exercise",
"exercise_id": 1,
"exercise_frequency": "d",
"exercise_count": 3,
"attempts": [
{
"date_from": "2023-06-06",
"date_to": "2023-06-12",
"count_done": 1,
"count_not_done": 1
},
{
"date_from": "2023-06-13",
"date_to": "2023-06-19",
"count_done": 0,
"count_not_done": 0
},
{
"date_from": "2023-06-20",
"date_to": "2023-06-26",
"count_done": 0,
"count_not_done": 0
},
{
"date_from": "2023-06-27",
"date_to": "2023-07-03",
"count_done": 0,
"count_not_done": 0
}
],
"exercise": {
"id": 1,
"name": "Water plants",
"description": "Use Tripod Grip and water your plants",
"icon": "🪴",
"created_at": "2023-05-19T10:25:37.000000Z",
"updated_at": "2023-05-19T10:25:37.000000Z"
}
}
]
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view goal progress",
"code": "GOALS:GET_PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:GET_PROGRESS:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update user goal progress
requires authentication
Use this endpoint to update goal progress as patient. Add exercise attempts and mark them as done or not done.
Example request:
curl --request POST \
"http://localhost:8000/api/goals/1/progress" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"exercise_id\": 1,
\"exercise_done\": true
}"
const url = new URL(
"http://localhost:8000/api/goals/1/progress"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"exercise_id": 1,
"exercise_done": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 1,
"user_id": 272,
"goal_id": 8,
"type": "exercise",
"grip_id": null,
"grips": 784,
"switches": 38,
"exercise_id": 8,
"exercise_done": 1,
"created_at": "2026-03-20T16:22:09.000000Z",
"updated_at": "2026-03-20T16:22:09.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update goal progress",
"code": "GOALS:UPDATE_PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:UPDATE_PROGRESS:GOAL_NOT_FOUND"
}
Example response (422, User timezone not set):
{
"message": "User timezone not set",
"code": "GOALS:UPDATE_PROGRESS:NO_TIMEZONE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User goal ID.
user_id
integer
Associated user ID.
goal_id
integer
Associated goal ID.
type
string
Goal condition type.
Must be one of:gripswitchexercise
grip_id
integer
Target grip ID.
grips
integer
Grip count progress.
switches
integer
Switch count progress.
exercise_id
integer
Target exercise ID.
exercise_done
boolean
Whether the exercise is completed.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Invitations
Accept clinician invitation
Example request:
curl --request POST \
"http://localhost:8000/api/invite/accept" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"ABC123DEF456GHI789JKL0\",
\"email\": \"example@domain.com\",
\"password\": \"Test123!\",
\"language\": \"en\",
\"name\": \"Tom Smith\",
\"clinic_name\": \"My clinic Ltd\",
\"clinic_location\": \"Example St 1\\/345 New York, NY\",
\"address1\": \"5274 Merl Trail Suite 650\",
\"address2\": \"Corneliushaven, FL 34485-4411\",
\"mfa_enabled\": true,
\"mfa_method\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/invite/accept"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "ABC123DEF456GHI789JKL0",
"email": "example@domain.com",
"password": "Test123!",
"language": "en",
"name": "Tom Smith",
"clinic_name": "My clinic Ltd",
"clinic_location": "Example St 1\/345 New York, NY",
"address1": "5274 Merl Trail Suite 650",
"address2": "Corneliushaven, FL 34485-4411",
"mfa_enabled": true,
"mfa_method": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 4,
"mrn": "7W1Q2JAJ1774023495",
"name": "Miss Alayna Beahan",
"email": "1774023495milford.metz@example.com",
"language": "en",
"phone": "+1 (424) 443-9423",
"phone_country": "PA",
"phone_verified_at": null,
"address1": "66922 Schumm Turnpike Apt. 959",
"address2": "North Colleenchester, HI 70026-8965",
"postal_code": "82987",
"city": "Kshlerin Group",
"country": "FI",
"clinic_name": "South Alfonzo",
"clinic_location": "301 Glover Spur Suite 210\nMacejkovicberg, TN 86212-3568",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:15.000000Z",
"updated_at": "2026-03-20T16:18:15.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
}
Example response (403, Invitation expired):
{
"message": "Invitation expired",
"code": "INVITATIONS:ACCEPT:INVITATION_EXPIRED"
}
Example response (404, Invitation not found):
{
"message": "Invitation not found",
"code": "INVITATIONS:ACCEPT:INVITATION_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: invitation not accepted",
"code": "INVITATIONS:ACCEPT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Accept Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle/accept" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"a1b2c3d4e5f6g7h8i9j0k1l2m3\",
\"email\": \"user@example.com\",
\"password\": \"securePassword123\",
\"phone\": \"669-465-2096\",
\"phone_country\": \"US\",
\"name\": \"John Doe\",
\"language\": \"en\"
}"
const url = new URL(
"http://localhost:8000/api/invite/acadle/accept"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "a1b2c3d4e5f6g7h8i9j0k1l2m3",
"email": "user@example.com",
"password": "securePassword123",
"phone": "669-465-2096",
"phone_country": "US",
"name": "John Doe",
"language": "en"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 5,
"mrn": "DLFA3Y4A1774023496",
"name": "Floyd Mueller II",
"email": "1774023496tyler.marvin@example.net",
"language": "en",
"phone": "+1-314-934-9614",
"phone_country": "JE",
"phone_verified_at": null,
"address1": "21686 Howe Flat",
"address2": "North Vida, MN 99215",
"postal_code": "77701-9166",
"city": "Streich, Padberg and Jacobson",
"country": "LU",
"clinic_name": "North Mina",
"clinic_location": "81805 Elaina Common Apt. 707\nHaneburgh, TX 87532-4764",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:17.000000Z",
"updated_at": "2026-03-20T16:18:17.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (403, Invitation expired):
{
"message": "Invitation expired",
"code": "INVITATIONS_ACADLE:ACCEPT:INVITATION_EXPIRED"
}
Example response (404, Invitation not found):
{
"message": "Invitation not found",
"code": "INVITATIONS_ACADLE:ACCEPT:INVITATION_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: invitation not accepted",
"code": "INVITATIONS_ACADLE:ACCEPT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
List users for invitations
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/users" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/users"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 15,
"mrn": "Z1KSPNV61774023507",
"name": "Kenya Schumm",
"email": "1774023507gibson.johnson@example.net",
"language": "en",
"phone": "1-470-942-9240",
"phone_country": "IM",
"phone_verified_at": null,
"address1": "1304 Gusikowski Path",
"address2": "New Marta, LA 71249-5456",
"postal_code": "54945-8050",
"city": "Leannon-Schuppe",
"country": "NL",
"clinic_name": "New Alisha",
"clinic_location": "579 Will Underpass Suite 445\nWest Cedrickmouth, ID 72760",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:27.000000Z",
"updated_at": "2026-03-20T16:18:27.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
},
{
"id": 16,
"mrn": "ZEVGBXTW1774023507",
"name": "Harvey Jaskolski",
"email": "1774023507erich59@example.org",
"language": "en",
"phone": "820.239.5797",
"phone_country": "JM",
"phone_verified_at": null,
"address1": "95539 Wehner Mountains",
"address2": "Wellingtontown, GA 92026",
"postal_code": "79626-1149",
"city": "Jakubowski, Williamson and Reichel",
"country": "IE",
"clinic_name": "Port Raeton",
"clinic_location": "9550 Kassandra Prairie\nHauckfurt, HI 16441-8549",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:28.000000Z",
"updated_at": "2026-03-20T16:18:28.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": [
{
"id": 1,
"name": "SuperAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list users for invitations",
"code": "INVITATIONS:USERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create clinician invitations
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"patient_id\": 1,
\"invitations\": [
{
\"user_id\": 1,
\"user_email\": \"newuser@domain.com\",
\"role\": \"Clinician\",
\"training_confirmed\": true,
\"permissions\": [
\"aut\"
]
}
]
}"
const url = new URL(
"http://localhost:8000/api/invite"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"patient_id": 1,
"invitations": [
{
"user_id": 1,
"user_email": "newuser@domain.com",
"role": "Clinician",
"training_confirmed": true,
"permissions": [
"aut"
]
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 10,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 17,
"mrn": "AKZ23CQ51774023508",
"name": "Coy Lebsack",
"email": "1774023508irwin46@example.com",
"language": "en",
"phone": "279-951-2342",
"phone_country": "MA",
"phone_verified_at": null,
"address1": "4473 Leuschke Freeway Apt. 722",
"address2": "West Chasestad, WA 07629-9153",
"postal_code": "93112",
"city": "Swift Inc",
"country": "LT",
"clinic_name": "Lake Rhettberg",
"clinic_location": "85247 Zoey Squares Apt. 287\nWest Odie, MI 40341-1426",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:28.000000Z",
"updated_at": "2026-03-20T16:18:28.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 1,
"user_id": 18,
"invited_user_id": 17,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-03-20T16:18:31.000000Z",
"updated_at": "2026-03-20T16:18:31.000000Z"
}
],
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
},
{
"id": 20,
"mrn": "BLGDYIPT1774023511",
"name": "Prof. Eldon Ortiz III",
"email": "1774023511abshire.kobe@example.net",
"language": "en",
"phone": "623.827.1439",
"phone_country": "GY",
"phone_verified_at": null,
"address1": "77819 Rosamond Forks",
"address2": "Adelineshire, UT 83284",
"postal_code": "76696",
"city": "Wehner, Mann and Nader",
"country": "ES",
"clinic_name": "North Arlene",
"clinic_location": "18395 Kilback Roads\nEast Harryfurt, CT 58873-3413",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:31.000000Z",
"updated_at": "2026-03-20T16:18:31.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 2,
"user_id": 21,
"invited_user_id": 20,
"type": "clinician",
"training_confirmed": 0,
"created_at": "2026-03-20T16:18:33.000000Z",
"updated_at": "2026-03-20T16:18:33.000000Z"
}
],
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create invitations",
"code": "INVITATIONS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, No access to given patient):
{
"message": "No access to given patient",
"code": "INVITATIONS:CREATE:NO_ACCESS_TO_PATIENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Resend invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/1/resend" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/1/resend"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 23,
"mrn": "UBD8A39C1774023513",
"name": "Meda Casper",
"email": "1774023513lorine10@example.com",
"language": "en",
"phone": "(217) 781-4940",
"phone_country": "RU",
"phone_verified_at": null,
"address1": "77299 Gutmann Inlet Apt. 401",
"address2": "Tianahaven, OH 32260-4058",
"postal_code": "23499-4387",
"city": "Torp-Gutmann",
"country": "FR",
"clinic_name": "Port Zellachester",
"clinic_location": "95500 Rowland Ville\nWest Tamia, NV 19586",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:34.000000Z",
"updated_at": "2026-03-20T16:18:34.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 3,
"user_id": 24,
"invited_user_id": 23,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-03-20T16:18:36.000000Z",
"updated_at": "2026-03-20T16:18:36.000000Z"
}
],
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to resend invitations",
"code": "INVITATIONS:RESEND:INSUFFICIENT_PERMISSION"
}
Example response (403, User not found):
{
"message": "User not found",
"code": "INVITATIONS:RESEND:USER_NOT_FOUND"
}
Example response (403, Invitation already accepted):
{
"message": "Invitation already accepted",
"code": "INVITATIONS:RESEND:INVITATION_ALREADY_ACCEPTED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
List all users invited to Acadle
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/acadle/users?search=john" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/acadle/users"
);
const params = {
"search": "john",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 26,
"mrn": "F97K4B8X1774023516",
"name": "Mr. Isac Heller Jr.",
"email": "1774023516zoe40@example.org",
"language": "en",
"phone": "1-458-684-4322",
"phone_country": "VA",
"phone_verified_at": null,
"address1": "63778 Abbey Ridges",
"address2": "West Georgiannaborough, DE 79274-7270",
"postal_code": "76975",
"city": "Davis PLC",
"country": "BG",
"clinic_name": "Cadestad",
"clinic_location": "721 Huels Road Apt. 403\nKalestad, SC 77400",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:36.000000Z",
"updated_at": "2026-03-20T16:18:36.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
},
{
"id": 27,
"mrn": "MTMX4MR81774023517",
"name": "Wilfrid Moore",
"email": "1774023517shyann.murazik@example.net",
"language": "en",
"phone": "930-295-4915",
"phone_country": "KW",
"phone_verified_at": null,
"address1": "822 Schinner Expressway Apt. 305",
"address2": "Lake Veldaland, PA 93036-7971",
"postal_code": "42532-6607",
"city": "Huels and Sons",
"country": "FI",
"clinic_name": "Zorahaven",
"clinic_location": "2201 Julius Roads Suite 889\nEast Joannie, MS 52107-1426",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:37.000000Z",
"updated_at": "2026-03-20T16:18:37.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list users for invitations",
"code": "INVITATIONS_ACADLE:USERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"thartmann@example.org\"
}"
const url = new URL(
"http://localhost:8000/api/invite/acadle"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "thartmann@example.org"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 28,
"mrn": "I0NZZGPH1774023518",
"name": "Dr. Hassie Lowe",
"email": "1774023518hmcdermott@example.org",
"language": "en",
"phone": "(920) 277-0184",
"phone_country": "MK",
"phone_verified_at": null,
"address1": "8434 Greta Forges Suite 906",
"address2": "New Marquesburgh, CT 21943-6359",
"postal_code": "46460",
"city": "Smith-Kuphal",
"country": "BE",
"clinic_name": "Hershelberg",
"clinic_location": "18812 Kuhic Island\nEast Heloise, MA 23955",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:38.000000Z",
"updated_at": "2026-03-20T16:18:38.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"invitations": [
{
"id": 4,
"user_id": 29,
"invited_user_id": 28,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-03-20T16:18:40.000000Z",
"updated_at": "2026-03-20T16:18:40.000000Z"
}
],
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
}
Example response (400, User already exists):
{
"message": "User with this email already exists in the system",
"code": "INVITATIONS_ACADLE:CREATE:USER_ALREADY_EXISTS"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create invitations",
"code": "INVITATIONS_ACADLE:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Resend Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle/1/resend" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/acadle/1/resend"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 31,
"mrn": "OTDTCBRB1774023520",
"name": "Katarina Ebert",
"email": "1774023520wkoepp@example.net",
"language": "en",
"phone": "1-269-684-1567",
"phone_country": "BE",
"phone_verified_at": null,
"address1": "7572 Rippin Via",
"address2": "Nicoleview, IN 13471",
"postal_code": "41680",
"city": "Wisoky, Connelly and Durgan",
"country": "RO",
"clinic_name": "North Tad",
"clinic_location": "56499 Orville Flat Apt. 063\nCasperfurt, ND 80882-9213",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:40.000000Z",
"updated_at": "2026-03-20T16:18:40.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 5,
"user_id": 32,
"invited_user_id": 31,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-03-20T16:18:43.000000Z",
"updated_at": "2026-03-20T16:18:43.000000Z"
}
],
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to resend invitations",
"code": "INVITATIONS_ACADLE:RESEND:INSUFFICIENT_PERMISSION"
}
Example response (403, User not found):
{
"message": "User not found",
"code": "INVITATIONS_ACADLE:RESEND:USER_NOT_FOUND"
}
Example response (403, Invitation already accepted):
{
"message": "Invitation already accepted",
"code": "INVITATIONS_ACADLE:RESEND:INVITATION_ALREADY_ACCEPTED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Admin access to invitation tokens
requires authentication
Requires admin.invitations_tokens_access permission.
Fetches only non-accepted and non-expired invitations.
