Introduction
This documentation aims to provide all the information you need to work with our API.
Authenticating requests
To authenticate requests, include an Authorization header with the value "Bearer {ACCESS_TOKEN}".
All authenticated endpoints are marked with a requires authentication badge in the documentation below.
Token based authentication
You can retrieve your access token by calling api/login endpoint.
Access tokens are valid 7 days, then expire. You can obtain new access token with expiring access token by calling /api/token/refresh. You can only refresh still valid tokens, otherwise new request to api/login will be required.
Cookie based authentication
You can also authenticate using cookie-based sessions. Before calling any other endpoints you have to obtain XSRF cookie by hitting /sanctum/csrf-cookie endpoint.
In return you receive XSRF-TOKEN cookie, which content you have to attach to each request as X-XSRF-TOKEN header.
Then call /login endpoint. When your authenticated session is created, call any endpoint using X-XSRF-TOKEN header.
Multi-Factor Authorization (MFA)
User can protect its account setting up the MFA as email or one-time passwords (OTP).
If mfa_enabled is set to 1 and mfa_method is set to any of email or otp values,
user will have to use preferred method as second factor on login.
If mfa_method is email, API will automatically send MFA code to user's email inbox.
Most of API endpoints are secured with additional layer and cannot be properly called without this second-factor authorization done.
Instead of endpoint response API will reply with message "MFA is required for this request." and HTTP code 401 Unauthorized.
That means user did not successfully authorized itself with second-factor.
Multi-Factor Authorization (MFA) - Remember Session
The user has the option to remember their device, which means they won't have to enter the MFA code for 30 days.
If using a Token based authentication, you need to add a header named X-MFA-Session-Token with the value {mfa_token} obtained from the /verify endpoint.
Appendix A. Laravel validation rules
List of validation codes returned for Laravel's built-in validation rules:
Code
Description
MUST_BE_ACCEPTED
The field must be accepted. Value must be one of:
1, true, "yes" or "on".MUST_BE_ACCEPTED_IF:other:value
The field must be accepted if
other field equals to value. Accepted values are the same as in MUST_BE_ACCEPTED.MUST_BE_ACTIVE_URL
The field must be an active URL address with a valid A or AAAA record according to the
dns_get_record PHP function.MUST_BE_AFTER:date
The field must be a date that is after a specified
date.MUST_BE_AFTER_OR_EQUAL:date
The field must be a date that is after or equal to a specified
date.MUST_CONTAIN_ONLY_LETTERS
The field must contain only letters.
MUST_CONTAIN_ONLY_LETTERS_NUMBERS_DASHES_UNDERSCORES
The field must contain only letters, numbers, dashes and underscores.
MUST_CONTAIN_ONLY_LETTERS_NUMBERS
The field must contain only letters and numbers.
MUST_BE_ARRAY
The field must be an array.
MUST_BE_BEFORE:date
The field must be a date that is before a specified
date.MUST_BE_BEFORE_OR_EQUAL:date
The field must be a date that is before or equal to a specified
date.BETWEEN:NUMBERS:min:max
The field must be a number between
min and max.BETWEEN:FILE_KB:min:max
The field must be a file with a size between
min and max KB.BETWEEN:STRING_LENGTH:min:max
The field must be a string with a length between
min and max.BETWEEN:ARRAY_COUNT:min:max
The field must be an array with between
min and max elements.MUST_BE_BOOLEAN
The field must be a boolean. Accepted values include:
true, false, 1, 0, "1" and "0".MUST_BE_CONFIRMED
The field must have a matching confirmation field named
{field}_confirmation.MUST_BE_CURRENT_PASSWORD
The field must match the authenticated user's current password.
MUST_BE_DATE
The field must be a valid date according to the
strtotime PHP function.MUST_EQUAL_DATE:date
The field must be a date equal to the specified
date.MUST_BE_DATE_FORMAT:format
The field must match the given date format.
MUST_BE_DIFFERENT:other
The field must have a different value than the field named
other.MUST_HAVE_DIGITS:digits
The field must be numeric and contain exactly
digits digits.MUST_HAVE_DIGITS_BETWEEN:min:max
The field must be numeric and contain between
min and max digits.INVALID_IMAGE_DIMENSIONS
The uploaded image has invalid dimensions.
MUST_BE_DISTINCT
The field's values must not contain any duplicates.
MUST_BE_EMAIL
The field must be a valid email address.
MUST_END_WITH:value
The field must end with
value.MUST_EXIST:table.column
The field's value must already exist in the specified database table and column.
MUST_BE_FILE
The field must be a file.
MUST_HAVE_A_VALUE
The field must have a non-empty value.
GREATER_THAN:NUMBER:value
The field must be numeric and greater than
value.GREATER_THAN:FILE_KB:value
The field must be a file with a size greater than
value KB.GREATER_THAN:STRING_LENGTH:value
The field must be a string with a length greater than
value.GREATER_THAN:ARRAY_COUNT:value
The field must be an array with have more than
value elements.GREATER_THAN_OR_EQUALS:NUMBER:value
The field must be numeric and greater than or equal to
value.GREATER_THAN_OR_EQUALS:FILE_KB:value
The field must be a file with a size greater than or equal to
value KB.GREATER_THAN_OR_EQUALS:STRING_LENGTH:value
The field must be a string with a length greater than or equal to
value.GREATER_THAN_OR_EQUALS:ARRAY_COUNT:value
The field must be an array with at least
value elements.MUST_BE_IMAGE
The field must be an image.
MUST_BE_IN:values
The field value must be on of the
values list.MUST_BE_IN_ARRAY:other
The field's value must exist in the
other field values.MUST_BE_INTEGER
The field must be an integer.
MUST_BE_IP_ADDRESS
The field must be a valid IP address.
MUST_BE_IPV4_ADDRESS
The field must be a valid IPv4 address.
MUST_BE_IPV6_ADDRESS
The field must be a valid IPv6 address.
MUST_BE_JSON
The field must contain valid JSON.
LESS_THAN:NUMBER:value
The field must be numeric and less than
value.LESS_THAN:FILE_KB:value
The field must be a file with a size less than
value KB.LESS_THAN:STRING_LENGTH:value
The field must be a string with a length less than
value.LESS_THAN:ARRAY_COUNT:value
The field must be an array with fewer than
value elements.LESS_THAN_OR_EQUALS:NUMBER:value
The field must be numeric and less than or equal to
value.LESS_THAN_OR_EQUALS:FILE_KB:value
The field must be a file with a size less than or equal to
value KB.LESS_THAN_OR_EQUALS:STRING_LENGTH:value
The field must be a string with a length less than or equal to
value.LESS_THAN_OR_EQUALS:ARRAY_COUNT:value
The field must be an array with no more than
value elements.MAXIMUM:NUMBER:value
The field must be numeric and must not exceed the
value.MAXIMUM:FILE_KB:value
The field must be a file with a size no greater than
value KB.MAXIMUM:STRING_LENGTH:value
The field must be a string with a maximum length equal to
value.MAXIMUM:ARRAY_COUNT:value
The field must be an array with no more than
value elements.MUST_BE_MIME_OF:values
The field must be a file with one of the given file extensions, for example: pdf, png, mpeg.
Note that the rule uses file extensions, but Laravel internally verifies the actual MIME type using the file's contents.
Note that the rule uses file extensions, but Laravel internally verifies the actual MIME type using the file's contents.