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/tokens/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/tokens/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"id": 1,
"user_id": 1,
"invited_user_id": 2,
"token": "I0V25NUVMHC0F8RRF1YEY5BT",
"training_confirmed": 1,
"created_at": "2025-05-12T12:00:00.000000Z",
"updated_at": "2025-05-12T12:00:00.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to get invitation tokens",
"code": "INVITATIONS:ADMIN_TOKENS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "INVITATIONS:ADMIN_TOKENS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logs
API endpoints for managing event logs
Get events log
requires authentication
user - user account that performed the action
element - element model that has been affected by the action
Example request:
curl --request GET \
--get "http://localhost:8000/api/logs?search=Test&ip=200.200.100.5&user=1&type=user&date_from=1642003200&date_to=1642003200&include_sessions=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
const url = new URL(
"http://localhost:8000/api/logs"
);
const params = {
"search": "Test",
"ip": "200.200.100.5",
"user": "1",
"type": "user",
"date_from": "1642003200",
"date_to": "1642003200",
"include_sessions": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": 277,
"event_name": "event_factory",
"element_type": "App\\Models\\User",
"element_id": 276,
"comments": "",
"ip_address": "221.148.144.167",
"created_at": "2016-05-28T08:21:02.000000Z",
"updated_at": "2026-03-20T16:22:12.000000Z",
"user": {
"id": 277,
"mrn": "6UVWW69O1774023731",
"name": "Dr. Molly Brakus",
"email": "1774023731liam.sawayn@example.org",
"language": "en",
"phone": "1-318-926-7935",
"phone_country": "AR",
"phone_verified_at": null,
"address1": "87228 Isabelle Loop",
"address2": "Kurtisland, NJ 22266-3588",
"postal_code": "54311-2009",
"city": "Bechtelar-Christiansen",
"country": "UA",
"clinic_name": "North Thereseville",
"clinic_location": "218 Josephine Plains\nEast Payton, CA 29130-8426",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:11.000000Z",
"updated_at": "2026-03-20T16:22:11.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"element": {
"id": 276,
"mrn": "39XD3HA21774023730",
"name": "Janelle Willms",
"email": "1774023730rmertz@example.net",
"language": "en",
"phone": "+1-917-457-7685",
"phone_country": "MV",
"phone_verified_at": null,
"address1": "4073 Wilma Rue Suite 721",
"address2": "Metzfurt, WV 87166-8935",
"postal_code": "58317-6055",
"city": "Blanda, Nienow and Torp",
"country": "RO",
"clinic_name": "Lianastad",
"clinic_location": "78718 Esperanza Pine\nLake Moses, OK 25712-9452",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:10.000000Z",
"updated_at": "2026-03-20T16:22:10.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"user_id": 280,
"event_name": "event_factory",
"element_type": "App\\Models\\User",
"element_id": 279,
"comments": "",
"ip_address": "42.253.21.184",
"created_at": "1989-03-03T10:53:36.000000Z",
"updated_at": "2026-03-20T16:22:14.000000Z",
"user": {
"id": 280,
"mrn": "G00RJ0R61774023733",
"name": "Ms. Chasity Kutch",
"email": "1774023733salvador.reilly@example.com",
"language": "en",
"phone": "503.520.0026",
"phone_country": "NG",
"phone_verified_at": null,
"address1": "3321 Hackett Cape Apt. 989",
"address2": "New Jeaniemouth, AR 71593-8501",
"postal_code": "56922-5778",
"city": "Labadie, Bechtelar and Huels",
"country": "AT",
"clinic_name": "Port Marilieview",
"clinic_location": "782 Columbus Mission Suite 634\nNew Maybellport, TX 60794-7308",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:13.000000Z",
"updated_at": "2026-03-20T16:22:13.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"element": {
"id": 279,
"mrn": "QFUHQYIF1774023733",
"name": "Claudie Swift II",
"email": "1774023733raphaelle21@example.net",
"language": "en",
"phone": "+1.740.991.2946",
"phone_country": "FI",
"phone_verified_at": null,
"address1": "2809 Ned Alley Apt. 155",
"address2": "Neldafurt, TX 91907",
"postal_code": "52619",
"city": "Lynch, Marquardt and Altenwerth",
"country": "SI",
"clinic_name": "New Bertrand",
"clinic_location": "5894 Kessler Canyon Suite 344\nWest Lexieland, PA 14153-8179",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:22:13.000000Z",
"updated_at": "2026-03-20T16:22:13.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access event logs",
"code": "EVENT_LOGS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Event log entry ID.
user_id
integer
ID of the user who triggered the event.
event_name
string
Event name.
element_type
string
Type of the related element.
element_id
integer
ID of the related element.
comments
string
Additional event comments.
ip_address
string
IP address of the request.
created_at
string
Event timestamp.
updated_at
string
Last update timestamp.
user
object
User who triggered the event.
element
object
Related element.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Messages
API endpoints for message center
Get user messages list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"filter\": \"all\"
}"
const url = new URL(
"http://localhost:8000/api/messages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"filter": "all"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": null,
"message_id": 1,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 1,
"sender_id": null,
"title": "Et aut ea natus dolorem similique numquam.",
"content": "Iure rerum incidunt esse sed.",
"created_at": "2026-03-20T16:20:19.000000Z",
"updated_at": "2026-03-20T16:20:19.000000Z",
"sender": null
}
},
{
"id": 2,
"user_id": null,
"message_id": 2,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 2,
"sender_id": null,
"title": "Sint non perferendis rerum similique non.",
"content": "Recusandae ut tempore voluptatum aut veritatis.",
"created_at": "2026-03-20T16:20:19.000000Z",
"updated_at": "2026-03-20T16:20:19.000000Z",
"sender": null
}
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User message ID.
user_id
integer
Recipient user ID.
message_id
integer
Associated message ID.
is_read
boolean
Whether the message has been read.
is_archived
boolean
Whether the message is archived.
is_deleted
boolean
Whether the message is deleted.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
message
object
The message content.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Send message to multiple users
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"title\": \"Reminder about your vaccination\",
\"content\": \"Lorem ipsum dolor sit amet\",
\"roles\": \"Clinician,Amputee\"
}"
const url = new URL(
"http://localhost:8000/api/message"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"title": "Reminder about your vaccination",
"content": "Lorem ipsum dolor sit amet",
"roles": "Clinician,Amputee"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Messages sent",
"count": 3,
"code": "MESSAGES:SEND:SENT"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to send messages",
"code": "MESSAGES:SEND:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mark message as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message/1/read" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"state\": true
}"
const url = new URL(
"http://localhost:8000/api/message/1/read"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"state": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"user_id": 143,
"message_id": 3,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to mark this message as read",
"code": "MESSAGES:READ:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "MESSAGES:READ:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User message ID.
user_id
integer
Recipient user ID.
message_id
integer
Associated message ID.
is_read
boolean
Whether the message has been read.
is_archived
boolean
Whether the message is archived.
is_deleted
boolean
Whether the message is deleted.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
message
object
The message content.
Mark message as archived
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message/1/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"state\": true
}"
const url = new URL(
"http://localhost:8000/api/message/1/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"state": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"user_id": 144,
"message_id": 4,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to mark this message as archived",
"code": "MESSAGES:ARCHIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "MESSAGES:ARCHIVE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User message ID.
user_id
integer
Recipient user ID.
message_id
integer
Associated message ID.
is_read
boolean
Whether the message has been read.
is_archived
boolean
Whether the message is archived.
is_deleted
boolean
Whether the message is deleted.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
message
object
The message content.
List of messages and tickets
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages-and-tickets" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/messages-and-tickets"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 2
},
"items": [
{
"type": "UserMessage",
"date": "2024-11-02T10:00:00.000000Z",
"item": {
"id": 1,
"user_id": 1,
"message_id": 1,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 1,
"sender_id": 1,
"title": "Message title",
"content": "Message content",
"created_at": "2024-11-02T10:00:00.000000Z",
"updated_at": "2024-11-02T10:00:00.000000Z",
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
}
}
}
},
{
"type": "SupportTicket",
"date": "2024-11-01T15:15:00.000000Z",
"item": {
"id": 1,
"sender_id": 1,
"recipient_id": 999,
"device_id": null,
"meeting_date": "2024-11-10T15:00:00.000000Z",
"meeting_type": "none",
"contact_email": null,
"status": "new",
"created_at": "2024-11-01T15:15:00.000000Z",
"updated_at": "2024-11-01T15:15:00.000000Z",
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
},
"recipient": {
"id": 2,
"mrn": "MRN2",
"name": "Patient",
"email": "patient4@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": null,
"clinic_location": null,
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"created_by": 1,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2024-10-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": null,
"roles": [
{
"id": 5,
"name": "Amputee",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 2,
"role_id": 5,
"model_type": "App\\Models\\User"
}
}
]
},
"device": null,
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 1,
"title": "Communication channel",
"content": "Welcome to the digital platform. Please use this channel for communicating with your clinician.",
"is_read": false,
"created_at": "2024-11-01T15:15:00.000000Z",
"updated_at": "2024-11-01T15:15:00.000000Z",
"attachments": [],
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
}
}
]
}
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Status of messages and tickets
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages-and-tickets/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/messages-and-tickets/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"messages": 5,
"tickets": 2
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mobile logs
API endpoints for managing mobile logs
Store log
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/mobile-logs" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "device_id=1"\
--form "date_start=1975-02-05 09:27:31"\
--form "date_end=2009-10-09 21:04:56"\
--form "encrypt_key=saepe"\
--form "encrypt_iv=sit"\
--form "file=@/tmp/phpNusw8E" const url = new URL(
"http://localhost:8000/api/mobile-logs"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('device_id', '1');
body.append('date_start', '1975-02-05 09:27:31');
body.append('date_end', '2009-10-09 21:04:56');
body.append('encrypt_key', 'saepe');
body.append('encrypt_iv', 'sit');
body.append('file', document.querySelector('input[name="file"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (202):
{
"id": 1,
"user_id": 281,
"device_id": 134,
"file": "/tmp/fakerrQduCu",
"date_start": "2011-01-30 18:39:19",
"date_end": "1976-08-10 17:36:09",
"created_at": "2026-03-20T16:22:15.000000Z",
"updated_at": "2026-03-20T16:22:15.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to write mobile logs",
"code": "MOBILE_LOGS:STORE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get logs
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 2,
"user_id": 282,
"device_id": 135,
"file": "/tmp/fakerCA5vhM",
"date_start": "1989-08-15 16:43:59",
"date_end": "2015-11-22 14:14:40",
"created_at": "2026-03-20T16:22:16.000000Z",
"updated_at": "2026-03-20T16:22:16.000000Z"
},
{
"id": 3,
"user_id": 283,
"device_id": 136,
"file": "/tmp/fakerHB8qBf",
"date_start": "2002-09-14 00:03:18",
"date_end": "1995-08-28 02:44:22",
"created_at": "2026-03-20T16:22:17.000000Z",
"updated_at": "2026-03-20T16:22:17.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get logs by user
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 4,
"user_id": 284,
"device_id": 137,
"file": "/tmp/fakerQG3m4T",
"date_start": "2003-06-01 20:49:14",
"date_end": "2000-12-11 00:34:36",
"created_at": "2026-03-20T16:22:17.000000Z",
"updated_at": "2026-03-20T16:22:17.000000Z"
},
{
"id": 5,
"user_id": 285,
"device_id": 138,
"file": "/tmp/fakerrQ8XZK",
"date_start": "1996-03-26 14:00:04",
"date_end": "2012-07-14 07:12:59",
"created_at": "2026-03-20T16:22:18.000000Z",
"updated_at": "2026-03-20T16:22:18.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET_BY_USER:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get logs by device
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 6,
"user_id": 286,
"device_id": 139,
"file": "/tmp/fakerzEI1mV",
"date_start": "1987-02-01 23:03:46",
"date_end": "2022-07-02 23:48:53",
"created_at": "2026-03-20T16:22:19.000000Z",
"updated_at": "2026-03-20T16:22:19.000000Z"
},
{
"id": 7,
"user_id": 287,
"device_id": 140,
"file": "/tmp/fakerq70wY2",
"date_start": "1974-03-06 04:53:32",
"date_end": "2003-02-14 01:03:27",
"created_at": "2026-03-20T16:22:20.000000Z",
"updated_at": "2026-03-20T16:22:20.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET_BY_DEVICE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Mobile log ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
file
string
Log file URL.
date_start
string
Log start date.
date_end
string
Log end date.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
P2P Sessions
API endpoints for managing P2P (peer-to-peer) sessions
Get active session data
requires authentication
Returns P2P sessions with status "waiting_for_decision" or "in_progress".
Example request:
curl --request GET \
--get "http://localhost:8000/api/p2p/1/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/p2p/1/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 1,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "9b81ed0a-1c0c-305a-87c7-a3b1be14da07",
"clinician_uuid": "1b4263bb-096b-3673-bc96-91b190aabc02",
"token": "T2AV5E29LRZY5LXEYPC2FG764VNR8NNDTYH8X1ACO4MERFB2FOJAT6YJ3VUT80HL",
"status": "waiting_for_decision",
"created_at": "2026-03-20T16:19:57.000000Z",
"updated_at": "2026-03-20T16:19:57.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view active P2P session",
"code": "P2P_SESSIONS:GET_ACTIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:GET_ACTIVE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Get session data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/p2p/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/p2p/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 2,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "b0ecf38c-d835-3c10-9f22-22e4e8e2324c",
"clinician_uuid": "ab554b91-6fbf-39d2-9adc-5ef85332010f",
"token": "56RUONENPKDAM39OOXADFNRDE6J4TZLDBNZQ1JMUUDREDD9XPIR5XO7D4ZB33NNU",
"status": "waiting_for_decision",
"created_at": "2026-03-20T16:19:57.000000Z",
"updated_at": "2026-03-20T16:19:57.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view P2P session",
"code": "P2P_SESSIONS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:GET:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Create new P2P session
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/p2p/create" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"amputee_id\": 2,
\"device_id\": 5,
\"amputee_uuid\": \"5cd58807-b9b9-39e3-84ae-1f4ada216c7f\",
\"clinician_uuid\": \"3efae374-d7ef-3d1d-9ef3-9a73051bee30\"
}"
const url = new URL(
"http://localhost:8000/api/p2p/create"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"amputee_id": 2,
"device_id": 5,
"amputee_uuid": "5cd58807-b9b9-39e3-84ae-1f4ada216c7f",
"clinician_uuid": "3efae374-d7ef-3d1d-9ef3-9a73051bee30"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"amputee_id": 118,
"device_id": null,
"clinician_id": 119,
"amputee_uuid": "d830ead5-6585-3268-8afd-ddebfc6f054b",
"clinician_uuid": "d37f75ab-8d0b-3f6d-9b56-06d706a083f5",
"token": "D3O4KFKZ9R18LEWOAT2SSU6TIXCV60SWH3TJ3ELKCGLK92MMJR6PTUW2H5JBPBDK",
"status": "waiting_for_decision",
"created_at": "2026-03-20T16:19:59.000000Z",
"updated_at": "2026-03-20T16:19:59.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create P2P session",
"code": "P2P_SESSIONS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Device not assigned to patient):
{
"message": "Device is not assigned to the patient",
"code": "P2P_SESSIONS:CREATE:DEVICE_NOT_ASSIGNED"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "P2P_SESSIONS:CREATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Update P2P session
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/p2p/1/update" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"status\": \"closed\"
}"
const url = new URL(
"http://localhost:8000/api/p2p/1/update"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"status": "closed"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "1ebcc515-78af-34ae-a1ac-3026abd14cca",
"clinician_uuid": "5094d9fc-52c3-3186-8a39-f2540983d89f",
"token": "KOHVZXLFKKU7A9PP668E2HXX5CA72FIK812AC9IO0M34HIM6ATHCI380T8F9NA2D",
"status": "waiting_for_decision",
"created_at": "2026-03-20T16:19:59.000000Z",
"updated_at": "2026-03-20T16:19:59.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update P2P session",
"code": "P2P_SESSIONS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:UPDATE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
P2P session ID.
device_id
integer
Associated device ID.
amputee_id
integer
Patient (amputee) user ID.
clinician_id
integer
Clinician user ID.
amputee_uuid
string
Amputee WebRTC UUID.
clinician_uuid
string
Clinician WebRTC UUID.
token
string
Session token.
status
string
Session status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
amputee
object
Patient user.
clinician
object
Clinician user.
Product features and toggles
API endpoints for product features and toggles management
Definitions:
- Product feature - part of application which can be considered as hardware compatible (with for example specific PCB version) or software compatible (with for example specific firmware version). Product features are used in versions compatibility matrix.
- Product toggle - part of application which can be enabled and disabled for current environment.
List product features
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/features" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/features"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "gray",
"slug": "voluptas-vel-vel-voluptas",
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
},
{
"id": 2,
"name": "silver",
"slug": "voluptas-vitae-quaerat-quidem-est-minima-suscipit-qui",
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "PRODUCT_FEATURES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product feature ID.
name
string
Feature name.
slug
string
Feature slug (unique identifier).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create product feature
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/product/features" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\"
}"
const url = new URL(
"http://localhost:8000/api/product/features"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "gray",
"slug": "aliquam-tenetur-aut-fugit",
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product feature ID.
name
string
Feature name.
slug
string
Feature slug (unique identifier).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update product feature
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/product/features/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\"
}"
const url = new URL(
"http://localhost:8000/api/product/features/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "blue",
"slug": "eligendi-inventore-occaecati-nostrum-voluptatem-et-numquam",
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product feature not found):
{
"message": "Product feature not found",
"code": "PRODUCT_FEATURES:UPDATE:FEATURE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product feature ID.
name
string
Feature name.
slug
string
Feature slug (unique identifier).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete product feature
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/product/features/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/features/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Product feature deleted",
"code": "PRODUCT_FEATURES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Product feature belongs to compatibility entries):
{
"message": "Cannot delete: product feature belongs to existing compatibility entries (1)",
"code": "PRODUCT_FEATURES:DELETE:HAS_COMPATIBILITY_ENTRIES"
}
Example response (404, Product feature not found):
{
"message": "Product feature not found",
"code": "PRODUCT_FEATURES:DELETE:FEATURE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List product toggles
requires authentication
This endpoint returns list of global toggles. For some users there could exist user toggle which overrides these settings.
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/toggles?global=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/toggles"
);
const params = {
"global": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "olive",
"slug": "cupiditate-quo-aut-aut-maiores",
"enabled": 1,
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
},
{
"id": 2,
"name": "olive",
"slug": "voluptatem-eos-quas-amet-rem-omnis",
"enabled": 0,
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "PRODUCT_TOGGLES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product toggle ID.
name
string
Toggle name.
slug
string
Toggle slug (unique identifier).
enabled
boolean
Whether the toggle is enabled globally.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create product toggle
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/product/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\",
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/product/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config",
"enabled": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "maroon",
"slug": "illo-qui-harum-sint-excepturi-explicabo-vel-consequatur",
"enabled": 0,
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product toggle ID.
name
string
Toggle name.
slug
string
Toggle slug (unique identifier).
enabled
boolean
Whether the toggle is enabled globally.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update product toggle
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/product/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\",
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/product/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config",
"enabled": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "aqua",
"slug": "inventore-commodi-est-reprehenderit-qui-tempore-consequatur",
"enabled": 0,
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product toggle not found):
{
"message": "Product toggle not found",
"code": "PRODUCT_TOGGLES:UPDATE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Product toggle ID.
name
string
Toggle name.
slug
string
Toggle slug (unique identifier).
enabled
boolean
Whether the toggle is enabled globally.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete product toggle
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/product/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Product toggle deleted",
"code": "PRODUCT_TOGGLES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product toggle not found):
{
"message": "Product toggle not found",
"code": "PRODUCT_TOGGLES:DELETE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List product FAQ
requires authentication
This endpoint returns list of product FAQ.
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/faq" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/faq"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"question": "Iste culpa dolor quae nihil accusamus. Dolor quibusdam consequatur molestias tempora ratione eum harum sit. Rerum ut facilis quia iusto eaque et voluptas.",
"answer": "Et quod ad consequatur velit cumque aut. Quis voluptates ea sed magnam. Labore ullam in soluta eos enim atque.",
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
},
{
"id": 2,
"question": "Perspiciatis aut molestias eum. Quisquam omnis voluptate dolores. Tempore omnis quia ea quos rem rerum eos.",
"answer": "Voluptas tempora quis atque earum qui nemo. Non a neque omnis est mollitia fugit. Facere quam nesciunt eius omnis beatae recusandae fugiat. Et ab voluptatum est odit nostrum.",
"created_at": "2026-03-20T16:21:47.000000Z",
"updated_at": "2026-03-20T16:21:47.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "FAQ:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
FAQ entry ID.
question
string
FAQ question.
answer
string
FAQ answer.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List user toggles
requires authentication
This endpoint returns list of user toggles with their global toggles.
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"toggle_id": 6,
"user_id": 251,
"enabled": 1,
"created_at": "2026-03-20T16:21:48.000000Z",
"updated_at": "2026-03-20T16:21:48.000000Z",
"toggle": {
"id": 6,
"name": "maroon",
"slug": "et-ratione-omnis-nulla-facilis-dicta-vitae-praesentium",
"enabled": 1,
"created_at": "2026-03-20T16:21:48.000000Z",
"updated_at": "2026-03-20T16:21:48.000000Z"
}
},
{
"id": 2,
"toggle_id": 8,
"user_id": 252,
"enabled": 0,
"created_at": "2026-03-20T16:21:49.000000Z",
"updated_at": "2026-03-20T16:21:49.000000Z",
"toggle": {
"id": 8,
"name": "green",
"slug": "nesciunt-laborum-ea-corporis-deserunt",
"enabled": 1,
"created_at": "2026-03-20T16:21:49.000000Z",
"updated_at": "2026-03-20T16:21:49.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "USER_TOGGLES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User product toggle ID.
toggle_id
integer
Associated product toggle ID.
user_id
integer
Associated user ID.
enabled
boolean
Whether the toggle is enabled for this user.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
toggle
object
Associated product toggle.
Create user toggle
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"toggle_id\": 1,
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"toggle_id": 1,
"enabled": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"toggle_id": 9,
"user_id": 253,
"enabled": 0,
"created_at": "2026-03-20T16:21:49.000000Z",
"updated_at": "2026-03-20T16:21:49.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot create user toggles for SuperAdmin):
{
"message": "Cannot create user toggles for SuperAdmin",
"code": "USER_TOGGLES:CREATE:CANNOT_CREATE_FOR_SUPER_ADMIN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:CREATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User product toggle ID.
toggle_id
integer
Associated product toggle ID.
user_id
integer
Associated user ID.
enabled
boolean
Whether the toggle is enabled for this user.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
toggle
object
Associated product toggle.
Update user toggle
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"enabled": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"toggle_id": 10,
"user_id": 254,
"enabled": 0,
"created_at": "2026-03-20T16:21:50.000000Z",
"updated_at": "2026-03-20T16:21:50.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:UPDATE:USER_NOT_FOUND"
}
Example response (404, User toggle not found):
{
"message": "User toggle not found",
"code": "USER_TOGGLES:UPDATE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User product toggle ID.
toggle_id
integer
Associated product toggle ID.
user_id
integer
Associated user ID.
enabled
boolean
Whether the toggle is enabled for this user.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
toggle
object
Associated product toggle.
Delete user toggle
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User toggle deleted",
"code": "USER_TOGGLES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:DELETE:USER_NOT_FOUND"
}
Example response (404, User toggle not found):
{
"message": "User toggle not found",
"code": "USER_TOGGLES:DELETE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Releases
API endpoints for releases management
List releases
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/releases" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 14,
"description": "Expedita reprehenderit minus molestiae illum iste minus. Autem enim possimus quas. Ducimus eius quibusdam ut ut a. Rem aut provident maiores ut laboriosam fugit voluptatum.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"version": {
"id": 14,
"name": "2.9.55",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
},
{
"id": 2,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 15,
"description": "Reiciendis laboriosam error a culpa ipsam veniam quaerat amet. Ratione dicta culpa voluptatum sed sed et quas. Eveniet eveniet aut earum facere.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"version": {
"id": 15,
"name": "5.57.37",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list releases",
"code": "RELEASES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get release
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 16,
"description": "Perspiciatis quod consectetur ipsum. Facere autem necessitatibus id et sit ipsa ut. Eos laborum quasi error ut non est aut quis.",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z",
"version": {
"id": 16,
"name": "9.58.87",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view release",
"code": "RELEASES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:GET:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
Create release
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/releases" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version_type\": \"SoftwareVersion\",
\"version_id\": 1,
\"description\": \"This version fixes minor bugs.\"
}"
const url = new URL(
"http://localhost:8000/api/releases"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version_type": "SoftwareVersion",
"version_id": 1,
"description": "This version fixes minor bugs."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 17,
"description": "Mollitia fugit accusamus soluta sint deserunt ea totam ullam. Tenetur accusamus quis ea qui. Ea nulla vel aut voluptate. Omnis tempore iusto iure voluptate.",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create release",
"code": "RELEASES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
Update release
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version_type\": \"SoftwareVersion\",
\"version_id\": 1,
\"description\": \"This version fixes minor bugs.\"
}"
const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version_type": "SoftwareVersion",
"version_id": 1,
"description": "This version fixes minor bugs."
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 18,
"description": "Fuga ut numquam nulla. Praesentium voluptates deleniti aperiam quae aut repudiandae ex. Eum dolor expedita recusandae sed nihil quae.",
"created_at": "2026-03-20T16:21:52.000000Z",
"updated_at": "2026-03-20T16:21:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update release",
"code": "RELEASES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:UPDATE:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Release ID.
version_type
string
Version model type (morph class name).
version_id
integer
Version model ID.
description
string
Release notes.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
version
object
Associated version (software, firmware or PCB).
Delete release
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "RELEASES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete release",
"code": "RELEASES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:DELETE:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Search
API endpoints for search
Search
requires authentication
Searches in:
- users (by name and email)
- devices (by serial number)
Returned collection contains entries of type User or Device.
If the device has a patient assigned, this patient is included in the results as an entry of type User. If the device has no patient, the device is included in the results.
Users included in the results, but not found directly have "devices" relation filled in with the devices that match the search query.
Example request:
curl --request GET \
--get "http://localhost:8000/api/search" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"query\": \"Tom\"
}"
const url = new URL(
"http://localhost:8000/api/search"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"query": "Tom"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"type": "User",
"item": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"pivot": {
"assigned_user_id": 2,
"user_id": 1
},
"devices": [],
"roles": [
{
"id": 5,
"name": "Amputee",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 5,
"model_type": "App\\Models\\User"
}
}
]
}
},
{
"type": "Device",
"item": {
"id": 1,
"serial": "SERIAL-NUMBER",
"bluetooth_id": "BLUETOOTH_ID",
"model_id": 1,
"amputee_id": 1,
"firmware_version_id": 1,
"pcb_version_id": 1,
"active": 1,
"last_activity_at": "2024-11-11 12:00:00",
"created_at": "2024-08-30T15:00:00.000000Z",
"updated_at": "2024-09-01T16:00:00.000000Z",
"pivot": {
"user_id": 2,
"device_id": 1
}
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to search",
"code": "SEARCH:SEARCH:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Servicing
API endpoints for servicing
List of parts
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/servicing/parts" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/servicing/parts"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_model": null,
"name": "JCB",
"created_at": "2026-03-20T16:20:13.000000Z",
"updated_at": "2026-03-20T16:20:13.000000Z"
},
{
"id": 2,
"device_model": null,
"name": "MasterCard",
"created_at": "2026-03-20T16:20:13.000000Z",
"updated_at": "2026-03-20T16:20:13.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list service parts",
"code": "SERVICING:LIST_PARTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Service part ID.
device_model
integer
Associated device model ID.
name
string
Part name.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Report service repair
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/servicing/repair" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "user_id=1"\
--form "device_id=1"\
--form "parts[][part_id]=1"\
--form "parts[][reason]=Mechanical issue"\
--form "files[]=@/tmp/php55vmTW" const url = new URL(
"http://localhost:8000/api/servicing/repair"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('user_id', '1');
body.append('device_id', '1');
body.append('parts[][part_id]', '1');
body.append('parts[][reason]', 'Mechanical issue');
body.append('files[]', document.querySelector('input[name="files[]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 136,
"device_id": 115,
"created_at": "2026-03-20T16:20:14.000000Z",
"updated_at": "2026-03-20T16:20:14.000000Z",
"parts": [
{
"id": 1,
"repair_id": 1,
"part_id": 3,
"reason": "Maxime numquam ad voluptatem quia aliquid. Voluptatem voluptatem fuga officia aperiam sed inventore similique. Praesentium enim optio accusamus dolores.",
"created_at": "2026-03-20T16:20:15.000000Z",
"updated_at": "2026-03-20T16:20:15.000000Z",
"part": {
"id": 3,
"device_model": null,
"name": "Visa",
"created_at": "2026-03-20T16:20:15.000000Z",
"updated_at": "2026-03-20T16:20:15.000000Z"
}
},
{
"id": 2,
"repair_id": 1,
"part_id": 4,
"reason": "Dolor animi fugit consectetur optio aut eos. Esse fuga tempore consequatur quo omnis. Voluptate quasi fugiat nam impedit.",
"created_at": "2026-03-20T16:20:17.000000Z",
"updated_at": "2026-03-20T16:20:17.000000Z",
"part": {
"id": 4,
"device_model": null,
"name": "Visa",
"created_at": "2026-03-20T16:20:16.000000Z",
"updated_at": "2026-03-20T16:20:16.000000Z"
}
},
{
"id": 3,
"repair_id": 1,
"part_id": 5,
"reason": "Et et deserunt quos fuga quasi qui eum. Aut vitae possimus in doloremque velit. Laudantium et at molestias nostrum sint sed et. Veniam consectetur molestiae est inventore aut dolores optio.",
"created_at": "2026-03-20T16:20:17.000000Z",
"updated_at": "2026-03-20T16:20:17.000000Z",
"part": {
"id": 5,
"device_model": null,
"name": "Visa",
"created_at": "2026-03-20T16:20:17.000000Z",
"updated_at": "2026-03-20T16:20:17.000000Z"
}
}
],
"attachments": [
{
"id": 1,
"repair_id": 1,
"file": "/tmp/fakerrD932n",
"created_at": "2026-03-20T16:20:16.000000Z",
"updated_at": "2026-03-20T16:20:16.000000Z"
},
{
"id": 2,
"repair_id": 1,
"file": "/tmp/faker1oCfgi",
"created_at": "2026-03-20T16:20:19.000000Z",
"updated_at": "2026-03-20T16:20:19.000000Z"
},
{
"id": 3,
"repair_id": 1,
"file": "/tmp/faker35kn1z",
"created_at": "2026-03-20T16:20:19.000000Z",
"updated_at": "2026-03-20T16:20:19.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to report service repair",
"code": "SERVICING:REPORT_REPAIR:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Service repair ID.
user_id
integer
Associated user ID.
device_id
integer
Associated device ID.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
parts
object[]
Service parts included in the repair.
attachments
object[]
Repair attachments.
Settings
API endpoints for app settings
Get app version
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/app-version" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/app-version"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"version": "1.6.0"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get silent push timeout
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/silent-push" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/silent-push"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"timeout": "15"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get available languages
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/languages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/languages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"languages": [
"de",
"en",
"es",
"it",
"pl",
"ru",
"uk"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get mobile stores versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"ios": "1.0",
"android": "1.0"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update app version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/settings/app-version" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version\": \"1.6.0\"
}"
const url = new URL(
"http://localhost:8000/api/settings/app-version"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version": "1.6.0"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"version": "1.6.0"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_APP_VERSION:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update silent push timeout
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/settings/silent-push" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"timeout\": 15
}"
const url = new URL(
"http://localhost:8000/api/settings/silent-push"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"timeout": 15
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"timeout": "15"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_SILENT_PUSH:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update mobile stores versions
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/mobile/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"ios\": \"1.1\",
\"android\": \"1.1\"
}"
const url = new URL(
"http://localhost:8000/api/mobile/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"ios": "1.1",
"android": "1.1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"ios": "1.0",
"android": "1.0"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_MOBILE_STORES_VERSION:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Support Ticket
API endpoints for managing support tickets
Get tickets list
requires authentication
Possible extend options:
- sender - the user who created ticket
- recipient - the user who was ticket recipient
- device - the device assigned to ticket
- messages - message allocated to ticket
- messages.attachments - list of attachments assigned to message and ticket
- messages.sender - the user who wrote the message
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets?status=new&sender=1&recipient=1&device=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets"
);
const params = {
"status": "new",
"sender": "1",
"recipient": "1",
"device": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 27,
"sender_id": 145,
"recipient_id": 146,
"device_id": 122,
"meeting_date": "2026-03-20 16:20:22",
"meeting_type": "online_meeting",
"contact_email": "karley13@hoppe.com",
"status": "new",
"created_at": "2026-03-20T16:20:23.000000Z",
"updated_at": "2026-03-20T16:20:23.000000Z",
"sender": {
"id": 145,
"mrn": "B9E1L5Y81774023621",
"name": "Marcelino Mante",
"email": "1774023621ohintz@example.org",
"language": "en",
"phone": "+1-256-294-8170",
"phone_country": "FK",
"phone_verified_at": null,
"address1": "519 Bernice Flat",
"address2": "South Ursulaview, MD 99546-4778",
"postal_code": "90225-4089",
"city": "Kub PLC",
"country": "ES",
"clinic_name": "Serenityhaven",
"clinic_location": "91648 Walker Light Apt. 467\nEast Gaetanoport, DE 31935-1803",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:20:21.000000Z",
"updated_at": "2026-03-20T16:20:21.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 146,
"mrn": "9VF1KXX01774023622",
"name": "Ms. Norma Reinger I",
"email": "1774023622nfeil@example.org",
"language": "en",
"phone": "+1-703-451-4658",
"phone_country": "CY",
"phone_verified_at": null,
"address1": "463 Kale Islands Suite 344",
"address2": "South Kobyport, PA 21861-1372",
"postal_code": "85016",
"city": "Corwin, Schuster and Botsford",
"country": "NL",
"clinic_name": "Gastonport",
"clinic_location": "9900 Ali Trafficway Apt. 868\nElfriedastad, KS 94547-1370",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:20:22.000000Z",
"updated_at": "2026-03-20T16:20:22.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 122,
"serial": "3f4705a7-6b3a-3ce1-bdd6-693d4ce09279",
"bluetooth_id": "5b7f14c7-0f69-3e06-a94c-f08f454b6450",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:20:23.000000Z",
"updated_at": "2026-03-20T16:20:23.000000Z"
},
"messages": [
{
"id": 15,
"ticket_id": 27,
"sender_id": 147,
"title": "Mrs.",
"content": "Totam voluptatem veniam rerum dolor consequatur sunt at eligendi.",
"is_read": false,
"created_at": "2026-03-20T16:20:25.000000Z",
"updated_at": "2026-03-20T16:20:25.000000Z"
}
]
},
{
"id": 35,
"sender_id": 159,
"recipient_id": 160,
"device_id": 123,
"meeting_date": "2026-03-20 16:20:33",
"meeting_type": "online_meeting",
"contact_email": "mcollier@yahoo.com",
"status": "new",
"created_at": "2026-03-20T16:20:34.000000Z",
"updated_at": "2026-03-20T16:20:34.000000Z",
"sender": {
"id": 159,
"mrn": "IOCYYE0D1774023632",
"name": "Cleora Ziemann",
"email": "1774023632bwunsch@example.net",
"language": "en",
"phone": "(773) 735-7119",
"phone_country": "UZ",
"phone_verified_at": null,
"address1": "51883 Hettinger Light Apt. 460",
"address2": "New Sanford, RI 62152-9820",
"postal_code": "33593-6852",
"city": "Collins, Schmitt and Morar",
"country": "NO",
"clinic_name": "Nolanmouth",
"clinic_location": "773 Murazik Ville Apt. 069\nNew Brionna, OK 87838-9776",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:20:32.000000Z",
"updated_at": "2026-03-20T16:20:32.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 160,
"mrn": "9LPYV0RJ1774023633",
"name": "Mrs. Grace Brown",
"email": "1774023633ismael95@example.org",
"language": "en",
"phone": "820.262.6615",
"phone_country": "CR",
"phone_verified_at": null,
"address1": "1190 Williamson Keys",
"address2": "Rheafurt, WY 95374-5281",
"postal_code": "51176-4922",
"city": "Gislason Inc",
"country": "BE",
"clinic_name": "East Reanna",
"clinic_location": "978 Sanford Harbors Apt. 577\nJacobsonshire, IL 21240-9109",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:20:33.000000Z",
"updated_at": "2026-03-20T16:20:33.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 123,
"serial": "a06bf3f5-f988-370c-bad5-1724567874c7",
"bluetooth_id": "1dccc1b0-0fca-3745-a294-70eb18c4af8a",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:20:34.000000Z",
"updated_at": "2026-03-20T16:20:34.000000Z"
},
"messages": [
{
"id": 19,
"ticket_id": 35,
"sender_id": 161,
"title": "Miss",
"content": "Ipsam tempora voluptatem dignissimos molestiae dignissimos in ipsa.",
"is_read": false,
"created_at": "2026-03-20T16:20:36.000000Z",
"updated_at": "2026-03-20T16:20:36.000000Z"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list support tickets",
"code": "TICKETS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get tickets status
requires authentication
Counts tickets by their status
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"unread": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list support tickets",
"code": "TICKETS:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get support ticket
requires authentication
Returns single support ticket in the response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/ticket/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 43,
"sender_id": 173,
"recipient_id": 174,
"device_id": 124,
"meeting_date": "2026-03-20 16:20:45",
"meeting_type": "online_meeting",
"contact_email": "zachery.hammes@kuhic.biz",
"status": "new",
"created_at": "2026-03-20T16:20:45.000000Z",
"updated_at": "2026-03-20T16:20:45.000000Z",
"sender": {
"id": 173,
"mrn": "XMMHFYFS1774023644",
"name": "Muhammad Stoltenberg",
"email": "1774023644daisha.marks@example.com",
"language": "en",
"phone": "317.463.1265",
"phone_country": "ZW",
"phone_verified_at": null,
"address1": "262 Jermaine Greens Apt. 647",
"address2": "New Annamae, MT 12329-9611",
"postal_code": "21542",
"city": "Herzog, Rodriguez and Zulauf",
"country": "UA",
"clinic_name": "Howellfurt",
"clinic_location": "8031 Hintz Lock Suite 584\nWilliamsonchester, DE 28407",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:20:44.000000Z",
"updated_at": "2026-03-20T16:20:44.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 174,
"mrn": "Y8R8Y7TS1774023645",
"name": "Fredrick Kessler",
"email": "1774023645xokuneva@example.net",
"language": "en",
"phone": "(508) 365-7120",
"phone_country": "FM",
"phone_verified_at": null,
"address1": "1263 Shields Lock",
"address2": "New Jaidentown, CO 37546",
"postal_code": "81600-6087",
"city": "Hackett Ltd",
"country": "GR",
"clinic_name": "West Sheldonland",
"clinic_location": "180 Lourdes Garden Apt. 571\nPort Earlineberg, NJ 99868-4029",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:20:45.000000Z",
"updated_at": "2026-03-20T16:20:45.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 124,
"serial": "ccca3928-c951-3d64-b8df-14bc14220154",
"bluetooth_id": "b5f10c44-9256-3aaf-8cd2-e7f3e22ffb2d",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:20:45.000000Z",
"updated_at": "2026-03-20T16:20:45.000000Z"
},
"messages": [
{
"id": 23,
"ticket_id": 43,
"sender_id": 175,
"title": "Miss",
"content": "Error sint omnis autem omnis.",
"is_read": false,
"created_at": "2026-03-20T16:20:48.000000Z",
"updated_at": "2026-03-20T16:20:48.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view support ticket",
"code": "TICKETS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:GET:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Get support ticket history
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/ticket/1/history" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/history"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"ticket_id": 51,
"author_id": 188,
"action": "non",
"reason": "Non rerum optio labore odio.",
"created_at": "2026-03-20T16:20:58.000000Z",
"updated_at": "2026-03-20T16:20:58.000000Z"
},
{
"id": 2,
"ticket_id": 52,
"author_id": 190,
"action": "beatae",
"reason": "Expedita animi ipsa aut est ratione ipsa.",
"created_at": "2026-03-20T16:20:59.000000Z",
"updated_at": "2026-03-20T16:20:59.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view support ticket",
"code": "TICKETS:HISTORY:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:HISTORY:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
History entry ID.