MUST_BE_MIMETYPE_OF:values
The field must be a file matching one of the specified MIME types, such as: application/pdf, image/png, video/mpeg.
MINIMUM:NUMBER:min
The field must be numeric and at least
value.MINIMUM:FILE_KB:min
The field must be a file with a size of at least
value KB.MINIMUM:STRING_LENGTH:min
The field must be a string with a minimum length equal to
value.MINIMUM:ARRAY_COUNT:min
The field must be an array with at least
value elements.MUST_BE_MULTIPLE_OF:value
The field must be multiple of
value.MUST_NOT_BE_IN:values
The field's value must not be on of the
values list. This is the opposite of MUST_BE_IN rule.INVALID_FORMAT
The field does not match the given regular expression.
MUST_BE_NUMERIC
The field must be numeric.
MUST_BE_PRESENT
The field must be present, but can be empty.
REQUIRED
The field must be present and not empty.
Field is considered empty if its value is null, an empty string, an empty array or a file input with no file uploaded.
Field is considered empty if its value is null, an empty string, an empty array or a file input with no file uploaded.
REQUIRED_IF:other:value
The field must be present and not empty if
other field is equal to value.REQUIRED_UNLESS:other:values
The field must be present and not empty unless
other field is equal to value.REQUIRED_WITH:values
The field must be present and not empty if any of the fields in
values are present and not empty.REQUIRED_WITH_ALL:values
The field must be present and not empty if all of the fields in
values are present and not empty.REQUIRED_WITHOUT:values
The field must be present and not empty if any of the fields in
values are not present or empty.REQUIRED_WITHOUT_ALL:values
The field must be present and not empty if all of the fields in
values are not present or empty.PROHIBITED
The field must be empty or not present in the request.
PROHIBITED_IF:other:value
The field must be empty or not present if
other field is equal to value.PROHIBITED_UNLESS:other:value
The field must be empty or not present unless
other field is equal to value.PROHIBITS:other
If the field is present, the
other field can't be present at the same time.MUST_BE_SAME:other
The field must have the same value as the
other field.SIZE:NUMBER:size
The field must be numeric and equal to
size.SIZE:FILE_KB:size
The field must be a file with a size of
size KB.SIZE:STRING_LENGTH:size
The field must be a string with a length equal to
size.SIZE:ARRAY_COUNT:size
The field must be an array with exactly
size elements.MUST_START_WITH:value
The field must start with
value.MUST_BE_STRING
The field must be a string.
MUST_BE_TIMEZONE
The field must be a valid timezone according to the
timezone_identifiers_list PHP function.MUST_BE_UNIQUE:table.column
The field's value must not already exist in the specified database table and column.
FAILED_TO_UPLOAD
File upload failed.
MUST_BE_URL
The field must be a valid URL address.
MUST_BE_UUID
The field must be a valid UUID.
More detailed information about validation rules can be found in Laravel documentation.
Appendix B. Custom validation rules
List of custom validation rules messages:
Code
Description
RULES:CONFIG_MODES_LIMIT_RULE:EXCEEDED:
maxChecks whether the device's config modes limit has been reached. Fails when the number of config modes assigned to the device already equals to
max.RULES:FILE_UPLOADS_MAX_TOTAL_SIZE_RULE:EXCEEDED:
max_sizeChecks whether the total size of all uploaded files in the request exceeds the specified limit. Fails if the total size is greater than
max_size KB.RULES:IS_TIMESTAMP_RULE:INVALID_VALUE
Checks whether the value is a valid timestamp. Fails if it's not.
RULES:IS_TIMEZONE_RULE:INVALID_VALUE
Checks whether the value is a valid timezone. Fails if it's not. List of valid timezones is available at the
/api/timezones endpoint.RULES:NOT_EXIST_IN_OTHER_REGIONS_RULE:DEVICE_IDENTIFIER_IN_USE
Checks whether the device identifier (serial or Bluetooth ID) is already in use in another region. Fails if it is.
RULES:NOT_EXIST_IN_OTHER_REGIONS_RULE:USER_EMAIL_IN_USE
Checks whether the user's email is already in use in another region. Fails if it is.
RULES:NOT_INFECTED_RULE:FILE_INFECTED_OR_UPLOAD_ISSUE
Checks whether the uploaded file is infected. Fails if the upload fails or AV software reports an issue.
RULES:PATIENT_DEVICE_RULE:NOT_ASSIGNED
Checks the patient-device assignment. Fails if the device is not assigned to the user.
RULES:P2P_SESSION_MEMBER_RULE:NOT_A_MEMBER
Checks whether the current user is the member of the P2P session they are trying to access. Fails if the user is not a session's patient or clinician.
RULES:URL_EXISTS_RULE:EXPECTED_CONTENT_TYPE:
RULES:URL_EXISTS_RULE:NOT_FOUND
content_typeRULES:URL_EXISTS_RULE:NOT_FOUND
Checks whether the specified URL exists and returns an HTTP 200 response.
If
Otherwise, it only checks the status code and returns
Fails if HTTP code is not 200 or the Content-Type doesn't match the expected value (if specified).
If
content_type was specified, the rule also verifies the returned Content-Type header. If it doesn't match, the error code will include EXPECTED_CONTENT_TYPE:content_type.Otherwise, it only checks the status code and returns
NOT_FOUND if it's not 200.Fails if HTTP code is not 200 or the Content-Type doesn't match the expected value (if specified).
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_LOWERCASE
Checks whether the password contains at least one lowercase letter.
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_UPPERCASE
Checks whether the password contains at least one uppercase letter.
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_NUMBER
Checks whether the password contains at least one number.
PASSWORD:MUST_CONTAIN_AT_LEAST_ONE_SYMBOL
Checks whether the password contains at least one symbol.
Acadle
Endpoints related to Acadle integration
Acadle SSO
requires authentication
Creates the SSO authorization link. The link expires after 60 seconds, but can be re-generated without any limits.
Example request:
curl --request POST \
"http://localhost:8000/api/acadle/sso" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/sso"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"sso_url": "https://adp.acadle.com/sso/authenticate/callback?ssoToken=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpYXQiOjE3MzczNzU3OTksImV4cCI6MTczNzM3NTg1OSwiZmlyc3RuYW1lIjoiVG9tIiwibGFzdG5hbWUiOiJTbWl0aCIsImVtYWlsIjoidGVzdEBleGFtcGxlLmNvbSIsInVzZXJuYW1lIjpudWxsLCJ0aW1lem9uZSI6IlVUQyJ9.VzE2q6V53bdYJM7aB6CWWxDqcxF4gpdiEF80dD9j-5k",
"sso_expires": 1737375859
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SSO:INSUFFICIENT_PERMISSION"
}
Example response (403, Survey required):
{
"message": "Completing the survey is required to proceed to Acadle",
"code": "ACADLE:SSO:SURVEY_REQUIRED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Check Acadle survey status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"survey_sent": false,
"survey_id": null
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get Acadle survey data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 296,
"cpo_number": "35233",
"country": "Slovenia",
"medical_training": "physiotherapist",
"myo_exp_zeus": "1",
"has_demo_hand_access": 0,
"wants_demo_hand": 0,
"myo_exp_covvi": 1,
"myo_exp_fillauer": 0,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 0,
"myo_exp_steeper": 1,
"myo_exp_taska": 0,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 0,
"myo_exp_other": "Debitis quo et molestias facere autem corporis rerum.",
"partial_hand_protheses": "1",
"below_elbow_protheses_single_action": "3",
"below_elbow_protheses_multi_action": "3",
"above_elbow_protheses": "1",
"shoulder_protheses": "5",
"zeus_components_description": "Sunt asperiores facilis deleniti.",
"contact_name": "Princess",
"contact_surname": "Jacobs",
"company_name": "Leuschke, Wilderman and Greenholt",
"street": "668 Pouros Place Apt. 752",
"city": "South Koletown",
"postal_code": "78369-5897",
"email": "dino.monahan@mayert.com",
"phone": "1-407-247-9491",
"phone_country": "ba",
"device_side": "R",
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_RESULTS:INSUFFICIENT_PERMISSION"
}
Example response (404, Survey not found):
{
"message": "Survey not found",
"code": "ACADLE:SURVEY_RESULTS:SURVEY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get Acadle survey data (SuperAdmin)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/survey/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/survey/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"id": 2,
"user_id": 297,
"cpo_number": "7730742",
"country": "French Southern Territories",
"medical_training": "biomedical_engineer",
"myo_exp_zeus": "1",
"has_demo_hand_access": 1,
"wants_demo_hand": 0,
"myo_exp_covvi": 1,
"myo_exp_fillauer": 1,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 0,
"myo_exp_steeper": 0,
"myo_exp_taska": 1,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 0,
"myo_exp_other": "Impedit aut vero quo et nisi sed perferendis.",
"partial_hand_protheses": "4",
"below_elbow_protheses_single_action": "2",
"below_elbow_protheses_multi_action": "4",
"above_elbow_protheses": "5",
"shoulder_protheses": "4",
"zeus_components_description": "Cumque aut assumenda expedita vel et soluta maxime.",
"contact_name": "Cheyanne",
"contact_surname": "Crist",
"company_name": "Kshlerin PLC",
"street": "9526 Javon Grove",
"city": "East Christopbury",
"postal_code": "51602",
"email": "heaney.russell@goldner.info",
"phone": "585.881.4266",
"phone_country": "mf",
"device_side": "R",
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:USER_NOT_FOUND"
}
Example response (404, Survey not found):
{
"message": "Survey not found",
"code": "ACADLE:SURVEY_RESULTS_ADMIN:SURVEY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List all Acadle surveys (SuperAdmin)
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/acadle/surveys?search=john" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/acadle/surveys"
);
const params = {
"search": "john",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"user_id": 298,
"cpo_number": "62",
"country": "Burundi",
"medical_training": "physiotherapist",
"myo_exp_zeus": "0",
"has_demo_hand_access": 1,
"wants_demo_hand": 0,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 0,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 1,
"myo_exp_taska": 0,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Repellat voluptatum maiores ex ea esse.",
"partial_hand_protheses": "2",
"below_elbow_protheses_single_action": "5",
"below_elbow_protheses_multi_action": "3",
"above_elbow_protheses": "0",
"shoulder_protheses": "0",
"zeus_components_description": "Natus aperiam corrupti eveniet sunt.",
"contact_name": "Kaitlyn",
"contact_surname": "Price",
"company_name": "Dickens, Boyer and Sanford",
"street": "953 Estevan Summit Apt. 841",
"city": "Stuartbury",
"postal_code": "96331",
"email": "orin.beer@schaefer.info",
"phone": "936-989-0688",
"phone_country": "lt",
"device_side": "R",
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z"
},
{
"id": 4,
"user_id": 299,
"cpo_number": "300",
"country": "Iraq",
"medical_training": "clinician",
"myo_exp_zeus": "1",
"has_demo_hand_access": 0,
"wants_demo_hand": 0,
"myo_exp_covvi": 1,
"myo_exp_fillauer": 0,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 0,
"myo_exp_taska": 1,
"myo_exp_vincent": 1,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Aspernatur blanditiis est similique ut.",
"partial_hand_protheses": "1",
"below_elbow_protheses_single_action": "1",
"below_elbow_protheses_multi_action": "3",
"above_elbow_protheses": "4",
"shoulder_protheses": "0",
"zeus_components_description": "Laborum et vel aliquam excepturi ut nobis eligendi.",
"contact_name": "Andreane",
"contact_surname": "Boehm",
"company_name": "Fisher, Vandervort and Schimmel",
"street": "178 Stroman Neck",
"city": "Kuhnchester",
"postal_code": "77146-7561",
"email": "schimmel.mireille@botsford.com",
"phone": "+1-484-561-9346",
"phone_country": "jp",
"device_side": "R",
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEYS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send Acadle survey
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/acadle/survey" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"cpo_number\": 11,
\"country\": \"Norway\",
\"medical_training\": \"physician\",
\"myo_exp_zeus\": false,
\"myo_exp_covvi\": false,
\"myo_exp_fillauer\": false,
\"myo_exp_ossur\": false,
\"myo_exp_ottobock\": false,
\"myo_exp_steeper\": false,
\"myo_exp_taska\": false,
\"myo_exp_vincent\": false,
\"myo_exp_pattern_recognition\": false,
\"myo_exp_other\": \"Omnis quis nihil nobis dolores hic error laborum.\",
\"has_demo_hand_access\": false,
\"wants_demo_hand\": false,
\"partial_hand_protheses\": \"1-5\",
\"below_elbow_protheses_single_action\": \"1-5\",
\"below_elbow_protheses_multi_action\": \"5-10\",
\"above_elbow_protheses\": \"50+\",
\"shoulder_protheses\": \"1-5\",
\"zeus_components_description\": \"Reiciendis labore rerum iusto harum.\",
\"contact_name\": \"Jamir\",
\"company_name\": \"Cummings, Wiegand and Rohan\",
\"street\": \"78543 Alene Street\",
\"city\": \"North Mckenna\",
\"postal_code\": \"55668\",
\"email\": \"tromp.alford@casper.com\",
\"phone\": \"769-400-9430\",
\"phone_country\": \"IR\",
\"device_side\": \"R\"
}"
const url = new URL(
"http://localhost:8000/api/acadle/survey"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"cpo_number": 11,
"country": "Norway",
"medical_training": "physician",
"myo_exp_zeus": false,
"myo_exp_covvi": false,
"myo_exp_fillauer": false,
"myo_exp_ossur": false,
"myo_exp_ottobock": false,
"myo_exp_steeper": false,
"myo_exp_taska": false,
"myo_exp_vincent": false,
"myo_exp_pattern_recognition": false,
"myo_exp_other": "Omnis quis nihil nobis dolores hic error laborum.",
"has_demo_hand_access": false,
"wants_demo_hand": false,
"partial_hand_protheses": "1-5",
"below_elbow_protheses_single_action": "1-5",
"below_elbow_protheses_multi_action": "5-10",
"above_elbow_protheses": "50+",
"shoulder_protheses": "1-5",
"zeus_components_description": "Reiciendis labore rerum iusto harum.",
"contact_name": "Jamir",
"company_name": "Cummings, Wiegand and Rohan",
"street": "78543 Alene Street",
"city": "North Mckenna",
"postal_code": "55668",
"email": "tromp.alford@casper.com",
"phone": "769-400-9430",
"phone_country": "IR",
"device_side": "R"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"user_id": 300,
"cpo_number": "35262",
"country": "Brunei Darussalam",
"medical_training": "physiotherapist",
"myo_exp_zeus": "0",
"has_demo_hand_access": 1,
"wants_demo_hand": 1,
"myo_exp_covvi": 0,
"myo_exp_fillauer": 0,
"myo_exp_ossur": 0,
"myo_exp_ottobock": 1,
"myo_exp_steeper": 0,
"myo_exp_taska": 1,
"myo_exp_vincent": 0,
"myo_exp_pattern_recognition": 1,
"myo_exp_other": "Voluptate qui voluptatem modi voluptas nisi repellat suscipit.",
"partial_hand_protheses": "2",
"below_elbow_protheses_single_action": "4",
"below_elbow_protheses_multi_action": "0",
"above_elbow_protheses": "5",
"shoulder_protheses": "5",
"zeus_components_description": "Velit odit deserunt qui consectetur nulla blanditiis qui.",
"contact_name": "Winifred",
"contact_surname": "Lesch",
"company_name": "Heathcote Inc",
"street": "929 Reichert Forge Apt. 369",
"city": "Port Christa",
"postal_code": "98791-1839",
"email": "beatty.augustine@wyman.org",
"phone": "1-401-752-7370",
"phone_country": "vn",
"device_side": "R",
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use Acadle",
"code": "ACADLE:SURVEY_SEND:INSUFFICIENT_PERMISSION"
}
Example response (403, Survey already sent):
{
"message": "Survey already sent",
"code": "ACADLE:SURVEY_SEND:SURVEY_ALREADY_SENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Activation codes
API endpoints for activation codes
Get activation codes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"code": "18E7LN",
"created_by": 37,
"used_by": 38,
"used_at": null,
"active": 1,
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
},
{
"id": 2,
"code": "ZOWOCJ",
"created_by": 39,
"used_by": 40,
"used_at": null,
"active": 1,