ticket_id
integer
Associated support ticket ID.
author_id
integer
ID of the user who made this change.
action
string
Action performed.
reason
string
Reason for the action.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made this change.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get support ticket available filters
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets/available-filters" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets/available-filters"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"clinicians": [
{
"id": 95,
"mrn": null,
"name": "Name",
"email": "email",
"region": "us",
"language": "pl",
"phone": "+48-555555555",
"phone_verified_at": null,
"address1": "Address",
"address2": "Address 2",
"postal_code": "",
"city": "",
"clinic_name": "Name",
"clinic_location": "Name",
"image": "https://aether-dev-bucket.s3.amazonaws.com/users/LDueuv1uG218G7owaiLAaWRkpaGxjB0jEFwzZsT1.png",
"mfa_enabled": 0,
"mfa_method": "sms",
"mfa_verified_to": null,
"location_id": 2,
"created_by": 1,
"active": 1,
"notifications_timezone": "America/Adak",
"notifications_at": null,
"created_at": "2022-07-19T14:43:37.000000Z",
"updated_at": "2024-09-27T05:52:51.000000Z",
"invitation_status": "expired",
"roles": [
{
"id": 2,
"name": "Clinician",
"guard_name": "web",
"created_at": "2022-03-21T17:15:47.000000Z",
"updated_at": "2022-03-21T17:15:47.000000Z",
"pivot": {
"model_id": 95,
"role_id": 2,
"model_type": "App\\Models\\User"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:AVAILABLE_FILTERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new support ticket
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tickets" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "recipient=1"\
--form "device=1"\
--form "meeting_type=online_meeting"\
--form "meeting_date=2026-03-20 16:20:59"\
--form "contact_email=mbrown@hotmail.com"\
--form "message[content]=Nesciunt et aut quos excepturi perferendis in quis."\
--form "message[title]=Repellat ipsa aliquam non."\
--form "message[attachments][]=@/tmp/php54wg9Y" const url = new URL(
"http://localhost:8000/api/tickets"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('recipient', '1');
body.append('device', '1');
body.append('meeting_type', 'online_meeting');
body.append('meeting_date', '2026-03-20 16:20:59');
body.append('contact_email', 'mbrown@hotmail.com');
body.append('message[content]', 'Nesciunt et aut quos excepturi perferendis in quis.');
body.append('message[title]', 'Repellat ipsa aliquam non.');
body.append('message[attachments][]', document.querySelector('input[name="message[attachments][]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 53,
"sender_id": 191,
"recipient_id": 192,
"device_id": 125,
"meeting_date": "2026-03-20 16:21:00",
"meeting_type": "online_meeting",
"contact_email": "osinski.tessie@mcglynn.info",
"status": "new",
"created_at": "2026-03-20T16:21:01.000000Z",
"updated_at": "2026-03-20T16:21:01.000000Z",
"sender": {
"id": 191,
"mrn": "P8N82M0M1774023659",
"name": "Prof. Merlin Powlowski",
"email": "1774023659emilie68@example.net",
"language": "en",
"phone": "804.748.7148",
"phone_country": "GY",
"phone_verified_at": null,
"address1": "932 Monty Extensions Apt. 779",
"address2": "Arthurfurt, UT 55959",
"postal_code": "30592-1903",
"city": "Kemmer-Kirlin",
"country": "GB",
"clinic_name": "Larkinland",
"clinic_location": "2916 Will Way\nNorth Maceychester, OR 13274-9954",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:20:59.000000Z",
"updated_at": "2026-03-20T16:20:59.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 192,
"mrn": "USL2PRVG1774023660",
"name": "Zack Von DDS",
"email": "1774023660feeney.arvid@example.org",
"language": "en",
"phone": "680-220-9526",
"phone_country": "RO",
"phone_verified_at": null,
"address1": "691 Nicole Greens",
"address2": "Port Ethelynborough, ME 84821",
"postal_code": "14654-2778",
"city": "Lockman, Wisozk and Gleason",
"country": "DK",
"clinic_name": "Port Zoila",
"clinic_location": "32953 Nicolette Mountain Apt. 107\nZiememouth, DC 43885",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:21:00.000000Z",
"updated_at": "2026-03-20T16:21:00.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 125,
"serial": "98ff5582-f202-382b-8c74-6277f3949e3f",
"bluetooth_id": "0801bd3d-20b6-391b-ab36-739d7c6bc7c2",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:21:01.000000Z",
"updated_at": "2026-03-20T16:21:01.000000Z"
},
"messages": [
{
"id": 27,
"ticket_id": 53,
"sender_id": 193,
"title": "Prof.",
"content": "Rem nostrum recusandae laboriosam alias ipsa tempora deserunt aut.",
"is_read": false,
"created_at": "2026-03-20T16:21:03.000000Z",
"updated_at": "2026-03-20T16:21:03.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Close support ticket
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/close" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/close"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 61,
"sender_id": 205,
"recipient_id": 206,
"device_id": 126,
"meeting_date": "2026-03-20 16:21:11",
"meeting_type": "online_meeting",
"contact_email": "whowell@hotmail.com",
"status": "new",
"created_at": "2026-03-20T16:21:12.000000Z",
"updated_at": "2026-03-20T16:21:12.000000Z",
"sender": {
"id": 205,
"mrn": "6K0LOOO01774023671",
"name": "Dashawn Crona",
"email": "1774023671madisen.hagenes@example.com",
"language": "en",
"phone": "1-308-952-4282",
"phone_country": "TL",
"phone_verified_at": null,
"address1": "7413 Kellie Glens",
"address2": "South Adrienberg, MD 92270",
"postal_code": "23109",
"city": "Adams, Crona and Hauck",
"country": "MT",
"clinic_name": "New Karine",
"clinic_location": "238 Schoen Alley\nPort Abelmouth, OK 88681",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:21:11.000000Z",
"updated_at": "2026-03-20T16:21:11.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 206,
"mrn": "ICITHG5I1774023671",
"name": "Rebeka Rippin",
"email": "1774023671randy13@example.com",
"language": "en",
"phone": "352-475-7037",
"phone_country": "BW",
"phone_verified_at": null,
"address1": "595 Rodrick Key Apt. 083",
"address2": "East Neilstad, OR 74885",
"postal_code": "77286",
"city": "Bins-Senger",
"country": "GB",
"clinic_name": "New Irmaside",
"clinic_location": "49376 Gorczany Mews\nNorth Porter, WA 91819-5915",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:21:11.000000Z",
"updated_at": "2026-03-20T16:21:11.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 126,
"serial": "ec46047e-3372-3934-939f-221bdaf9dffd",
"bluetooth_id": "fdbfe263-f825-31f4-b28b-56e5e11b43d7",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:21:12.000000Z",
"updated_at": "2026-03-20T16:21:12.000000Z"
},
"messages": []
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to close support ticket",
"code": "TICKETS:CLOSE:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:CLOSE:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Reopen support ticket
requires authentication
Patient (Amputee) role can reopen only non-config tickets.
For config tickets patients will get "Insufficient permission" response.
For patients role reason field is required.
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/reopen" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"reason\": \"Something is still not working\"
}"
const url = new URL(
"http://localhost:8000/api/ticket/1/reopen"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"reason": "Something is still not working"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"ticket_id": 62,
"author_id": 208,
"action": "rerum",
"reason": "Quos possimus architecto harum omnis nihil est.",
"created_at": "2026-03-20T16:21:14.000000Z",
"updated_at": "2026-03-20T16:21:14.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to reopen support ticket",
"code": "TICKETS:REOPEN:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:REOPEN:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
History entry ID.
ticket_id
integer
Associated support ticket ID.
author_id
integer
ID of the user who made this change.
action
string
Action performed.
reason
string
Reason for the action.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
author
object
User who made this change.
Create new support ticket message
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/messages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "title=Nobis ad voluptate nesciunt."\
--form "content=Quia nulla praesentium vel excepturi fuga voluptatibus deleniti."\
--form "attachments[]=@/tmp/phpR2CH2g" const url = new URL(
"http://localhost:8000/api/ticket/1/messages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('title', 'Nobis ad voluptate nesciunt.');
body.append('content', 'Quia nulla praesentium vel excepturi fuga voluptatibus deleniti.');
body.append('attachments[]', document.querySelector('input[name="attachments[]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 63,
"sender_id": 209,
"recipient_id": 210,
"device_id": 127,
"meeting_date": "2026-03-20 16:21:14",
"meeting_type": "online_meeting",
"contact_email": "ashley.towne@schulist.net",
"status": "new",
"created_at": "2026-03-20T16:21:15.000000Z",
"updated_at": "2026-03-20T16:21:15.000000Z",
"sender": {
"id": 209,
"mrn": "9XVUY3P81774023674",
"name": "Prof. Antone Rau",
"email": "1774023674clint95@example.net",
"language": "en",
"phone": "+13603893463",
"phone_country": "FM",
"phone_verified_at": null,
"address1": "705 Satterfield Well",
"address2": "Philipport, CO 82695",
"postal_code": "03789-9185",
"city": "Lind and Sons",
"country": "BE",
"clinic_name": "Melodyburgh",
"clinic_location": "3414 Nasir Dam Suite 696\nSouth Vinniestad, VA 04502-9421",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:21:14.000000Z",
"updated_at": "2026-03-20T16:21:14.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 210,
"mrn": "PE6R8OY51774023674",
"name": "Prof. Eleanore Gislason",
"email": "1774023674mayer.guido@example.org",
"language": "en",
"phone": "1-567-972-0169",
"phone_country": "CW",
"phone_verified_at": null,
"address1": "21494 Morissette Estate",
"address2": "Keenanland, NE 63353",
"postal_code": "14289",
"city": "Thiel Group",
"country": "FI",
"clinic_name": "Alvahfurt",
"clinic_location": "54414 Nienow Village\nSouth Cliftonberg, MS 10846-7428",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:21:15.000000Z",
"updated_at": "2026-03-20T16:21:15.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 127,
"serial": "e817b8d2-029d-397f-bc8f-6f7923de56d6",
"bluetooth_id": "960c3d2d-8564-3631-a3b0-019a9ff25110",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:21:15.000000Z",
"updated_at": "2026-03-20T16:21:15.000000Z"
},
"messages": [
{
"id": 31,
"ticket_id": 63,
"sender_id": 211,
"title": "Dr.",
"content": "Dolor dolores inventore animi necessitatibus aperiam.",
"is_read": false,
"created_at": "2026-03-20T16:21:18.000000Z",
"updated_at": "2026-03-20T16:21:18.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:CREATE_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:CREATE_MESSAGE:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Mark all messages as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/read" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/read"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 71,
"sender_id": 223,
"recipient_id": 224,
"device_id": 128,
"meeting_date": "2026-03-20 16:21:25",
"meeting_type": "online_meeting",
"contact_email": "hansen.onie@hayes.com",
"status": "new",
"created_at": "2026-03-20T16:21:26.000000Z",
"updated_at": "2026-03-20T16:21:26.000000Z",
"sender": {
"id": 223,
"mrn": "YMTIQL7K1774023685",
"name": "Dr. Riley Bruen",
"email": "1774023685damore.melvin@example.com",
"language": "en",
"phone": "+1.701.674.6489",
"phone_country": "AF",
"phone_verified_at": null,
"address1": "21092 Lindgren Row Suite 767",
"address2": "Port Jamalport, KY 44789-6422",
"postal_code": "76889",
"city": "Kihn-Klocko",
"country": "IE",
"clinic_name": "Connellymouth",
"clinic_location": "889 Schmeler Alley Apt. 526\nSouth Rashawntown, GA 63646-0801",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:21:25.000000Z",
"updated_at": "2026-03-20T16:21:25.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 224,
"mrn": "HWR7M25B1774023685",
"name": "Prudence Davis",
"email": "1774023685tondricka@example.net",
"language": "en",
"phone": "678-431-5262",
"phone_country": "GF",
"phone_verified_at": null,
"address1": "137 Kaia Track",
"address2": "North Kameronfort, ME 08915-9212",
"postal_code": "07816",
"city": "Pfannerstill, Rogahn and Quitzon",
"country": "NL",
"clinic_name": "New Meredith",
"clinic_location": "787 Elias Skyway Suite 211\nWest Reggie, ID 09121",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:21:26.000000Z",
"updated_at": "2026-03-20T16:21:26.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 128,
"serial": "a15ae02e-0b68-3d06-a020-40dc57b9eff2",
"bluetooth_id": "db522ed5-532b-31f4-892d-b4cf591b19f7",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:21:26.000000Z",
"updated_at": "2026-03-20T16:21:26.000000Z"
},
"messages": [
{
"id": 35,
"ticket_id": 71,
"sender_id": 225,
"title": "Mrs.",
"content": "Et ut neque distinctio voluptatibus quia adipisci.",
"is_read": false,
"created_at": "2026-03-20T16:21:28.000000Z",
"updated_at": "2026-03-20T16:21:28.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to read message",
"code": "TICKETS:READ_ALL:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:READ_ALL:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Mark single message as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/read/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/read/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 79,
"sender_id": 237,
"recipient_id": 238,
"device_id": 129,
"meeting_date": "2026-03-20 16:21:36",
"meeting_type": "online_meeting",
"contact_email": "cwolff@yahoo.com",
"status": "new",
"created_at": "2026-03-20T16:21:37.000000Z",
"updated_at": "2026-03-20T16:21:37.000000Z",
"sender": {
"id": 237,
"mrn": "T9PDBBLD1774023696",
"name": "Alfonso Gleason",
"email": "1774023696runolfsson.ada@example.net",
"language": "en",
"phone": "504.614.7546",
"phone_country": "RS",
"phone_verified_at": null,
"address1": "17467 Jenkins Divide Suite 854",
"address2": "South Hollie, WY 22251",
"postal_code": "40459-9912",
"city": "Medhurst LLC",
"country": "DK",
"clinic_name": "Bruenside",
"clinic_location": "348 Rollin Parkway\nZboncakburgh, OK 63252",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:21:36.000000Z",
"updated_at": "2026-03-20T16:21:36.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 238,
"mrn": "HEXITOSE1774023696",
"name": "Catharine Hickle",
"email": "1774023696rory65@example.net",
"language": "en",
"phone": "337-785-3718",
"phone_country": "WF",
"phone_verified_at": null,
"address1": "22836 Nayeli Radial Suite 785",
"address2": "East Orlando, DE 83542",
"postal_code": "96213-6057",
"city": "Dare Inc",
"country": "NL",
"clinic_name": "Reillyborough",
"clinic_location": "369 Ramona Landing\nNorth Darianaport, CT 37780",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:21:36.000000Z",
"updated_at": "2026-03-20T16:21:36.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 129,
"serial": "1b7428a3-72ee-38c2-b5af-84ef7fefc10f",
"bluetooth_id": "49bc9f3f-231f-3816-8ba7-c286a4d7f900",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:21:37.000000Z",
"updated_at": "2026-03-20T16:21:37.000000Z"
},
"messages": [
{
"id": 39,
"ticket_id": 79,
"sender_id": 239,
"title": "Dr.",
"content": "Ratione quos rerum debitis qui eos.",
"is_read": false,
"created_at": "2026-03-20T16:21:40.000000Z",
"updated_at": "2026-03-20T16:21:40.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to read message",
"code": "TICKETS:READ_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "TICKETS:READ_MESSAGE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Support ticket ID.
sender_id
integer
ID of the user who created the ticket.
recipient_id
integer
ID of the recipient user.
device_id
integer
Associated device ID.
meeting_date
string
Scheduled meeting date.
meeting_type
string
Meeting type.
Must be one of:onlinein-person
contact_email
string
Contact email address.
status
string
Ticket status.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
sender
object
User who created the ticket.
recipient
object
Recipient user.
device
object
Associated device.
messages
object[]
Ticket messages.
Tooltips
API endpoints for managing tooltips
List tooltips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tooltips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Cordell Bosco",
"type": "image",
"language": "tr",
"file": "0",
"created_by": 301,
"created_at": "2026-03-20T16:22:33.000000Z",
"updated_at": "2026-03-20T16:22:33.000000Z",
"deleted_at": null
},
{
"id": 2,
"name": "Roel McClure II",
"type": "image",
"language": "fr",
"file": "0",
"created_by": 302,
"created_at": "2026-03-20T16:22:33.000000Z",
"updated_at": "2026-03-20T16:22:33.000000Z",
"deleted_at": null
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list tooltips",
"code": "TOOLTIPS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Tooltip ID.
name
string
Tooltip identifier name.
type
string
Media type.