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get active activation codes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes/active" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/active"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"code": "JF2UJ5",
"created_by": 41,
"used_by": 42,
"used_at": null,
"active": 0,
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
},
{
"id": 4,
"code": "5TGPJE",
"created_by": 43,
"used_by": 44,
"used_at": null,
"active": 0,
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:ACTIVE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Find activation code
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/activation-codes/find/aspernatur" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/find/aspernatur"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 5,
"code": "4PD47I",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 1,
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:FIND:INSUFFICIENT_PERMISSION"
}
Example response (404, Activation code not found):
{
"message": "Activation code not found",
"code": "ACTIVATION_CODE:FIND:CODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create activation code
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/activation-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 6,
"code": "CUNA1Z",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 1,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Server error):
{
"message": "Server error: activation code not created",
"code": "ACTIVATION_CODE:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create activation code (multi-region)
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/activation-codes/5" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/5"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 7,
"code": "Y34N8C",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 0,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Deactivate activation code
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/activation-codes/19" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/activation-codes/19"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202):
{
"id": 8,
"code": "M3Y0OW",
"created_by": null,
"used_by": null,
"used_at": null,
"active": 0,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage activation codes",
"code": "ACTIVATION_CODE:DEACTIVATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Activation code is not active):
{
"message": "Cannot deactivate: code is not active",
"code": "ACTIVATION_CODE:DEACTIVATE:CODE_NOT_ACTIVE"
}
Example response (404, Activation code not found):
{
"message": "Activation code not found",
"code": "ACTIVATION_CODE:DEACTIVATE:CODE_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: activation code not deactivated",
"code": "ACTIVATION_CODE:DEACTIVATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Authentication
API endpoints for managing authentication
Login user
Example request:
curl --request POST \
"http://localhost:8000/api/login" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/api/login"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Example response (403, Too many attempts):
{
"message": "Login: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (422, Invalid credentials):
{
"message": "The given data was invalid.",
"errors": {
"email": [
"Given credentials not found"
]
},
"code": "AUTH:LOGIN:INVALID_CREDENTIALS"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Register user
Example request:
curl --request POST \
"http://localhost:8000/api/register" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"region\": \"us\",
\"name\": \"Tom Smith\",
\"email\": \"name@domain.com\",
\"password\": \"Test123!\",
\"phone\": \"(870) 869-9610\",
\"phone_country\": \"US\",
\"language\": \"en\",
\"clinic_name\": \"Abshire-Hahn\",
\"clinic_location\": \"North Hanna\",
\"address1\": \"3679 Schroeder Mews Apt. 618\",
\"address2\": \"Port Gladyceburgh, IN 60931-4132\",
\"mfa_enabled\": true,
\"mfa_method\": \"email\",
\"activation_code\": \"1A2B3C\"
}"
const url = new URL(
"http://localhost:8000/api/register"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"region": "us",
"name": "Tom Smith",
"email": "name@domain.com",
"password": "Test123!",
"phone": "(870) 869-9610",
"phone_country": "US",
"language": "en",
"clinic_name": "Abshire-Hahn",
"clinic_location": "North Hanna",
"address1": "3679 Schroeder Mews Apt. 618",
"address2": "Port Gladyceburgh, IN 60931-4132",
"mfa_enabled": true,
"mfa_method": "email",
"activation_code": "1A2B3C"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 2,
"mrn": "FNL7O8GY1768236460",
"name": "Burley Bahringer",
"email": "1768236460yaltenwerth@example.net",
"language": "en",
"phone": "(361) 371-1270",
"phone_country": "GW",
"phone_verified_at": null,
"address1": "86809 Mike Ranch",
"address2": "North Nikolasmouth, MT 04512",
"postal_code": "17987",
"city": "Kunze-Bradtke",
"clinic_name": "Aronburgh",
"clinic_location": "9062 Emiliano Turnpike\nSouth Miraclechester, OR 47282-0485",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:40.000000Z",
"updated_at": "2026-01-12T16:47:40.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (403, Too many attempts):
{
"message": "Register: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "AUTH:REGISTER:EMAIL_IN_USE"
}
Example response (403, Activation code is incorrect):
{
"message": "Activation code is incorrect",
"code": "AUTH:REGISTER:INCORRECT_CODE"
}
Example response (500, Server error):
{
"message": "Server error: user not created",
"code": "AUTH:REGISTER:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Register mobile user
Example request:
curl --request POST \
"http://localhost:8000/api/mobile/register" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"region\": \"us\",
\"name\": \"Tom Smith\",
\"email\": \"name@domain.com\",
\"password\": \"Test123!\",
\"language\": \"en\",
\"terms_accepted\": true
}"
const url = new URL(
"http://localhost:8000/api/mobile/register"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"region": "us",
"name": "Tom Smith",
"email": "name@domain.com",
"password": "Test123!",
"language": "en",
"terms_accepted": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"mrn": "QTIDCPJX1768236460",
"name": "Prof. Barton Mayer I",
"email": "1768236460xander.robel@example.org",
"language": "en",
"phone": "+1-701-937-9469",
"phone_country": "AF",
"phone_verified_at": null,
"address1": "232 Eudora Parkway",
"address2": "Laverneville, CA 86476",
"postal_code": "61998",
"city": "McClure-Weimann",
"clinic_name": "Joellestad",
"clinic_location": "6148 Jacky Fields\nCorkerymouth, LA 55429",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:40.000000Z",
"updated_at": "2026-01-12T16:47:40.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (403, Too many attempts):
{
"message": "Register: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "AUTH:MOBILE_REGISTER:EMAIL_IN_USE"
}
Example response (500, Server error):
{
"message": "Server error: user not created",
"code": "AUTH:MOBILE_REGISTER:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Request password reset
Request sending password reset email message with token that allows to change the password
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"code": "passwords.sent",
"message": "Reset password link successfully sent"
}
Example response (400, Throttled request):
{
"code": "passwords.throttled",
"message": "You have requested password reset recently"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify password reset token
Check if token is valid before using it to reset password
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset/verify" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019\",
\"email\": \"test@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset/verify"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019",
"email": "test@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Valid token",
"code": "AUTH:PASSWORD_RESET_VERIFY:VALID_TOKEN"
}
Example response (400, Invalid token):
{
"message": "Invalid token",
"code": "AUTH:PASSWORD_RESET_VERIFY:INVALID_TOKEN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "AUTH:PASSWORD_RESET_VERIFY:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Change password with token
Change user password using password reset token sent to email address
Example request:
curl --request POST \
"http://localhost:8000/api/password/reset/change" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019\",
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/api/password/reset/change"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "158bed12188492617e43ecfcca43f5990b3f5f0383b5083247389482b70af019",
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"code": "passwords.reset",
"message": "Password changed successfully"
}
Example response (400, Invalid token):
{
"code": "passwords.token",
"message": "Invalid token"
}
Example response (404, User not found):
{
"code": "passwords.user",
"message": "User not found"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logout current device
requires authentication
Logout and delete current access token
Example request:
curl --request POST \
"http://localhost:8000/api/logout" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/logout"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
[]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logout everywhere
requires authentication
Logout and delete all access tokens owned by account
Example request:
curl --request POST \
"http://localhost:8000/api/logout/everywhere" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/logout/everywhere"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
[]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Refresh access token
requires authentication
Refresh the new access token from the expiring token
Example request:
curl --request POST \
"http://localhost:8000/api/token/refresh" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/token/refresh"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Check MFA status
requires authentication
Check any of available MFA methods. Supported methods: email, sms, otp.
Example request:
curl --request GET \
--get "http://localhost:8000/api/mfa/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"enabled": 1,
"method": "email",
"phone": 1,
"otp": 1
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Response
Response Fields
enabled
string
Determines if user enabled MFA
method
string
Preferred MFA method
phone
string
Determines if user has verified phone number and sms channel could be used
otp
string
Determines if user has setup OTP with authenticator application
Use recovery code
requires authentication
Use generated recovery code in order to access account in case when other MFA methods couldn't be used. This method only checks if code is valid, implement account access scenario on your own. Sent code is removed and couldn't be used anymore. If remaining_codes counter equals zero, generate a new set.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/recovery-code" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"ZZASRM6S\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/recovery-code"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "ZZASRM6S"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25",
"remaining_codes": 9
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:USE_RECOVERY_CODE:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send MFA code
requires authentication
Send multi-factor authentication code via selected channel. Code is valid for 15 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"channel\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"channel": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Code sent",
"code": "AUTH:SEND_MFA:SENT"
}
Example response (400, Channel SMS, phone number not verified):
{
"message": "Phone number is not verified",
"code": "AUTH:SEND_MFA:PHONE_NUMBER_NOT_VERIFIED"
}
Example response (500, Channel SMS, provider problem):
{
"message": "Code sending failed",
"code": "AUTH:SEND_MFA:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify MFA code
requires authentication
Verify multi-factor code obtained from selected channel.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"channel\": \"email\",
\"remember_mfa_session\": true,
\"code\": \"445566\",
\"machine_key\": \"35282880-244a-4328-9435-2aaf432f3619\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"channel": "email",
"remember_mfa_session": true,
"code": "445566",
"machine_key": "35282880-244a-4328-9435-2aaf432f3619"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK, token auth):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25",
"mfa_token": "fd63e55c-2a67-44b2-95b9-a771778e9971",
"mfa_expires": "2023-04-25 21:00:00"
}
Example response (200, OK, cookie auth):
{
"message": "OK",
"mfa_token": "fd63e55c-2a67-44b2-95b9-a771778e9971",
"mfa_expires": "2023-04-25 21:00:00"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_MFA:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify phone number
requires authentication
Verify phone number with text message
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/phone/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"445566\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/phone/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "445566"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Phone number verified",
"code": "AUTH:VERIFY_PHONE:VERIFIED"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_PHONE:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify MFA OTP
requires authentication
Verify one-time password (OTP). If verification is successful, new access token with additional permissions will be generated.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/otp/verify" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"code\": \"445566\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/otp/verify"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"code": "445566"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK, token auth):
{
"access_token": "7|x7de9EgE0xiBNLgHU91DHvhj85HVgTG1bekCssIA",
"expires": "2021-10-25 17:05:25"
}
Example response (200, OK, cookie auth):
{
"message": "OK"
}
Example response (401, Invalid code):
{
"message": "Invalid code",
"code": "AUTH:VERIFY_MFA_OTP:INVALID_CODE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Change password
requires authentication
Change authenticated user password
Example request:
curl --request POST \
"http://localhost:8000/api/password/change" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"old_password\": \"oldpassword\",
\"new_password\": \"newpassword\"
}"
const url = new URL(
"http://localhost:8000/api/password/change"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"old_password": "oldpassword",
"new_password": "newpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"message": "Password changed successfully",
"code": "AUTH:PASSWORD_CHANGE:CHANGED"
}
Example response (422, Invalid old password):
{
"message": "The given data was invalid.",
"errors": {
"old_password": [
"Old password is incorrect"
]
},
"code": "AUTH:PASSWORD_CHANGE:INVALID_OLD_PASSWORD"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Set MFA status
requires authentication
Set MFA status and preferred method. Supported methods: email, sms, otp.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"enabled\": true,
\"method\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/mfa/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"enabled": true,
"method": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"enabled": 1,
"method": "email",
"phone": 1,
"otp": 1
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Generate recovery codes
requires authentication
Generate recovery codes for authenticated user and revoke old ones. User could use these codes in case when couldn't use any of MFA methods (e.g. lost device with OTP app or device is not accessible right now).
Example request:
curl --request GET \
--get "http://localhost:8000/api/mfa/recovery-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/recovery-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"recovery_codes": [
"A3H8PF8P",
"IZ8CGK2H",
"DTYENLLT",
"0RKEZFST",
"9MPW91BS",
"S38Z6HS6",
"UF5ATOKP",
"HSZXP8EL",
"ZZASRM6S",
"07GR4CD1"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Setup MFA OTP
requires authentication
Setup multi-factor authentication with one-time passwords (OTP). Use secret on your own or generate QR code with given url. Then user could scan QR code with authentication app (e.g. Microsoft Authenticator, Authy). If secret has been already generated, new secret will override existing one and revoke previous setup.