Must be one of:imagevideo
language
string
Language code (ISO 639-1).
file
string
File path or URL.
created_by
integer
ID of the user who created the tooltip.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
List archived tooltips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tooltips/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"name": "Ressie Boyle",
"type": "image",
"language": "ca",
"file": "0",
"created_by": 303,
"created_at": "2026-03-20T16:22:34.000000Z",
"updated_at": "2026-03-20T16:22:34.000000Z",
"deleted_at": null
},
{
"id": 4,
"name": "Brant Parker",
"type": "image",
"language": "fy",
"file": "0",
"created_by": 304,
"created_at": "2026-03-20T16:22:35.000000Z",
"updated_at": "2026-03-20T16:22:35.000000Z",
"deleted_at": null
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:LIST_ARCHIVE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Tooltip ID.
name
string
Tooltip identifier name.
type
string
Media type.
Must be one of:imagevideo
language
string
Language code (ISO 639-1).
file
string
File path or URL.
created_by
integer
ID of the user who created the tooltip.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Create new tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=Emmy Lodge"\
--form "type=video"\
--form "language=ff"\
--form "file=@/tmp/phpkPuytL" const url = new URL(
"http://localhost:8000/api/tooltips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', 'Emmy Lodge');
body.append('type', 'video');
body.append('language', 'ff');
body.append('file', document.querySelector('input[name="file"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "Dexter Gutmann",
"type": "image",
"language": "de",
"file": "0",
"created_by": 305,
"created_at": "2026-03-20T16:22:36.000000Z",
"updated_at": "2026-03-20T16:22:36.000000Z",
"deleted_at": null
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (500, Server error):
{
"message": "Server error: tooltip not created",
"code": "TOOLTIPS:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Tooltip ID.
name
string
Tooltip identifier name.
type
string
Media type.
Must be one of:imagevideo
language
string
Language code (ISO 639-1).
file
string
File path or URL.
created_by
integer
ID of the user who created the tooltip.
deleted_at
string
Soft delete timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Archive tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips/1/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/1/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Tooltip archived",
"code": "TOOLTIPS:ARCHIVE:ARCHIVED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:ARCHIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Tooltip not found):
{
"message": "Tooltip not found",
"code": "TOOLTIPS:ARCHIVE:TOOLTIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Restore archived tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips/1/restore" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/1/restore"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Tooltip restored",
"code": "TOOLTIPS:RESTORE:RESTORED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:RESTORE:INSUFFICIENT_PERMISSION"
}
Example response (404, Tooltip not found):
{
"message": "Tooltip not found",
"code": "TOOLTIPS:RESTORE:TOOLTIP_NOT_FOUND"
}
Example response (404, Tooltip is not archived):
{
"message": "Tooltip is not archived",
"code": "TOOLTIPS:RESTORE:TOOLTIP_NOT_ARCHIVED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Trainings
API endpoints for trainings
Get user trainings
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 309,
"training_id": 2,
"notifications_enabled": 1,
"created_at": "2026-03-20T16:22:40.000000Z",
"updated_at": "2026-03-20T16:22:40.000000Z",
"training": {
"id": 2,
"name": "porro ipsum",
"created_at": "2026-03-20T16:22:40.000000Z",
"updated_at": "2026-03-20T16:22:40.000000Z"
}
},
{
"id": 2,
"user_id": 310,
"training_id": 4,
"notifications_enabled": 1,
"created_at": "2026-03-20T16:22:41.000000Z",
"updated_at": "2026-03-20T16:22:41.000000Z",
"training": {
"id": 4,
"name": "beatae optio",
"created_at": "2026-03-20T16:22:41.000000Z",
"updated_at": "2026-03-20T16:22:41.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Get trainings for specific user (clinician access)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"user_id": 311,
"training_id": 6,
"notifications_enabled": 1,
"created_at": "2026-03-20T16:22:42.000000Z",
"updated_at": "2026-03-20T16:22:42.000000Z",
"training": {
"id": 6,
"name": "et id",
"created_at": "2026-03-20T16:22:42.000000Z",
"updated_at": "2026-03-20T16:22:42.000000Z"
}
},
{
"id": 4,
"user_id": 312,
"training_id": 8,
"notifications_enabled": 1,
"created_at": "2026-03-20T16:22:42.000000Z",
"updated_at": "2026-03-20T16:22:42.000000Z",
"training": {
"id": 8,
"name": "distinctio et",
"created_at": "2026-03-20T16:22:42.000000Z",
"updated_at": "2026-03-20T16:22:42.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access patient training",
"code": "TRAININGS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "TRAININGS:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Get user badges
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/1/user-badges" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/user-badges"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 313,
"badge_id": 1,
"created_at": "2026-03-20T16:22:43.000000Z",
"updated_at": "2026-03-20T16:22:43.000000Z"
},
{
"id": 2,
"user_id": 314,
"badge_id": 2,
"created_at": "2026-03-20T16:22:44.000000Z",
"updated_at": "2026-03-20T16:22:44.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:BADGES:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:BADGES:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:BADGES:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User badge record ID.
user_id
integer
Associated user ID.
badge_id
integer
Associated badge ID.
created_at
string
Awarded timestamp.
updated_at
string
Last update timestamp.
Start user training
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/start/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/start/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 5,
"user_id": 315,
"training_id": 9,
"notifications_enabled": 1,
"created_at": "2026-03-20T16:22:45.000000Z",
"updated_at": "2026-03-20T16:22:45.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:START:INSUFFICIENT_PERMISSION"
}
Example response (403, User training already started):
{
"message": "Cannot start: training already started",
"code": "TRAININGS:START:ALREADY_STARTED"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:START:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Update training
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/trainings/update/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"notifications_enabled\": false
}"
const url = new URL(
"http://localhost:8000/api/trainings/update/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"notifications_enabled": false
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 6,
"user_id": 316,
"training_id": 10,
"notifications_enabled": 1,
"created_at": "2026-03-20T16:22:46.000000Z",
"updated_at": "2026-03-20T16:22:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:UPDATE:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:UPDATE:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Get training progress
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/progress/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/progress/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 7,
"user_id": 317,
"training_id": 11,
"notifications_enabled": 1,
"created_at": "2026-03-20T16:22:47.000000Z",
"updated_at": "2026-03-20T16:22:47.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:PROGRESS:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:PROGRESS:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Mark training task done
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/day/2/task/3" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/day/2/task/3"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200):
{
"id": 8,
"user_id": 318,
"training_id": 12,
"notifications_enabled": 1,
"created_at": "2026-03-20T16:22:48.000000Z",
"updated_at": "2026-03-20T16:22:48.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:MARK_DONE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:MARK_DONE:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:MARK_DONE:TRAINING_NOT_FOUND"
}
Example response (404, Training day not found):
{
"message": "Training day not found",
"code": "TRAININGS:MARK_DONE:TRAINING_DAY_NOT_FOUND"
}
Example response (404, Training task not found):
{
"message": "Training task not found",
"code": "TRAININGS:MARK_DONE:TRAINING_TASK_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User training ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
notifications_enabled
boolean
Whether notifications are enabled for this training.
streak
integer
Current training streak (days).
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
training
object
Training details.
Save training exercises attempts
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/day/2/task/3/attempts" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "exercises[][date_start]=2006-06-28 19:41:54"\
--form "exercises[][date_end]=1988-04-24 16:37:45"\
--form "exercises[][end_reason]=fail"\
--form "exercises[][config][common][fingerStrength][]=1"\
--form "exercises[][config][common][gripPositions][_]=0"\
--form "exercises[][config][common][gripPositions][0][initial][]=72"\
--form "exercises[][config][common][gripPositions][0][limit][]=81"\
--form "exercises[][config][common][gripPositions][1][initial][]=26"\
--form "exercises[][config][common][gripPositions][1][limit][]=30"\
--form "exercises[][config][common][gripPositions][2][initial][]=30"\
--form "exercises[][config][common][gripPositions][2][limit][]=81"\
--form "exercises[][config][common][gripPositions][3][initial][]=5"\
--form "exercises[][config][common][gripPositions][3][limit][]=58"\
--form "exercises[][config][common][gripPositions][4][initial][]=4"\
--form "exercises[][config][common][gripPositions][4][limit][]=71"\
--form "exercises[][config][common][gripPositions][5][initial][]=19"\
--form "exercises[][config][common][gripPositions][5][limit][]=64"\
--form "exercises[][config][common][gripPositions][6][initial][]=2"\
--form "exercises[][config][common][gripPositions][6][limit][]=92"\
--form "exercises[][config][common][gripPositions][7][initial][]=32"\
--form "exercises[][config][common][gripPositions][7][limit][]=54"\
--form "exercises[][config][common][gripPositions][8][initial][]=55"\
--form "exercises[][config][common][gripPositions][8][limit][]=94"\
--form "exercises[][config][common][gripPositions][9][initial][]=36"\
--form "exercises[][config][common][gripPositions][9][limit][]=66"\
--form "exercises[][config][common][gripPositions][10][initial][]=1"\
--form "exercises[][config][common][gripPositions][10][limit][]=54"\
--form "exercises[][config][common][gripPositions][11][initial][]=52"\
--form "exercises[][config][common][gripPositions][11][limit][]=55"\
--form "exercises[][config][common][gripPositions][12][initial][]=11"\
--form "exercises[][config][common][gripPositions][12][limit][]=49"\
--form "exercises[][config][common][gripPositions][13][initial][]=58"\
--form "exercises[][config][common][gripPositions][13][limit][]=71"\
--form "exercises[][config][common][inputSite][]=0"\
--form "exercises[][config][modes][][id]=83"\
--form "exercises[][config][modes][][name]=Qui et voluptatibus commodi ipsum sit porro."\
--form "exercises[][config][modes][][slot]=0"\
--form "exercises[][config][modes][][config][autoGrasp][]=1"\
--form "exercises[][config][modes][][config][coContractionTimings][]=400"\
--form "exercises[][config][modes][][config][controlMode][]=0"\
--form "exercises[][config][modes][][config][emgGains][]=100"\
--form "exercises[][config][modes][][config][emgSpike][]=0"\
--form "exercises[][config][modes][][config][emgThresholds][]=90"\
--form "exercises[][config][modes][][config][gripPairsConfig][]=10"\
--form "exercises[][config][modes][][config][gripSequentialConfig][]=255"\
--form "exercises[][config][modes][][config][gripSwitchingMode][]=1"\
--form "exercises[][config][modes][][config][holdOpen][]=2000"\
--form "exercises[][config][modes][][config][pulseTimings][]=260"\
--form "exercises[][config][modes][][config][softGrip][]=0"\
--form "exercises[][config][modes][][config][speedControlStrategy][]=0"\
--form "exercises[][firmware_id]=216"\
--form "exercises[][app_version]=8.99.91"\
--form "exercises[][attempts][][date_start]=1989-08-05 17:49:51"\
--form "exercises[][attempts][][date_end]=2019-12-21 20:35:04"\
--form "exercises[][attempts][][result]=success"\
--form "exercises[][emg_file]=@/tmp/phpOKDejL" const url = new URL(
"http://localhost:8000/api/trainings/1/day/2/task/3/attempts"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('exercises[][date_start]', '2006-06-28 19:41:54');
body.append('exercises[][date_end]', '1988-04-24 16:37:45');
body.append('exercises[][end_reason]', 'fail');
body.append('exercises[][config][common][fingerStrength][]', '1');
body.append('exercises[][config][common][gripPositions][_]', '0');
body.append('exercises[][config][common][gripPositions][0][initial][]', '72');
body.append('exercises[][config][common][gripPositions][0][limit][]', '81');
body.append('exercises[][config][common][gripPositions][1][initial][]', '26');
body.append('exercises[][config][common][gripPositions][1][limit][]', '30');
body.append('exercises[][config][common][gripPositions][2][initial][]', '30');
body.append('exercises[][config][common][gripPositions][2][limit][]', '81');
body.append('exercises[][config][common][gripPositions][3][initial][]', '5');
body.append('exercises[][config][common][gripPositions][3][limit][]', '58');
body.append('exercises[][config][common][gripPositions][4][initial][]', '4');
body.append('exercises[][config][common][gripPositions][4][limit][]', '71');
body.append('exercises[][config][common][gripPositions][5][initial][]', '19');
body.append('exercises[][config][common][gripPositions][5][limit][]', '64');
body.append('exercises[][config][common][gripPositions][6][initial][]', '2');
body.append('exercises[][config][common][gripPositions][6][limit][]', '92');
body.append('exercises[][config][common][gripPositions][7][initial][]', '32');
body.append('exercises[][config][common][gripPositions][7][limit][]', '54');
body.append('exercises[][config][common][gripPositions][8][initial][]', '55');
body.append('exercises[][config][common][gripPositions][8][limit][]', '94');
body.append('exercises[][config][common][gripPositions][9][initial][]', '36');
body.append('exercises[][config][common][gripPositions][9][limit][]', '66');
body.append('exercises[][config][common][gripPositions][10][initial][]', '1');
body.append('exercises[][config][common][gripPositions][10][limit][]', '54');
body.append('exercises[][config][common][gripPositions][11][initial][]', '52');
body.append('exercises[][config][common][gripPositions][11][limit][]', '55');
body.append('exercises[][config][common][gripPositions][12][initial][]', '11');
body.append('exercises[][config][common][gripPositions][12][limit][]', '49');
body.append('exercises[][config][common][gripPositions][13][initial][]', '58');
body.append('exercises[][config][common][gripPositions][13][limit][]', '71');
body.append('exercises[][config][common][inputSite][]', '0');
body.append('exercises[][config][modes][][id]', '83');
body.append('exercises[][config][modes][][name]', 'Qui et voluptatibus commodi ipsum sit porro.');
body.append('exercises[][config][modes][][slot]', '0');
body.append('exercises[][config][modes][][config][autoGrasp][]', '1');
body.append('exercises[][config][modes][][config][coContractionTimings][]', '400');
body.append('exercises[][config][modes][][config][controlMode][]', '0');
body.append('exercises[][config][modes][][config][emgGains][]', '100');
body.append('exercises[][config][modes][][config][emgSpike][]', '0');
body.append('exercises[][config][modes][][config][emgThresholds][]', '90');
body.append('exercises[][config][modes][][config][gripPairsConfig][]', '10');
body.append('exercises[][config][modes][][config][gripSequentialConfig][]', '255');
body.append('exercises[][config][modes][][config][gripSwitchingMode][]', '1');
body.append('exercises[][config][modes][][config][holdOpen][]', '2000');
body.append('exercises[][config][modes][][config][pulseTimings][]', '260');
body.append('exercises[][config][modes][][config][softGrip][]', '0');
body.append('exercises[][config][modes][][config][speedControlStrategy][]', '0');
body.append('exercises[][firmware_id]', '216');
body.append('exercises[][app_version]', '8.99.91');
body.append('exercises[][attempts][][date_start]', '1989-08-05 17:49:51');
body.append('exercises[][attempts][][date_end]', '2019-12-21 20:35:04');
body.append('exercises[][attempts][][result]', 'success');
body.append('exercises[][emg_file]', document.querySelector('input[name="exercises[][emg_file]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 319,
"training_task_id": 1,
"date_start": "2023-07-19 09:00:28",
"date_end": "2009-08-13 10:54:49",
"end_reason": "ticketCreated",
"config": "{\"common\":{\"fingerStrength\":[1,300],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[58,9,13,13,30],\"limit\":[85,52,79,24,93]},\"1\":{\"initial\":[4,58,40,30,16],\"limit\":[84,81,86,45,48]},\"2\":{\"initial\":[11,22,9,63,47],\"limit\":[11,47,48,79,71]},\"3\":{\"initial\":[62,38,34,27,70],\"limit\":[93,83,51,41,94]},\"4\":{\"initial\":[50,73,25,58,42],\"limit\":[76,74,70,63,73]},\"5\":{\"initial\":[66,6,21,15,43],\"limit\":[68,27,61,34,62]},\"6\":{\"initial\":[40,23,8,14,30],\"limit\":[75,59,61,14,31]},\"7\":{\"initial\":[50,49,38,60,45],\"limit\":[61,77,62,80,74]},\"8\":{\"initial\":[26,3,9,76,8],\"limit\":[36,31,64,78,38]},\"9\":{\"initial\":[16,73,1,8,1],\"limit\":[41,93,45,89,63]},\"10\":{\"initial\":[40,33,40,13,35],\"limit\":[92,44,72,49,44]},\"11\":{\"initial\":[22,41,9,78,30],\"limit\":[30,91,74,82,65]},\"12\":{\"initial\":[24,23,41,70,20],\"limit\":[38,84,46,85,42]},\"13\":{\"initial\":[17,10,39,34,79],\"limit\":[76,95,85,39,88]}},\"inputSite\":[0]},\"modes\":[{\"id\":86,\"name\":\"Numquam a soluta asperiores quisquam est accusamus similique cum.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[400,200],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[50,0,80,0,90,60,90,0,30,90],\"gripPairsConfig\":[4,13,7,1,3,2,6,12],\"gripSequentialConfig\":[12,255,8,6,1,11,255,3,255,255,10,2],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2000],\"pulseTimings\":[400,380,890,20],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":87,\"name\":\"Doloremque aut quam esse enim.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[200,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[50,0,10,10,90,20,80,0,10,70],\"gripPairsConfig\":[9,6,7,10,1,11,5,13],\"gripSequentialConfig\":[255,13,5,2,255,255,1,4,6,7,9,12],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,1500],\"pulseTimings\":[310,430,780,30],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":88,\"name\":\"Totam vel sunt sapiente optio alias.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[500,500],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[80,60,20,50,0,20,70,40,100,0],\"gripPairsConfig\":[10,3,8,7,1,13,4,5],\"gripSequentialConfig\":[9,255,255,3,12,1,4,11,7,5,6,2],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2000],\"pulseTimings\":[300,610,70,380],\"softGrip\":[1],\"speedControlStrategy\":[0]}}]}",
"firmware_id": 24,
"app_version": "9.21.28",
"emg_file": "/tmp/fakermMzH8z",
"created_at": "2026-03-20T16:22:49.000000Z",
"updated_at": "2026-03-20T16:22:49.000000Z",
"attempts": [
{
"id": 1,
"training_log_id": 1,
"date_start": "2022-09-16 20:36:39",
"date_end": "2022-09-10 14:34:22",
"result": "failure",
"created_at": "2026-03-20T16:22:50.000000Z",
"updated_at": "2026-03-20T16:22:50.000000Z"
}
]
},
{
"id": 3,
"user_id": 321,
"training_task_id": 3,
"date_start": "1978-03-19 04:19:56",
"date_end": "1989-03-09 00:23:03",
"end_reason": "ticketCreated",
"config": "{\"common\":{\"fingerStrength\":[1,100],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[6,14,8,65,56],\"limit\":[94,80,53,77,70]},\"1\":{\"initial\":[48,4,35,8,23],\"limit\":[58,53,69,34,33]},\"2\":{\"initial\":[2,24,48,91,54],\"limit\":[94,38,78,91,87]},\"3\":{\"initial\":[14,38,25,16,13],\"limit\":[68,41,38,93,88]},\"4\":{\"initial\":[15,72,57,59,23],\"limit\":[65,87,88,69,80]},\"5\":{\"initial\":[8,3,4,7,72],\"limit\":[65,84,72,25,81]},\"6\":{\"initial\":[23,13,35,21,48],\"limit\":[60,22,88,26,78]},\"7\":{\"initial\":[31,29,60,2,10],\"limit\":[83,92,79,53,80]},\"8\":{\"initial\":[11,88,9,14,15],\"limit\":[28,89,38,69,22]},\"9\":{\"initial\":[44,65,91,2,60],\"limit\":[77,66,94,14,90]},\"10\":{\"initial\":[28,62,25,66,19],\"limit\":[76,70,30,91,61]},\"11\":{\"initial\":[14,34,8,21,1],\"limit\":[92,82,27,71,14]},\"12\":{\"initial\":[22,17,4,23,37],\"limit\":[79,59,5,47,39]},\"13\":{\"initial\":[1,33,58,40,17],\"limit\":[92,79,92,71,41]}},\"inputSite\":[0]},\"modes\":[{\"id\":92,\"name\":\"Temporibus aut pariatur ut expedita est ex id.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,300],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[60,20,100,10,60,40,60,10,90,60],\"gripPairsConfig\":[13,10,8,11,2,5,6,1],\"gripSequentialConfig\":[255,255,9,10,4,11,255,3,13,255,6,5],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,1500],\"pulseTimings\":[990,980,320,470],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":93,\"name\":\"Ipsa eligendi repellendus cum deleniti.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[300,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[60,30,70,50,60,90,10,40,60,90],\"gripPairsConfig\":[6,12,9,7,11,3,13,4],\"gripSequentialConfig\":[2,4,10,5,255,255,1,6,255,9,7,255],\"gripSwitchingMode\":[3],\"holdOpen\":[2000,2000],\"pulseTimings\":[1000,370,290,860],\"softGrip\":[0],\"speedControlStrategy\":[1]}},{\"id\":94,\"name\":\"Commodi cumque vel ipsum placeat.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[200,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[60,100,50,90,40,40,30,50,60,40],\"gripPairsConfig\":[11,6,5,12,10,3,4,1],\"gripSequentialConfig\":[255,10,9,7,13,4,255,11,255,6,2,12],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2000],\"pulseTimings\":[420,850,460,300],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"firmware_id": 26,
"app_version": "3.41.75",
"emg_file": "/tmp/fakerC0tw6F",
"created_at": "2026-03-20T16:22:51.000000Z",
"updated_at": "2026-03-20T16:22:51.000000Z",
"attempts": [
{
"id": 2,
"training_log_id": 3,
"date_start": "2007-12-23 17:41:43",
"date_end": "1970-05-27 01:19:35",
"result": "failure",
"created_at": "2026-03-20T16:22:51.000000Z",
"updated_at": "2026-03-20T16:22:51.000000Z"
}
]
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:SAVE_ATTEMPTS:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:SAVE_ATTEMPTS:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:SAVE_ATTEMPTS:TRAINING_NOT_FOUND"
}
Example response (404, Training day not found):
{
"message": "Training day not found",
"code": "TRAININGS:SAVE_ATTEMPTS:TRAINING_DAY_NOT_FOUND"
}
Example response (404, Training task not found):
{
"message": "Training task not found",
"code": "TRAININGS:SAVE_ATTEMPTS:TRAINING_TASK_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Training log entry ID.