Example request:
curl --request POST \
"http://localhost:8000/api/mfa/otp/setup" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mfa/otp/setup"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"secret": "VXGJ6JMIAWWDFXYDLKO3VG3RSGTS34BGMVTGQIEHMVVMJ2JBGCSNPQZDV4B6OMDIGI4UKCVCVKVMA7EASLHZEJWW4ZNKLAUTSZYN7EA",
"url": "otpauth://totp/AetherDigitalTherapy?issuer=AetherDigitalTherapy&secret=VXGJ6JMIAWWDFXYDLKO3VG3RSGTS34BGMVTGQIEHMVVMJ2JBGCSNPQZDV4B6OMDIGI4UKCVCVKVMA7EASLHZEJWW4ZNKLAUTSZYN7EA",
"recovery_codes": [
"A3H8PF8P",
"IZ8CGK2H",
"DTYENLLT",
"0RKEZFST",
"9MPW91BS",
"S38Z6HS6",
"UF5ATOKP",
"HSZXP8EL",
"ZZASRM6S",
"07GR4CD1"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Login user (SPA)
Authorize user and create cookie-based session. Hit GET /sanctum/csrf-cookie endpoint to retrieve XSRF-TOKEN cookie. Then attach X-XSRF-TOKEN HTTP header to any request to authorize. See more: Laravel Sanctum documentation
Example request:
curl --request POST \
"http://localhost:8000/login" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"test@example.com\",
\"password\": \"secretpassword\"
}"
const url = new URL(
"http://localhost:8000/login"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "test@example.com",
"password": "secretpassword"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 316,
"mrn": "8IK8SKTE1768236490",
"name": "Hank Gerlach PhD",
"email": "1768236490leannon.ayla@example.org",
"language": "en",
"phone": "+1 (925) 995-2911",
"phone_country": "BZ",
"phone_verified_at": null,
"address1": "797 Lebsack Village",
"address2": "West Raina, ID 71224",
"postal_code": "45102",
"city": "Rempel, Krajcik and Hessel",
"clinic_name": "Lake Forrest",
"clinic_location": "834 Halle Summit\nO'Reillystad, NH 22904-7640",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:11.000000Z",
"updated_at": "2026-01-12T16:48:11.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
Example response (403, Too many attempts):
{
"message": "Login: too many attempts",
"code": "GENERAL:TOO_MANY_ATTEMPTS"
}
Example response (422, Invalid credentials):
{
"message": "The given data was invalid.",
"errors": {
"email": [
"Given credentials not found"
]
},
"code": "AUTH:LOGIN_COOKIE:INVALID_CREDENTIALS"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Chat
API endpoints for chat management
Authorize a user
requires authentication
This method authorizes a user using Ably service. Endpoint used only by Ably SDK
Check more details on https://ably.com/docs/auth/token
List all chat rooms
requires authentication
This method retrieves all chat rooms. Possible extend options:
- participants - user assigned to chat room
- participants.roles - roles assigned to chat participants
- owner - the clinician assigned to patient
- patient - the patient for whom the chat was created
- messages - the messages related to chat room
- messages.author - the author of message/li>
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/rooms" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/rooms"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"owner": null,
"patient_id": null,
"encryption_key": "cev+qzR6xJNBcbU34VXS0eXCkE9U0zmHWTK0IyS52Sc=",
"name": "explicabo",
"friendly_name": "explicabo",
"created_at": "2026-01-12T16:48:08.000000Z",
"deleted_at": null,
"updated_at": "2026-01-12T16:48:08.000000Z"
},
{
"id": 2,
"owner": null,
"patient_id": null,
"encryption_key": "6XhAXe06yQ6a2Dd4GLIS09Qq6npRWhaNBhFQ8wpgU14=",
"name": "perferendis",
"friendly_name": "perferendis",
"created_at": "2026-01-12T16:48:08.000000Z",
"deleted_at": null,
"updated_at": "2026-01-12T16:48:08.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list chat room",
"code": "CHAT:LIST_ROOMS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Retrieve a chat room
requires authentication
This method retrieves a single chat room identified by roomId. Possible extend options:
- participants - user assigned to chat room
- owner - the clinician assigned to patient
- patient - the patient for whom the chat was created
- messages - the messages related to chat room
- messages.author - the author of message/li>
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/sapiente" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/sapiente"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"owner": null,
"patient_id": null,
"encryption_key": "L7Nxg6dx6T0kn5o1+02tqfLQn2SQFdHd5S7/1XvwbiQ=",
"name": "dolores",
"friendly_name": "dolores",
"created_at": "2026-01-12T16:48:08.000000Z",
"deleted_at": null,
"updated_at": "2026-01-12T16:48:08.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room",
"code": "CHAT:GET_ROOM:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:GET_ROOM:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create a new chat room
requires authentication
This method creates a new chat room using the authenticated user's ID, a name for the room, and a list of participants.
The list of participants should contain the IDs of the users who will be participants in the room.Example request:
curl --request POST \
"http://localhost:8000/api/chat/room" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"owner\": 1,
\"name\": \"my-chat\",
\"patient_id\": 1,
\"participants\": [
\"1\"
]
}"
const url = new URL(
"http://localhost:8000/api/chat/room"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"owner": 1,
"name": "my-chat",
"patient_id": 1,
"participants": [
"1"
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"owner": null,
"patient_id": null,
"encryption_key": "r7WeZaFpkaPQPcRiwQPm5YjGr+Ubqcx4zbwjMsiQiYk=",
"name": "consequatur",
"friendly_name": "consequatur",
"created_at": "2026-01-12T16:48:08.000000Z",
"deleted_at": null,
"updated_at": "2026-01-12T16:48:08.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room",
"code": "CHAT:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update an existing chat room
requires authentication
This method updates an existing chat room using the authenticated user's ID, a new name for the room, and a list of participants.