user_id
integer
Associated user ID.
training_task_id
integer
Associated training task ID.
date_start
string
Session start datetime.
date_end
string
Session end datetime.
end_reason
string
Reason the session ended.
config
string
Device config snapshot at time of session.
firmware_id
integer
Firmware version ID used during session.
app_version
string
App version used during session.
emg_file
string
EMG data file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
attempts
object[]
Training log attempts.
Get reward status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/1/reward" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/reward"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, Reward status):
{
"status": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:REWARD_STATUS:INSUFFICIENT_PERMISSION"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:REWARD_STATUS:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Save reward details
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/reward" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"digital\",
\"country\": \"IN\",
\"delivery\": \"home_delivery\",
\"email\": \"jroberts@rogahn.net\",
\"phone\": \"(539) 485-1414\",
\"full_name\": \"Green Walsh\",
\"address1\": \"627 Dominic Dale\",
\"address2\": \"Suite 582\",
\"city\": \"Port Reuben\",
\"postal_code\": \"32585\",
\"state\": \"ASPERNATUR\",
\"parcel_locker_code\": \"EJHQOF2V\",
\"pin_code\": \"709591\"
}"
const url = new URL(
"http://localhost:8000/api/trainings/1/reward"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "digital",
"country": "IN",
"delivery": "home_delivery",
"email": "jroberts@rogahn.net",
"phone": "(539) 485-1414",
"full_name": "Green Walsh",
"address1": "627 Dominic Dale",
"address2": "Suite 582",
"city": "Port Reuben",
"postal_code": "32585",
"state": "ASPERNATUR",
"parcel_locker_code": "EJHQOF2V",
"pin_code": "709591"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 1,
"user_id": 323,
"training_id": 21,
"type": "physical",
"country": "HR",
"delivery": "home_delivery",
"email": "levi67@hotmail.com",
"phone": "423.573.8267",
"full_name": "Rachael Stehr",
"address1": "7592 Rae Wall Apt. 801",
"address2": "1659 Tristin Place Apt. 091\nRussellville, AR 19601-1390",
"city": "Port Dianna",
"postal_code": "81091",
"state": "LABORUM",
"parcel_locker_code": "R1QMZ68N",
"pin_code": "742340",
"created_at": "2026-03-20T16:22:52.000000Z",
"updated_at": "2026-03-20T16:22:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:REWARD_SAVE:INSUFFICIENT_PERMISSION"
}
Example response (403, Reward details already exists):
{
"message": "Reward details already exists",
"code": "TRAININGS:REWARD_SAVE:ALREADY_EXISTS"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:REWARD_SAVE:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User reward ID.
user_id
integer
Associated user ID.
training_id
integer
Associated training ID.
type
string
Reward type.
Must be one of:digitalphysical
country
string
Delivery country code.
delivery
string
Delivery method.
Must be one of:home_deliveryparcel_locker
email
string
Recipient email.
phone
string
Recipient phone.
full_name
string
Recipient full name.
address1
string
Delivery address line 1.
address2
string
Delivery address line 2.
city
string
Delivery city.
postal_code
string
Delivery postal code.
state
string
Delivery state.
parcel_locker_code
string
Parcel locker code.
pin_code
string
PIN code for delivery.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Get user progress (clinician view)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/progress/facere/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/progress/facere/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"number": 1,
"key": "openClose",
"status": "completed",
"status_updated_at": "2026-02-04 11:00:00"
},
{
"number": 2,
"key": "holdOpen",
"status": "in_progress",
"status_updated_at": "2026-02-05 09:00:00"
},
{
"number": 3,
"key": "changeSignal",
"status": "not_started",
"status_updated_at": null
},
{
"number": 4,
"key": "thumbPositioning",
"status": "not_started",
"status_updated_at": null
},
{
"number": 5,
"key": "sequentialAndPairingMode",
"status": "not_started",
"status_updated_at": null
},
{
"number": 6,
"key": "fingerSpeedTraining",
"status": "not_started",
"status_updated_at": null
},
{
"number": 7,
"key": "freezeMode",
"status": "not_started",
"status_updated_at": null
},
{
"number": 8,
"key": "coreSkillsTest",
"status": "not_started",
"status_updated_at": null
},
{
"number": 9,
"key": "powerSoftGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 10,
"key": "precisionGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 11,
"key": "tripodGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 12,
"key": "keyGrip",
"status": "not_started",
"status_updated_at": null
},
{
"number": 13,
"key": "gripSelection",
"status": "not_started",
"status_updated_at": null
},
{
"number": 14,
"key": "finalGripAndControlTest",
"status": "not_started",
"status_updated_at": null
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access patient training",
"code": "TRAININGS:PROGRESS_CLINICIAN:INSUFFICIENT_PERMISSION"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:PROGRESS_CLINICIAN:TRAINING_NOT_FOUND"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "TRAININGS:PROGRESS_CLINICIAN:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Users
API endpoints for user management
Get users list
requires authentication
Possible extend options:
- clinicians - users assigned to this user as clinicians (for Amputee role)
- patients - users assigned to this user as patients (for ClinicAdmin/Clinician/ClinicianSupport role)
- devices - products assigned to user (for Amputee role)
- devicesAsClinician - products assigned to user as clinician (for ClinicAdmin/Clinician/ClinicianSupport role)
- roles - user roles
- permissions - user permissions (for ClinicianSupport role)
Example request:
curl --request GET \
--get "http://localhost:8000/api/users?search=Tom&active=-1&clinician[]=6&roles=Clinician%2CAmputee&has_devices=1&user_toggles=goals%2Ctrainings" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/users"
);
const params = {
"search": "Tom",
"active": "-1",
"clinician[0]": "6",
"roles": "Clinician,Amputee",
"has_devices": "1",
"user_toggles": "goals,trainings",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 7,
"mrn": "G2THCZVY1774023499",
"name": "Dr. Carter Mosciski",
"email": "1774023499gbaumbach@example.com",
"language": "en",
"phone": "423.356.7070",
"phone_country": "UZ",
"phone_verified_at": null,
"address1": "155 Lakin Bypass",
"address2": "New Eda, TX 64051-7320",
"postal_code": "95481",
"city": "Will-Abernathy",
"country": "PT",
"clinic_name": "New Donnieton",
"clinic_location": "8267 Kreiger Spring Apt. 624\nFranzhaven, TX 76036",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:19.000000Z",
"updated_at": "2026-03-20T16:18:19.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"clinicians": [
{
"id": 8,
"mrn": "BS8PLSOT1774023500",
"name": "Ewell Thiel",
"email": "1774023500lexi.altenwerth@example.org",
"language": "en",
"phone": "847-615-6858",
"phone_country": "VC",
"phone_verified_at": null,
"address1": "5364 Horace Circles Apt. 797",
"address2": "Harveyborough, VA 20495-5427",
"postal_code": "74218-3201",
"city": "Sanford, Hand and Zulauf",
"country": "GB",
"clinic_name": "Fridamouth",
"clinic_location": "6375 Lind Islands Apt. 934\nLake Kittystad, SD 38367-0304",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:20.000000Z",
"updated_at": "2026-03-20T16:18:20.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"pivot": {
"user_id": 7,
"assigned_user_id": 8
},
"roles": []
}
],
"devices": [
{
"id": 1,
"serial": "a43c8fb6-5198-3690-8ed7-cd7cb10c64d7",
"bluetooth_id": "683a8c34-8a4f-3489-a2c8-46491a18f039",
"company_id": null,
"model_id": null,
"amputee_id": 7,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:21.000000Z",
"updated_at": "2026-03-20T16:18:21.000000Z"
}
],
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
},
{
"id": 9,
"mrn": "Z96YA3IH1774023501",
"name": "Prof. Raymundo Johnson",
"email": "1774023501mruecker@example.net",
"language": "en",
"phone": "+1-607-335-6946",
"phone_country": "BF",
"phone_verified_at": null,
"address1": "924 Geo Gateway",
"address2": "North Bettechester, CO 38262-1163",
"postal_code": "41320",
"city": "Brakus, Glover and Hoppe",
"country": "DK",
"clinic_name": "New Felipaview",
"clinic_location": "55114 Dean Rue Suite 493\nRobertsview, MO 34047-1521",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:21.000000Z",
"updated_at": "2026-03-20T16:18:21.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"clinicians": [
{
"id": 10,
"mrn": "MDGR249D1774023501",
"name": "Merle Shields DDS",
"email": "1774023501treutel.clint@example.net",
"language": "en",
"phone": "+1-254-337-1621",
"phone_country": "LC",
"phone_verified_at": null,
"address1": "10946 Josiane Groves Suite 270",
"address2": "New Nayelishire, SC 90397",
"postal_code": "55483-6903",
"city": "Ritchie-Rowe",
"country": "ES",
"clinic_name": "East Olaside",
"clinic_location": "260 Boehm Rue Apt. 311\nHermanmouth, AR 11094-5221",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:22.000000Z",
"updated_at": "2026-03-20T16:18:22.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"pivot": {
"user_id": 9,
"assigned_user_id": 10
},
"roles": []
}
],
"devices": [
{
"id": 2,
"serial": "b82616b2-656a-30b6-9539-dad9de372614",
"bluetooth_id": "7ec3f9c8-1184-3696-b47d-ca18c5265aa8",
"company_id": null,
"model_id": null,
"amputee_id": 9,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:22.000000Z",
"updated_at": "2026-03-20T16:18:22.000000Z"
}
],
"roles": [
{
"id": 1,
"name": "SuperAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user list",
"code": "USERS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Get current user data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/me" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/me"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 11,
"mrn": "QM8G8S601774023502",
"name": "Margarett Kuphal",
"email": "1774023502rosenbaum.ashlynn@example.com",
"language": "en",
"phone": "+1-810-429-1171",
"phone_country": "AI",
"phone_verified_at": null,
"address1": "300 Schumm Village",
"address2": "North Dayton, NY 36977-8748",
"postal_code": "31929-8624",
"city": "Larkin-Osinski",
"country": "IN",
"clinic_name": "Jessyville",
"clinic_location": "720 Loren Prairie Suite 628\nHuelside, DE 39125",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:22.000000Z",
"updated_at": "2026-03-20T16:18:22.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Get other user data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 12,
"mrn": "S5B92WLZ1774023503",
"name": "Dr. Chester Dibbert",
"email": "1774023503elyse37@example.org",
"language": "en",
"phone": "+14849997177",
"phone_country": "BS",
"phone_verified_at": null,
"address1": "7703 Gaylord Well Suite 855",
"address2": "Hayesmouth, OR 09833",
"postal_code": "47828",
"city": "Zieme-Beahan",
"country": "IE",
"clinic_name": "West Kaylinhaven",
"clinic_location": "8043 Vesta Lodge Suite 382\nMargretmouth, TX 62260",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:23.000000Z",
"updated_at": "2026-03-20T16:18:23.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user data",
"code": "USERS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:GET:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Create new user account
requires authentication
Predefined permissions:
user.view- access to view users' data (GET /user/{id} endpoint)user.update- access to update users' data (PUT /user/{id} and POST /user/{id}/phone endpoints)user.passwordChange- access to change users' passwords (POST /user/{id}/password endpoint)user.devices- access to list of users' devices (GET /user/{id}/devices endpoint)user.tickets.view- access to listing and viewing ticketsuser.tickets.update- access to updating tickets (marking messages as read)user.tickets.send- access to sending messages in ticketsuser.tickets.close- access to closing ticketsuser.goals- access to view or manage users' goals
Example request:
curl --request POST \
"http://localhost:8000/api/user" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "mrn=MRN12345678"\
--form "name=Tom Smith"\
--form "email=test@example.com"\
--form "language=en"\
--form "address1=44222 Purdy Wall Suite 973"\
--form "address2=Smithside, GA 84180-4701"\
--form "postal_code=35614"\
--form "city=Hassieside"\
--form "country=GB"\
--form "clinic_name=Aether"\
--form "clinic_location=44222 Purdy Wall Suite 973"\
--form "mfa_enabled=1"\
--form "mfa_method=email"\
--form "clinicians[]=2"\
--form "notifications_timezone=Europe/Warsaw"\
--form "notifications_at=8:00"\
--form "role=Amputee"\
--form "image=@/tmp/phpFujudJ" const url = new URL(
"http://localhost:8000/api/user"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('mrn', 'MRN12345678');
body.append('name', 'Tom Smith');
body.append('email', 'test@example.com');
body.append('language', 'en');
body.append('address1', '44222 Purdy Wall Suite 973');
body.append('address2', 'Smithside, GA 84180-4701');
body.append('postal_code', '35614');
body.append('city', 'Hassieside');
body.append('country', 'GB');
body.append('clinic_name', 'Aether');
body.append('clinic_location', '44222 Purdy Wall Suite 973');
body.append('mfa_enabled', '1');
body.append('mfa_method', 'email');
body.append('clinicians[]', '2');
body.append('notifications_timezone', 'Europe/Warsaw');
body.append('notifications_at', '8:00');
body.append('role', 'Amputee');
body.append('image', document.querySelector('input[name="image"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 13,
"mrn": "42IUFFLP1774023504",
"name": "Prof. Destini Hirthe III",
"email": "1774023504joseph.brakus@example.org",
"language": "en",
"phone": "475.647.2822",
"phone_country": "IN",
"phone_verified_at": null,
"address1": "20904 Swaniawski Spur Apt. 674",
"address2": "Rosettahaven, SC 10996",
"postal_code": "25981-3806",
"city": "Balistreri Group",
"country": "DK",
"clinic_name": "Reganville",
"clinic_location": "4467 Boehm Heights\nNorth Brandy, NH 29474-0942",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:24.000000Z",
"updated_at": "2026-03-20T16:18:24.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create user with given role",
"code": "USERS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "USERS:CREATE:EMAIL_IN_USE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Update user account
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "mrn=MRN12345678"\
--form "name=Tom Smith"\
--form "email=test@example.com"\
--form "language=en"\
--form "address1=65422 Clarabelle Prairie"\
--form "address2=Mosciskiberg, MI 89804"\
--form "postal_code=47307"\
--form "city=Port Martyside"\
--form "country=BE"\
--form "clinic_name=Aether"\
--form "clinic_location=65422 Clarabelle Prairie"\
--form "image_delete=1"\
--form "mfa_enabled=1"\
--form "mfa_method=email"\
--form "active=1"\
--form "clinicians[]=2"\
--form "notifications_timezone=Europe/Warsaw"\
--form "notifications_at=8:00"\
--form "role=Amputee"\
--form "image=@/tmp/phptdcKDS" const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('mrn', 'MRN12345678');
body.append('name', 'Tom Smith');
body.append('email', 'test@example.com');
body.append('language', 'en');
body.append('address1', '65422 Clarabelle Prairie');
body.append('address2', 'Mosciskiberg, MI 89804');
body.append('postal_code', '47307');
body.append('city', 'Port Martyside');
body.append('country', 'BE');
body.append('clinic_name', 'Aether');
body.append('clinic_location', '65422 Clarabelle Prairie');
body.append('image_delete', '1');
body.append('mfa_enabled', '1');
body.append('mfa_method', 'email');
body.append('active', '1');
body.append('clinicians[]', '2');
body.append('notifications_timezone', 'Europe/Warsaw');
body.append('notifications_at', '8:00');
body.append('role', 'Amputee');
body.append('image', document.querySelector('input[name="image"]').files[0]);
fetch(url, {
method: "PUT",
headers,
body,
}).then(response => response.json());Example response (202):
{
"id": 14,
"mrn": "QVLX0OPN1774023505",
"name": "Eloy Douglas",
"email": "1774023505wpagac@example.com",
"language": "en",
"phone": "(620) 279-9965",
"phone_country": "AX",
"phone_verified_at": null,
"address1": "660 Leone Knoll",
"address2": "North Alishaview, MA 95150-4557",
"postal_code": "49690-9474",
"city": "Beier, Barrows and West",
"country": "SK",
"clinic_name": "Patsyville",
"clinic_location": "61272 Kirlin Isle Apt. 656\nLeuschkeport, IL 51014",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-03-20T16:18:25.000000Z",
"updated_at": "2026-03-20T16:18:25.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "Amputee"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Insufficient permission to assign role):
{
"message": "Insufficient permission to assign this role as ClinicAdmin",
"code": "USERS:UPDATE:INSUFFICIENT_PERMISSION_ASSIGN_ROLE"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:UPDATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
User ID.