The list of participants should contain the IDs of the users who will be participants in the room.Example request:
curl --request PUT \
"http://localhost:8000/api/chat/room/ea" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"owner\": 1,
\"name\": \"my-chat\",
\"participants\": [
\"1\"
],
\"participants_del\": [
\"1\"
]
}"
const url = new URL(
"http://localhost:8000/api/chat/room/ea"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"owner": 1,
"name": "my-chat",
"participants": [
"1"
],
"participants_del": [
"1"
]
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"owner": null,
"patient_id": null,
"encryption_key": "vMv60WIGHhRltJWdoSOOzGKBDrXWyqK+UE3Fp9+298g=",
"name": "nisi",
"friendly_name": "nisi",
"created_at": "2026-01-12T16:48:08.000000Z",
"deleted_at": null,
"updated_at": "2026-01-12T16:48:08.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update chat room",
"code": "CHAT:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:UPDATE:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Chat room archives
requires authentication
Get archived messages for room Possible extend options:
- author - this field represent user who send message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/vero/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/vero/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view archived messages",
"code": "CHAT:GET_ARCHIVES:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:GET_ARCHIVES:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Unread messages
requires authentication
Get unread messaged for chat room. Possible extend options:
- author - this field represent user who send message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/messages/unread?room=2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/messages/unread"
);
const params = {
"room": "2",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view unread messages list",
"code": "CHAT:UNREAD_MESSAGES:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete chat message
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/chat/messages/15?msgId=et" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/messages/15"
);
const params = {
"msgId": "et",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"paginator": {
"total": 1,
"count": 1,
"perpage": 5,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": "651a8e4868d5dc27c0000cc2",
"channel": "chat.messages.room.44.56bf7d37-4ed6-4db4-947b-d68a1066677c.communication-channel",
"clientId": "95",
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"data": "{\"encryptedMessage\":{\"message\":\"z6z1zNihCjlEePltz+BG8g==\",\"initialVector\":\"7376fcbf0b32fbdcd5c5b62c087b7600\"},\"user\":{\"id\":95,\"name\":\"Bartosz Druga firmaa\",\"email\":\"bartosz+drugafirma@refericon.pl\",\"image\":\"https://aether-dev-bucket.s3.amazonaws.com/users/7T6im01PAj4cahksWHllrL7se2SQ9buquIjGGFtp.jpg\",\"permissions\":[],\"roles\":[{\"id\":2,\"name\":\"Clinician\"}]},\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"recipients\":[{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"95\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"44\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"1250\"},{\"delivered\":true,\"msgId\":\"b8673175-01e6-4b6d-9032-226d3df20637\",\"seen\":false,\"clientId\":\"3067\"}]}",
"name": "message",
"recipients": [
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": true,
"clientId": "95"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "44"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "1250"
},
{
"delivered": true,
"msgId": "b8673175-01e6-4b6d-9032-226d3df20637",
"seen": false,
"clientId": "3067"
}
],
"timestamp": 1696239176715,
"created_at": "2023-10-02 09:32:56"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete message",
"code": "CHAT:DELETE_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Chat message not found",
"code": "CHAT:DELETE_MESSAGE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get tickets list for chat room
requires authentication
Possible extend options:
- sender - the user who created ticket
- recipient - the user who was ticket recipient
- messages - message allocated to ticket
- messages.attachments - list of attachments assigned to message and ticket
- messages.sender - the user who wrote the message
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/tickets/enim?status=nam&sender=7&recipient=18" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/tickets/enim"
);
const params = {
"status": "nam",
"sender": "7",
"recipient": "18",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 87,
"sender_id": 288,
"recipient_id": 289,
"device_id": null,
"meeting_date": "2026-01-12 16:48:08",
"meeting_type": "online_meeting",
"contact_email": "uernser@gmail.com",
"status": "new",
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"sender": {
"id": 288,
"mrn": "QVCJ5ON71768236488",
"name": "Mustafa Wiegand IV",
"email": "1768236488makayla.farrell@example.org",
"language": "en",
"phone": "1-909-903-8306",
"phone_country": "TG",
"phone_verified_at": null,
"address1": "743 Josephine Shoals",
"address2": "Lake Karellechester, ME 93703-6930",
"postal_code": "27933-0071",
"city": "Metz-Rutherford",
"clinic_name": "Keonmouth",
"clinic_location": "29880 Ladarius Village\nWizastad, NE 65148",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 289,
"mrn": "XE366NUS1768236488",
"name": "Penelope Durgan",
"email": "1768236488emard.jarrod@example.net",
"language": "en",
"phone": "346.487.9465",
"phone_country": "AZ",
"phone_verified_at": null,
"address1": "8903 Walter Motorway Apt. 708",
"address2": "Judeland, IA 58958",
"postal_code": "26721-8310",
"city": "Turcotte-Kovacek",
"clinic_name": "Reingerside",
"clinic_location": "1112 Torey Passage Apt. 390\nSouth Francesca, UT 33277-3119",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": []
},
{
"id": 88,
"sender_id": 290,
"recipient_id": 291,
"device_id": null,
"meeting_date": "2026-01-12 16:48:08",
"meeting_type": "online_meeting",
"contact_email": "araceli.thompson@tillman.com",
"status": "new",
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"sender": {
"id": 290,
"mrn": "52HO7ZBI1768236488",
"name": "Prof. Lizzie Yundt III",
"email": "1768236488rutherford.gladyce@example.com",
"language": "en",
"phone": "(629) 875-5963",
"phone_country": "SN",
"phone_verified_at": null,
"address1": "6518 Bridie Canyon Apt. 112",
"address2": "Kochchester, MN 84287-3091",
"postal_code": "80008-5535",
"city": "Dicki-Beier",
"clinic_name": "South Lura",
"clinic_location": "4310 Joan Springs\nDexterville, PA 47020-2500",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 291,
"mrn": "S8PC47ZN1768236488",
"name": "Prof. Kylee Predovic DDS",
"email": "1768236488chadrick.quitzon@example.org",
"language": "en",
"phone": "(501) 919-9088",
"phone_country": "BI",
"phone_verified_at": null,
"address1": "2426 Saul Heights",
"address2": "Wintheiserton, SD 03537",
"postal_code": "47837-9405",
"city": "Rau Ltd",
"clinic_name": "Johnton",
"clinic_location": "18572 Renner Union Suite 477\nEast Mauricio, NM 64309",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": []
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view chat room tickets",
"code": "CHAT:LIST_TICKETS:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:LIST_TICKETS:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List of available patients for chat
requires authentication
Possible extend options:
- clinician - clinician assigned to this user
- devices - products assigned to user
- roles - user roles
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/available-patients" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/available-patients"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 292,
"mrn": "MW8VIH1G1768236488",
"name": "Mrs. Marian Von",
"email": "1768236488qabshire@example.net",
"language": "en",
"phone": "+1-531-514-7353",
"phone_country": "SJ",
"phone_verified_at": null,
"address1": "85563 Ankunding Throughway Apt. 805",
"address2": "Oriontown, DE 14893-1465",
"postal_code": "15100",
"city": "Kuphal, Hills and Rogahn",
"clinic_name": "Rauburgh",
"clinic_location": "33945 Duane Stravenue\nD'Amorechester, MD 90091-7589",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"devices": [
{
"id": 141,
"serial": "e61848ab-75be-3251-8527-15371f305adb",
"bluetooth_id": "b969ecc1-fac2-3a23-b1c7-26d83ccf0abc",
"company_id": null,
"model_id": null,
"amputee_id": 292,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z"
}
],
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
},
{
"id": 293,
"mrn": "J3YHFU1M1768236488",
"name": "Ms. Carli Turcotte",
"email": "1768236488liza.nader@example.net",
"language": "en",
"phone": "1-279-864-8134",
"phone_country": "PN",
"phone_verified_at": null,
"address1": "91807 Lemke Centers",
"address2": "New Earnestinefurt, AZ 26397",
"postal_code": "56751",
"city": "Cormier, Hansen and Simonis",
"clinic_name": "East Gretamouth",
"clinic_location": "98410 Burnice Locks Apt. 871\nNew Mable, DC 95996",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"devices": [