mrn
string
Medical Record Number.
name
string
User full name.
email
string
User email address.
language
string
User preferred language.
phone
string
User phone number.
phone_country
string
Phone country code.
phone_verified_at
string
Phone verification date.
address1
string
Address line 1.
address2
string
Address line 2.
postal_code
string
Postal code.
city
string
City.
country
string
Country code (ISO 3166 Alpha-2).
clinic_name
string
Clinic name.
clinic_location
string
Clinic location.
image
string
User profile image URL.
mfa_enabled
boolean
Whether MFA is enabled.
mfa_method
string
Preferred MFA method.
mfa_verified_to
string
MFA session verified until.
location_id
integer
Location ID.
created_by
integer
ID of the user who created this account.
active
boolean
Whether the user account is active.
notifications_timezone
string
Timezone for notifications.
notifications_at
string
Preferred notification time.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
invitation_status
string
User invitation status.
acadle_invitation_status
string
Acadle invitation status.
roles
object[]
User roles.
id
integer
Role ID.
name
string
Role name.
permissions
object[]
User permissions.
clinicians
object[]
Assigned clinicians.
devices
object[]
Assigned devices.
patients
object[]
Assigned patients.
invitations
object[]
User invitations.
Update user phone number
requires authentication
Phone number has to be verified after update.
Call /api/mfa/phone/verify with user-filled code after performing this operation.
If value is "0" phone number will be removed without any verification.
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/phone" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"phone\": \"+1 (208) 892-0242\",
\"phone_country\": \"US\"
}"
const url = new URL(
"http://localhost:8000/api/user/1/phone"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone": "+1 (208) 892-0242",
"phone_country": "US"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, Phone number removed):
{
"message": "Phone number removed",
"code": "USERS:SET_PHONE:REMOVED"
}
Example response (200, Phone number updated):
{
"message": "Verification code sent. Call /api/mfa/phone/verify to verify phone number.",
"code": "USERS:SET_PHONE:UPDATED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:SET_PHONE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:SET_PHONE:USER_NOT_FOUND"
}
Example response (500, Code send failed):
{
"message": "Verification code sending failed",
"code": "USERS:SET_PHONE:SEND_FAILED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete user account
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User deleted",
"code": "USERS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete user",
"code": "USERS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has existing patients or chat rooms):
{
"message": "Cannot delete: user has existing patients or chat rooms (patients: 1, chat rooms: 0)",
"code": "USERS:DELETE:HAS_PATIENTS"
}
Example response (403, User has existing devices):
{
"message": "Cannot delete: user has existing devices (as patient: 1, as clinician: 0)",
"code": "USERS:DELETE:HAS_DEVICES"
}
Example response (403, User has open P2P sessions):
{
"message": "Cannot delete: user has open P2P sessions (as patient: 0, as clinician: 1)",
"code": "USERS:DELETE:HAS_P2P_SESSIONS"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DELETE:USER_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: user not deleted",
"code": "USERS:DELETE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete own user account
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User deleted",
"code": "USERS:SELF_DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete user",
"code": "USERS:SELF_DELETE:INSUFFICIENT_PERMISSION"
}
Example response (500, Server error):
{
"message": "Server error: user not deleted",
"code": "USERS:SELF_DELETE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Change other user password
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/password" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"password\": \"voluptas\"
}"
const url = new URL(
"http://localhost:8000/api/user/1/password"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"password": "voluptas"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "User password changed",
"code": "USERS:PASSWORD_CHANGE:CHANGED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to change user password",
"code": "USERS:PASSWORD_CHANGE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:PASSWORD_CHANGE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user devices list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/devices" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/devices"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"serial": "36cda010-0d88-3be0-8ddb-6b19f2745374",
"bluetooth_id": "ef861bb9-e0cc-3388-9b82-a5ffaa4a6fb0",
"company_id": null,
"model_id": 1,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:26.000000Z",
"updated_at": "2026-03-20T16:18:26.000000Z",
"model": {
"id": 1,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "left",
"active": 1,
"created_at": "2026-03-20T16:18:26.000000Z",
"updated_at": "2026-03-20T16:18:26.000000Z"
}
},
{
"id": 4,
"serial": "48ce7bc0-badd-3c1e-98f0-24cd48e2eec0",
"bluetooth_id": "3c6fae90-9399-38f7-af28-527aeca0489e",
"company_id": null,
"model_id": 2,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-03-20T16:18:26.000000Z",
"updated_at": "2026-03-20T16:18:26.000000Z",
"model": {
"id": 2,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-03-20T16:18:26.000000Z",
"updated_at": "2026-03-20T16:18:26.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user devices",
"code": "USERS:DEVICES:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DEVICES:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Device ID.
serial
string
Device serial number.
bluetooth_id
string
Bluetooth identifier.
model_id
integer
Device model ID.
amputee_id
integer
Assigned patient (amputee) user ID.
firmware_version_id
integer
Firmware version ID.
pcb_version_id
integer
PCB version ID.
company_id
integer
Company ID.
reverse_magnets
boolean
Whether magnets are reversed.
is_electrode
boolean
Whether this device is an electrode.
active
boolean
Whether the device is active.
last_activity_at
string
Last activity timestamp.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
model
object
Device model details.
id
integer
Device model ID.
name
string
Model name.
type
string
Model type.
orientation
string
Model orientation.
active
boolean
Whether the model is active.
amputee
object
Assigned patient (amputee) user.
id
integer
User ID.
name
string
User full name.
email
string
User email address.
clinicians
object[]
Clinicians assigned to this device.
firmwareVersion
object
Firmware version details.
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
pcbVersion
object
PCB version details.
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
joinedDevices
object[]
Joined hand devices.
joinedElectrodes
object[]
Joined electrode devices.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Attach patient to clinician
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/attach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"name@domain.com\"
}"
const url = new URL(
"http://localhost:8000/api/user/attach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "name@domain.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Patient attached",
"code": "USERS:ATTACH:ATTACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to attach patients",
"code": "USERS:ATTACH:INSUFFICIENT_PERMISSION"
}
Example response (403, Patient is already assigned to another clinician):
{
"message": "Patient is already assigned to another clinician",
"code": "USERS:ATTACH:ALREADY_ASSIGNED"
}
Example response (403, User reached the temporary limit of attached devices):
{
"message": "Reached the limit of assigned devices",
"code": "USERS:ATTACH:LIMIT_REACHED"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:ATTACH:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Detach patient from clinician
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/detach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/detach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Patient detached",
"code": "USERS:DETACH:DETACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to detach patient",
"code": "USERS:DETACH:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot detach last clinician):
{
"message": "Cannot detach patient's last clinician",
"code": "USERS:DETACH:CANNOT_DETACH_LAST_CLINICIAN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DETACH:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Admin access to MFA codes
requires authentication
Requires admin.mfa_access permission.
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/mfa-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/mfa-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"id": 1,
"user_id": 1,
"code": "123456",
"channel": "email",
"expires": "2025-05-09 12:00:00"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access MFA codes",
"code": "USERS:ADMIN_MFA_ACCESS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:ADMIN_MFA_ACCESS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user mobile consents
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/consents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/consents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 1,
"name": "modi",
"value": "repellat",
"created_at": "1990-04-05T12:16:39.000000Z",
"updated_at": "2011-01-27T12:02:00.000000Z"
},
{
"id": 2,
"user_id": 1,
"name": "officia",
"value": "quo",
"created_at": "1980-02-25T02:54:50.000000Z",
"updated_at": "1983-04-06T16:43:50.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use mobile consents",
"code": "USERS:GET_MOBILE_CONSENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Consent record ID.
user_id
integer
Associated user ID.
name
string
Consent name/key.
value
string
Consent value.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Set user mobile consent
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/consents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Push notifications\",
\"value\": 1
}"
const url = new URL(
"http://localhost:8000/api/consents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Push notifications",
"value": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"user_id": 1,
"name": "temporibus",
"value": "ipsa",
"created_at": "2022-10-22T10:36:47.000000Z",
"updated_at": "1978-03-02T16:14:08.000000Z"
},
{
"id": 4,
"user_id": 1,
"name": "officiis",
"value": "accusantium",
"created_at": "1992-03-15T19:08:25.000000Z",
"updated_at": "1988-11-03T23:28:10.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use mobile consents",
"code": "USERS:SET_MOBILE_CONSENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Consent record ID.
user_id
integer
Associated user ID.
name
string
Consent name/key.
value
string
Consent value.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Clear user notifications
requires authentication
Clearing notifications allow to receive another notification on same day. This endpoint deletes notifications of type:
- daily activity reminders
- goals daily summary
This endpoint is intended for testing use only.Example request:
curl --request DELETE \
"http://localhost:8000/api/notifications/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/notifications/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"messages": "1 notifications deleted",
"code": "USERS:CLEAR_NOTIFICATIONS:CLEARED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:CLEAR_NOTIFICATIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:CLEAR_NOTIFICATIONS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Versions
API endpoints for versions management
Get software versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/software" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/software"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "5.3.9",
"created_at": "2026-03-20T16:21:50.000000Z",
"updated_at": "2026-03-20T16:21:50.000000Z"
},
{
"id": 2,
"name": "8.22.99",
"created_at": "2026-03-20T16:21:50.000000Z",
"updated_at": "2026-03-20T16:21:50.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "SOFTWARE_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Software version ID.
name
string
Version name.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create software version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/software" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\"
}"
const url = new URL(
"http://localhost:8000/api/versions/software"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "9.57.59",
"created_at": "2026-03-20T16:21:50.000000Z",
"updated_at": "2026-03-20T16:21:50.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "SOFTWARE_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Software version ID.
name
string
Version name.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete software version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/software/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/software/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "SOFTWARE_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "SOFTWARE_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "SOFTWARE_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "SOFTWARE_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get firmware versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/firmware" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 2,
"name": "3.93.85",
"file_firmware": "/tmp/faker3QYqYj",
"file_firmware_v2": "/tmp/fakerC4hoRq",
"file_firmware_v3": "/tmp/fakerELraaz",
"file_firmware_v4": "/tmp/faker0bFjUP",
"file_firmware_v5": "/tmp/fakercRdbqP",
"file_firmware_new_pcb": "/tmp/fakerKmUFig",
"file_bootloader": "/tmp/fakerHJnkz0",
"file_bootloader_v2": "/tmp/fakerCBKXwt",
"file_bootloader_v3": "/tmp/fakerhmT1nz",
"file_bootloader_v4": "/tmp/fakerO0EBcM",
"changelog": "Eveniet fugiat qui et porro in. Et doloribus commodi unde numquam.",
"created_at": "2026-03-20T16:21:50.000000Z",
"updated_at": "2026-03-20T16:21:50.000000Z"
},
{
"id": 3,
"name": "1.24.22",
"file_firmware": "/tmp/fakerN0YynJ",
"file_firmware_v2": "/tmp/fakerLONKML",
"file_firmware_v3": "/tmp/faker9UxLB6",
"file_firmware_v4": "/tmp/fakerk9ygEx",
"file_firmware_v5": "/tmp/fakertK5wKI",
"file_firmware_new_pcb": "/tmp/fakeriLep6G",
"file_bootloader": "/tmp/fakerxRHJ1S",
"file_bootloader_v2": "/tmp/faker65sW2m",
"file_bootloader_v3": "/tmp/fakerivRRg3",
"file_bootloader_v4": "/tmp/fakerpzQB5g",
"changelog": "In laborum qui est dolores aliquid. Facere quia tempore reprehenderit sit repudiandae assumenda consequatur. Perferendis blanditiis blanditiis iste odit debitis ea. Qui dolor asperiores atque sit.",
"created_at": "2026-03-20T16:21:50.000000Z",
"updated_at": "2026-03-20T16:21:50.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "FIRMWARE_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create firmware version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/firmware" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=1.0"\
--form "models[]=1"\
--form "changelog[][language]=en"\
--form "changelog[][changelog]=Fixed bug with the connection"\
--form "file_firmware=@/tmp/php71LKIq" \
--form "file_firmware_v2=@/tmp/phpfk6uu0" \
--form "file_firmware_v3=@/tmp/phpWOfu2K" \
--form "file_firmware_v4=@/tmp/phpoLoHHD" \
--form "file_firmware_v5=@/tmp/php7VzOEz" \
--form "file_firmware_new_pcb=@/tmp/phpLdK37R" \
--form "file_bootloader=@/tmp/phpDyoM8N" \
--form "file_bootloader_v2=@/tmp/phphN4mtn" \
--form "file_bootloader_v3=@/tmp/phpl2bCkL" \
--form "file_bootloader_v4=@/tmp/phpkNTU0w" const url = new URL(
"http://localhost:8000/api/versions/firmware"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', '1.0');
body.append('models[]', '1');
body.append('changelog[][language]', 'en');
body.append('changelog[][changelog]', 'Fixed bug with the connection');
body.append('file_firmware', document.querySelector('input[name="file_firmware"]').files[0]);
body.append('file_firmware_v2', document.querySelector('input[name="file_firmware_v2"]').files[0]);
body.append('file_firmware_v3', document.querySelector('input[name="file_firmware_v3"]').files[0]);
body.append('file_firmware_v4', document.querySelector('input[name="file_firmware_v4"]').files[0]);
body.append('file_firmware_v5', document.querySelector('input[name="file_firmware_v5"]').files[0]);
body.append('file_firmware_new_pcb', document.querySelector('input[name="file_firmware_new_pcb"]').files[0]);
body.append('file_bootloader', document.querySelector('input[name="file_bootloader"]').files[0]);
body.append('file_bootloader_v2', document.querySelector('input[name="file_bootloader_v2"]').files[0]);
body.append('file_bootloader_v3', document.querySelector('input[name="file_bootloader_v3"]').files[0]);
body.append('file_bootloader_v4', document.querySelector('input[name="file_bootloader_v4"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "5.81.21",
"file_firmware": "/tmp/fakerFtM5oR",
"file_firmware_v2": "/tmp/fakers12Jd5",
"file_firmware_v3": "/tmp/fakerZcHQYf",
"file_firmware_v4": "/tmp/fakerDjLT5w",
"file_firmware_v5": "/tmp/fakery6VaVQ",
"file_firmware_new_pcb": "/tmp/fakeraKRMBg",
"file_bootloader": "/tmp/fakerEFJuuw",
"file_bootloader_v2": "/tmp/fakergyZQUd",
"file_bootloader_v3": "/tmp/fakerQtlXAf",
"file_bootloader_v4": "/tmp/fakerfHDra6",
"changelog": "Minus cupiditate facilis accusantium culpa alias. Aut doloremque iure hic id cupiditate. Deserunt perspiciatis in nihil consequuntur. Commodi rerum porro et molestiae.",
"created_at": "2026-03-20T16:21:50.000000Z",
"updated_at": "2026-03-20T16:21:50.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "FIRMWARE_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update firmware version
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/firmware/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=1.0"\
--form "models[]=1"\
--form "file_firmware_delete=1"\
--form "file_firmware_v2_delete=1"\
--form "file_firmware_v3_delete=1"\
--form "file_firmware_v4_delete=1"\
--form "file_firmware_v5_delete=1"\
--form "file_firmware_new_pcb_delete=1"\
--form "file_bootloader_delete=1"\
--form "file_bootloader_v2_delete=1"\
--form "file_bootloader_v3_delete=1"\
--form "file_bootloader_v4_delete=1"\
--form "changelog[][language]=en"\
--form "changelog[][changelog]=Fixed bug with the connection"\
--form "file_firmware=@/tmp/phpgpsrYm" \
--form "file_firmware_v2=@/tmp/phpoj72t4" \
--form "file_firmware_v3=@/tmp/phpSo5zQe" \
--form "file_firmware_v4=@/tmp/phpH6LgqS" \
--form "file_firmware_v5=@/tmp/phpI0Mp9w" \
--form "file_firmware_new_pcb=@/tmp/phpX0C7eI" \
--form "file_bootloader=@/tmp/phpLKXvWK" \
--form "file_bootloader_v2=@/tmp/phpuAo8R3" \
--form "file_bootloader_v3=@/tmp/phpfMKdjZ" \
--form "file_bootloader_v4=@/tmp/phpk2hWjT" const url = new URL(
"http://localhost:8000/api/versions/firmware/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', '1.0');
body.append('models[]', '1');
body.append('file_firmware_delete', '1');
body.append('file_firmware_v2_delete', '1');
body.append('file_firmware_v3_delete', '1');
body.append('file_firmware_v4_delete', '1');
body.append('file_firmware_v5_delete', '1');
body.append('file_firmware_new_pcb_delete', '1');
body.append('file_bootloader_delete', '1');
body.append('file_bootloader_v2_delete', '1');
body.append('file_bootloader_v3_delete', '1');
body.append('file_bootloader_v4_delete', '1');
body.append('changelog[][language]', 'en');
body.append('changelog[][changelog]', 'Fixed bug with the connection');
body.append('file_firmware', document.querySelector('input[name="file_firmware"]').files[0]);
body.append('file_firmware_v2', document.querySelector('input[name="file_firmware_v2"]').files[0]);
body.append('file_firmware_v3', document.querySelector('input[name="file_firmware_v3"]').files[0]);
body.append('file_firmware_v4', document.querySelector('input[name="file_firmware_v4"]').files[0]);
body.append('file_firmware_v5', document.querySelector('input[name="file_firmware_v5"]').files[0]);
body.append('file_firmware_new_pcb', document.querySelector('input[name="file_firmware_new_pcb"]').files[0]);
body.append('file_bootloader', document.querySelector('input[name="file_bootloader"]').files[0]);
body.append('file_bootloader_v2', document.querySelector('input[name="file_bootloader_v2"]').files[0]);
body.append('file_bootloader_v3', document.querySelector('input[name="file_bootloader_v3"]').files[0]);
body.append('file_bootloader_v4', document.querySelector('input[name="file_bootloader_v4"]').files[0]);
fetch(url, {
method: "PUT",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "6.10.76",
"file_firmware": "/tmp/fakeruEdnom",
"file_firmware_v2": "/tmp/fakerGYq1HB",
"file_firmware_v3": "/tmp/faker3w0WPP",
"file_firmware_v4": "/tmp/fakerwd4tSS",
"file_firmware_v5": "/tmp/fakerbDKhJL",
"file_firmware_new_pcb": "/tmp/fakerva0AWU",
"file_bootloader": "/tmp/fakerw2fqNB",
"file_bootloader_v2": "/tmp/fakerfNnxtG",
"file_bootloader_v3": "/tmp/fakerb5wYgG",
"file_bootloader_v4": "/tmp/fakerHdBOWf",
"changelog": "Nihil rerum illum perspiciatis alias molestias sit. Aut temporibus veritatis ea. Ea qui non optio rerum consequatur aut est. Atque consequatur voluptas nesciunt officia.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions",
"code": "FIRMWARE_VERSION:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "FIRMWARE_VERSION:UPDATE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Firmware version ID.
name
string
Version name.
file_firmware
string
Firmware file URL.
file_firmware_v2
string
Firmware v2 file URL.
file_firmware_v3
string
Firmware v3 file URL.
file_firmware_v4
string
Firmware v4 file URL.
file_firmware_v5
string
Firmware v5 file URL.
file_firmware_new_pcb
string
New PCB firmware file URL.
file_bootloader
string
Bootloader file URL.
file_bootloader_v2
string
Bootloader v2 file URL.
file_bootloader_v3
string
Bootloader v3 file URL.
file_bootloader_v4
string
Bootloader v4 file URL.
changelog
string
Changelog file URL.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete firmware version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/firmware/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "FIRMWARE_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "FIRMWARE_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "FIRMWARE_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (403, Version in use (device)):
{
"message": "Cannot delete: version is assigned to devices (1)",
"code": "FIRMWARE_VERSION:DELETE:VERSION_IN_USE_DEVICE"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "FIRMWARE_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get PCB versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/pcb" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/pcb"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 2,
"name": "9.22.5",
"hardware_id": "",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
},
{
"id": 3,
"name": "0.4.67",
"hardware_id": "",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "PCB_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Create PCB version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/pcb" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\",
\"models\": [
1
],
\"hardware_id\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/versions/pcb"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0",
"models": [
1
],
"hardware_id": "1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "7.11.31",
"hardware_id": "",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "PCB_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Update PCB version
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/pcb/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\",
\"models\": [
1
],
\"hardware_id\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/versions/pcb/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0",
"models": [
1
],
"hardware_id": "1"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "3.77.87",
"hardware_id": "",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions",
"code": "PCB_VERSION:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "PCB_VERSION:UPDATE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
PCB version ID.
name
string
Version name.
hardware_id
string
Hardware identifier.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
Delete PCB version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/pcb/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/pcb/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "PCB_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "PCB_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "PCB_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (403, Version in use (device)):
{
"message": "Cannot delete: version is assigned to devices (1)",
"code": "PCB_VERSION:DELETE:VERSION_IN_USE_DEVICE"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "PCB_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List compatibilities
requires authentication
Most typical scenarios to use compatibility matrix:
- full matrix (no filters) - for admin panel displaying,
- filtered by all of the versions (software, firmware, PCB and device model) - for checking specific scenario compatibility and supported features.
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/compatibility?model=1&software=1.2&firmware=1.5&pcb=1.0&summary=" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/compatibility"
);
const params = {
"model": "1",
"software": "1.2",
"firmware": "1.5",
"pcb": "1.0",
"summary": "0",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_model_id": 10,
"software_version_id": 4,
"firmware_version_id": 14,
"pcb_version_id": 6,
"is_fully_compatible": 0,
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"features": [
{
"id": 1,
"compatibility_id": 1,
"feature_id": 5,
"is_compatible": 0,
"reason": "Sed debitis ipsa non sequi earum fugit et. Suscipit tenetur perspiciatis iure sint praesentium dolorem asperiores.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"feature": {
"id": 5,
"name": "navy",
"slug": "reprehenderit-ut-ipsum-et-recusandae-commodi-laudantium",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
},
{
"id": 2,
"compatibility_id": 1,
"feature_id": 7,
"is_compatible": 1,
"reason": "Qui et nemo est rerum alias dolor inventore. Et sunt nam optio expedita. Deleniti quod accusamus sed velit ipsam voluptatem sint.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"feature": {
"id": 7,
"name": "fuchsia",
"slug": "consectetur-qui-sequi-voluptatum-consequatur-numquam-assumenda-quidem",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
},
{
"id": 3,
"compatibility_id": 1,
"feature_id": 9,
"is_compatible": 1,
"reason": "Odio qui vero quis repellat modi voluptatibus. Hic deserunt accusamus pariatur enim recusandae vero dolores. Voluptate sunt dolor reiciendis blanditiis accusamus quia unde consequatur.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"feature": {
"id": 9,
"name": "fuchsia",
"slug": "qui-debitis-in-est-ipsum-rerum",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
}
]
},
{
"id": 5,
"device_model_id": 14,
"software_version_id": 8,
"firmware_version_id": 18,
"pcb_version_id": 10,
"is_fully_compatible": 0,
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"features": [
{
"id": 4,
"compatibility_id": 5,
"feature_id": 10,
"is_compatible": 1,
"reason": "Voluptas ut a illo eos. Et in voluptas et ducimus molestias sed. Veniam quisquam velit repellat nihil. Nobis cum explicabo et asperiores dolores.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"feature": {
"id": 10,
"name": "olive",
"slug": "odio-odio-sapiente-illum-qui-accusamus-veniam-quas",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
},
{
"id": 5,
"compatibility_id": 5,
"feature_id": 12,
"is_compatible": 0,
"reason": "Et voluptatem vel sed aperiam voluptatum sit. Laboriosam placeat distinctio voluptas voluptates.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"feature": {
"id": 12,
"name": "purple",
"slug": "quasi-dolorum-nulla-occaecati-enim-ullam",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
},
{
"id": 6,
"compatibility_id": 5,
"feature_id": 14,
"is_compatible": 0,
"reason": "Tempora nobis quae enim reprehenderit culpa consequatur. Repudiandae ad vero ipsam porro in atque similique. Id qui error saepe accusamus.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"feature": {
"id": 14,
"name": "lime",
"slug": "vero-voluptas-architecto-ab-aut-aut",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions compatibilities",
"code": "COMPATIBILITY:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device model not found):
{
"message": "Device model not found",
"code": "COMPATIBILITY:LIST:DEVICE_MODEL_NOT_FOUND"
}
Example response (404, Software version not found):
{
"message": "Software version not found",
"code": "COMPATIBILITY:LIST:SOFTWARE_VERSION_NOT_FOUND"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "COMPATIBILITY:LIST:FIRMWARE_VERSION_NOT_FOUND"
}
Example response (404, PCB version not found):
{
"message": "PCB version not found",
"code": "COMPATIBILITY:LIST:PCB_VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
items
object
id
integer
Compatibility entry ID.
device_model_id
integer
Associated device model ID.
software_version_id
integer
Associated software version ID.
firmware_version_id
integer
Associated firmware version ID.
pcb_version_id
integer
Associated PCB version ID.
is_fully_compatible
boolean
Whether all versions are fully compatible.
note
string
Compatibility note.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
features
object[]
Associated compatibility features.
paginator
object
total
integer
Total number of items.
count
integer
Number of items on current page.
perpage
integer
Items per page.
current_page
integer
Current page number.
last_page
integer
Last page number.
Add compatibility
requires authentication
Adds or updates compatibility matrix with assigned features. You can specify many versions for each list.
Example request:
curl --request POST \
"http://localhost:8000/api/versions/compatibility" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"device_models\": [
1
],
\"software_versions\": [
1
],
\"firmware_versions\": [
1
],
\"pcb_versions\": [
1
],
\"is_fully_compatible\": true,
\"features\": [
{
\"feature_id\": 1,
\"compatible\": true,
\"reason\": \"Firmware does not support...\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/versions/compatibility"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"device_models": [
1
],
"software_versions": [
1
],
"firmware_versions": [
1
],
"pcb_versions": [
1
],
"is_fully_compatible": true,
"features": [
{
"feature_id": 1,
"compatible": true,
"reason": "Firmware does not support..."
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"added": 1,
"updated": 0,
"not_changed": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add versions compatibility",
"code": "COMPATIBILITY:ADD:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update compatibility
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/compatibility/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"device_model_id\": 4,
\"software_version_id\": 5,
\"firmware_version_id\": 13,
\"pcb_version_id\": 20,
\"is_fully_compatible\": true,
\"features\": [
{
\"id\": 1,
\"feature_id\": 1,
\"compatible\": true,
\"reason\": \"Firmware does not support...\",
\"delete\": true
}
]
}"
const url = new URL(
"http://localhost:8000/api/versions/compatibility/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"device_model_id": 4,
"software_version_id": 5,
"firmware_version_id": 13,
"pcb_version_id": 20,
"is_fully_compatible": true,
"features": [
{
"id": 1,
"feature_id": 1,
"compatible": true,
"reason": "Firmware does not support...",
"delete": true
}
]
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 9,
"device_model_id": 18,
"software_version_id": 12,
"firmware_version_id": 22,
"pcb_version_id": 14,
"is_fully_compatible": 1,
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"features": [
{
"id": 7,
"compatibility_id": 9,
"feature_id": 15,
"is_compatible": 0,
"reason": "Doloremque quo voluptatum dolorem quasi. Quidem at molestiae alias nam ipsa et id. Doloribus corrupti voluptatem minus laborum officia illum. A tempora fuga amet dignissimos explicabo.",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z",
"feature": {
"id": 15,
"name": "maroon",
"slug": "sunt-repellat-consequuntur-sint-cupiditate-et-fugit-tenetur",
"created_at": "2026-03-20T16:21:51.000000Z",
"updated_at": "2026-03-20T16:21:51.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions compatibility",
"code": "COMPATIBILITY:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Versions Compatibility not found):
{
"message": "Versions compatibility not found",
"code": "COMPATIBILITY:UPDATE:COMPATIBILITY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Compatibility entry ID.
device_model_id
integer
Associated device model ID.
software_version_id
integer
Associated software version ID.
firmware_version_id
integer
Associated firmware version ID.
pcb_version_id
integer
Associated PCB version ID.
is_fully_compatible
boolean
Whether all versions are fully compatible.
note
string
Compatibility note.
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
features
object[]
Associated compatibility features.
Delete compatibility
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/compatibility/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/compatibility/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Versions compatibility deleted",
"code": "COMPATIBILITY:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions compatibility",
"code": "COMPATIBILITY:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Versions compatibility not found):
{
"message": "Versions compatibility not found",
"code": "COMPATIBILITY:DELETE:COMPATIBILITY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Video sessions
API endpoints for managing video sessions
List video sessions
requires authentication
Returns list of open video sessions. For most cases there should be exactly one entry (open/active session) or exactly zero entries (empty array, no open sessions).
Example request:
curl --request GET \
--get "http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"moderator_id": 122,
"guest_id": 123,
"jwt_moderator": "9d00fae582c656aa275464e75f6121ac5b54d918eb9268c5ac07a0478586cceb",
"jwt_guest": "ed68511884c42fd03769885fda404e617b59e9c20ff26e0864290df6ec2255ef",
"room_name": "room_4290b6f1e48d23a38dc2b181ba771302",
"expires": 1774024501,
"status": "open",
"created_at": "2026-03-20T16:20:03.000000Z",
"updated_at": "2026-03-20T16:20:03.000000Z"
},
{
"id": 2,
"moderator_id": 126,
"guest_id": 127,
"jwt_moderator": "e72901c3007359b4e2153ad2d6fe358dd823a47ac828b62720f1d3621b82e605",
"jwt_guest": "ad77e3cdf20ac859365d5e0f31e657c330625876e715f4def32520694d827714",
"room_name": "room_5ec395248ea241bf9cc4d1c2cc2b9389",
"expires": 1774024504,
"status": "open",
"created_at": "2026-03-20T16:20:06.000000Z",
"updated_at": "2026-03-20T16:20:06.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access video session",
"code": "VIDEO_SESSIONS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "VIDEO_SESSIONS:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Video session ID.
moderator_id
integer
Moderator user ID.
guest_id
integer
Guest user ID.
jwt_moderator
string
JWT token for the moderator.
jwt_guest
string
JWT token for the guest.
room_name
string
Video room name.
expires
integer
Session expiry as Unix timestamp.
status
string
Session status.
Must be one of:openexpiredclosed
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
moderator
object
Moderator user.
guest
object
Guest user.
Initialize video session
requires authentication
Creates JWT (JSON Web Token) and room name for Jitsi session. Logged-in user is a moderator of the session. JWT lifetime is 15 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 3,
"moderator_id": 130,
"guest_id": 131,
"jwt_moderator": "5ad1ebea0aafeb88c3114324ceb91db18605e498e476a787b5c2d2aec09d31e0",
"jwt_guest": "2969e7b867c99c3a0942b20ee9dd216c8a3ea8de17c99bf912d1dcee971c681f",
"room_name": "room_ef19e00cfeb809a4d261dd6ee3a865e6",
"expires": 1774024508,
"status": "open",
"created_at": "2026-03-20T16:20:09.000000Z",
"updated_at": "2026-03-20T16:20:09.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to initialize video session",
"code": "VIDEO_SESSIONS:INIT:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "VIDEO_SESSIONS:INIT:USER_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error",
"code": "VIDEO_SESSIONS:INIT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Video session ID.
moderator_id
integer
Moderator user ID.
guest_id
integer
Guest user ID.
jwt_moderator
string
JWT token for the moderator.
jwt_guest
string
JWT token for the guest.
room_name
string
Video room name.
expires
integer
Session expiry as Unix timestamp.
status
string
Session status.
Must be one of:openexpiredclosed
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
moderator
object
Moderator user.
guest
object
Guest user.
Refresh video session
requires authentication
Refreshes video session JWT tokens to extend session lifetime.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/1/refresh" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1/refresh"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 4,
"moderator_id": 134,
"guest_id": 135,
"jwt_moderator": "594810adcbee20bd1d6f8e4cee51efdf1a235691e9d08fe96ce944d7fde34fd6",
"jwt_guest": "507b91e6b0ae6ea80e7c0d1642304ce8cd713527d36db297fef1504598ecd79c",
"room_name": "room_2cdba7a7061c566443d80936ccebed95",
"expires": 1774024511,
"status": "open",
"created_at": "2026-03-20T16:20:13.000000Z",
"updated_at": "2026-03-20T16:20:13.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to refresh video session",
"code": "VIDEO_SESSIONS:REFRESH:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "Video session not found",
"code": "VIDEO_SESSIONS:REFRESH:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
id
integer
Video session ID.
moderator_id
integer
Moderator user ID.
guest_id
integer
Guest user ID.
jwt_moderator
string
JWT token for the moderator.
jwt_guest
string
JWT token for the guest.
room_name
string
Video room name.
expires
integer
Session expiry as Unix timestamp.
status
string
Session status.
Must be one of:openexpiredclosed
created_at
string
Creation timestamp.
updated_at
string
Last update timestamp.
moderator
object
Moderator user.
guest
object
Guest user.
Close video session
requires authentication
Marks video session (database entry) as closed. Does not close session on Jitsi side.
Example request:
curl --request DELETE \
"http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Video session closed",
"code": "VIDEO_SESSIONS:CLOSE:CLOSED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to close video session",
"code": "VIDEO_SESSIONS:CLOSE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "Video session not found",
"code": "VIDEO_SESSIONS:CLOSE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Invite technical support
requires authentication
Sends notification to Slack channel. Link to meeting is valid for 10 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/invite-support/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"room\": \"room_1081c785cf1464e4d6ebc3976561d490\",
\"description\": \"Grip switching is not working, please join.\"
}"
const url = new URL(
"http://localhost:8000/api/sessions/video/invite-support/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"room": "room_1081c785cf1464e4d6ebc3976561d490",
"description": "Grip switching is not working, please join."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"response": "success",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:SUCCESS"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to invite tech support",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:DEVICE_NOT_FOUND"
}
Example response (500, Request failed):
{
"response": "invalid_payload",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:FAILED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.