{
"id": 142,
"serial": "42238c2b-ad45-34f4-9620-ad353e09fd7a",
"bluetooth_id": "6bd666ad-554b-3777-a28f-9eff22f07114",
"company_id": null,
"model_id": null,
"amputee_id": 293,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z"
}
],
"roles": [
{
"id": 1,
"name": "SuperAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list available patients",
"code": "CHAT:LIST_PATIENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List of available participants for chat
requires authentication
Possible extend options:
- roles - user roles
- permissions - user permissions
Example request:
curl --request GET \
--get "http://localhost:8000/api/chat/room/1/available-participants" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/chat/room/1/available-participants"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 294,
"mrn": "Y3IE4A651768236488",
"name": "Judy Luettgen",
"email": "1768236488hmayer@example.com",
"language": "en",
"phone": "+1-470-812-6003",
"phone_country": "NU",
"phone_verified_at": null,
"address1": "4261 Terry Path Suite 137",
"address2": "South Mertie, IN 99079",
"postal_code": "85877",
"city": "Hauck-Carroll",
"clinic_name": "North Georgiana",
"clinic_location": "43599 Letitia Groves Apt. 351\nAmoshaven, NJ 16913-7172",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "Amputee"
}
]
},
{
"id": 295,
"mrn": "ABYHDVI21768236488",
"name": "Miss Felipa Kshlerin",
"email": "1768236488estehr@example.com",
"language": "en",
"phone": "806.516.5492",
"phone_country": "VN",
"phone_verified_at": null,
"address1": "4314 Bogisich Valleys",
"address2": "South Edmondstad, IL 24076-0996",
"postal_code": "03321",
"city": "Pfannerstill-Bradtke",
"clinic_name": "Ericville",
"clinic_location": "192 Kasey Landing\nAmeliehaven, OH 92191",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:08.000000Z",
"updated_at": "2026-01-12T16:48:08.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list available participants",
"code": "CHAT:LIST_PARTICIPANTS:INSUFFICIENT_PERMISSION"
}
Example response (404, Chat room not found):
{
"message": "Chat room not found",
"code": "CHAT:LIST_PARTICIPANTS:ROOM_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config
API endpoints for device config management
Get device config
requires authentication
Definitions:
- config - current config entries
- config history entry - set of changes in config, updated during the session
- config history change - single change made to config (part of config history entry)
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config?_format=unde" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config"
);
const params = {
"_format": "unde",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (200):
[
{
"id": 1,
"device_id": 14,
"mode_id": 1,
"key": "qui",
"value": "occaecati",
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z",
"mode": {
"id": 1,
"device_id": 15,
"slot": null,
"name": "Eum qui cumque quod rerum a ducimus quis possimus.",
"active": 0,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z"
}
},
{
"id": 2,
"device_id": 16,
"mode_id": 2,
"key": "necessitatibus",
"value": "laborum",
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z",
"mode": {
"id": 2,
"device_id": 17,
"slot": null,
"name": "Laboriosam molestiae perferendis maxime sed et.",
"active": 0,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:GET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update device config
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote session 2022-05-30\",
\"common\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\",
\"modes\": [
{
\"id\": 1,
\"config\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/device/1/config"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote session 2022-05-30",
"common": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]",
"modes": [
{
"id": 1,
"config": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]"
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:UPDATE:DEVICE_NOT_FOUND"
}
Example response (422, Invalid config):
{
"message": "Config has some problems and cannot be saved.",
"errors": {
"modes": {
"mode_3": "Config mode 3 does not belong to device 12."
},
"values": {
"common.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"common.gripsPositions.1.initial": "Invalid value [200,\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values.",
"mode_1.inputSite": "Invalid value [\"11\"] for key inputSite - contains string values.",
"mode_1.gripsPositions.0.initial": "Invalid value [\"200\",\"100\",\"100\",\"100\",\"100\"] for key gripsPositions.1.initial - contains string values."
}
},
"code": "CONFIG:UPDATE:INVALID_CONFIG"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get device config history
requires authentication
For amputees only restore points are returned.
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/history?restore_point=1&factory_reset_point=1&date_from=1642003200&date_to=1642003200" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"restore_point\": true,
\"factory_reset_point\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/history"
);
const params = {
"restore_point": "1",
"factory_reset_point": "1",
"date_from": "1642003200",
"date_to": "1642003200",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"restore_point": true,
"factory_reset_point": true
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_id": 18,
"index": null,
"name": "Rerum voluptatem est perspiciatis est totam qui voluptatem et.",
"config": "{\"common\":{\"fingerStrength\":[1,500],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[7,40,18,21,62],\"limit\":[93,71,53,94,67]},\"1\":{\"initial\":[6,10,44,75,12],\"limit\":[86,50,67,76,24]},\"2\":{\"initial\":[47,51,21,11,20],\"limit\":[55,68,35,56,36]},\"3\":{\"initial\":[50,4,20,66,38],\"limit\":[83,80,24,77,64]},\"4\":{\"initial\":[9,79,6,70,56],\"limit\":[93,87,12,85,86]},\"5\":{\"initial\":[43,2,55,65,21],\"limit\":[89,83,74,91,46]},\"6\":{\"initial\":[92,41,55,22,3],\"limit\":[93,72,58,69,74]},\"7\":{\"initial\":[17,33,37,49,44],\"limit\":[61,74,67,70,80]},\"8\":{\"initial\":[14,56,82,22,20],\"limit\":[91,70,88,30,42]},\"9\":{\"initial\":[25,63,76,13,14],\"limit\":[84,69,78,84,29]},\"10\":{\"initial\":[43,66,61,11,50],\"limit\":[88,69,71,64,94]},\"11\":{\"initial\":[14,22,52,6,55],\"limit\":[52,60,92,61,81]},\"12\":{\"initial\":[5,46,43,3,80],\"limit\":[33,54,79,14,85]},\"13\":{\"initial\":[22,47,52,22,49],\"limit\":[70,74,83,78,89]}},\"inputSite\":[1]},\"modes\":[{\"id\":3,\"name\":\"Hic a quae sed optio.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[400,200],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[50,0,20,40,60,70,90,60,60,0],\"gripPairsConfig\":[11,3,12,7,13,1,4,8],\"gripSequentialConfig\":[10,8,255,9,11,255,255,5,255,12,255,1],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2500],\"pulseTimings\":[930,590,1000,180],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":4,\"name\":\"Cum voluptatibus rem nihil iure repudiandae voluptatum doloribus.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[400,200],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[0,70,30,30,40,90,100,20,0,100],\"gripPairsConfig\":[7,4,2,11,10,8,9,13],\"gripSequentialConfig\":[7,255,1,6,10,5,255,3,255,255,255,255],\"gripSwitchingMode\":[2],\"holdOpen\":[2000,2000],\"pulseTimings\":[770,1000,50,250],\"softGrip\":[1],\"speedControlStrategy\":[0]}},{\"id\":5,\"name\":\"Qui eligendi facilis quas quos.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[300,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[50,10,40,90,90,70,60,50,30,70],\"gripPairsConfig\":[2,7,5,9,8,1,11,12],\"gripSequentialConfig\":[255,8,5,255,9,2,3,255,4,12,7,1],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,1500],\"pulseTimings\":[60,320,480,790],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"restore_point": 0,
"factory_reset_point": 0,
"changed_by": 46,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z",
"author": {
"id": 46,
"mrn": "2CRP1EJZ1768236466",
"name": "Noemie Kutch",
"email": "1768236466dante.legros@example.net",
"language": "en",
"phone": "954.797.6456",
"phone_country": "GD",
"phone_verified_at": null,
"address1": "66604 Hoeger Turnpike",
"address2": "Lefflerfurt, WI 35237-2385",
"postal_code": "44913-8533",
"city": "Grant-Bernhard",
"clinic_name": "Boyerview",
"clinic_location": "45710 Hudson Square Apt. 758\nCreminchester, UT 63379-2939",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"entries": [
{
"id": 1,
"config_history_id": 1,
"config_id": 3,
"old_value": "odit",
"new_value": "amet",
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z",
"config_entry": {
"id": 3,
"device_id": 26,
"mode_id": null,
"key": "ipsum",
"value": "odit",
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z"
}
}
]
},
{
"id": 3,
"device_id": 27,
"index": null,
"name": "Qui ea laborum cumque officiis.",
"config": "{\"common\":{\"fingerStrength\":[1,500],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[67,32,54,8,40],\"limit\":[67,40,58,52,94]},\"1\":{\"initial\":[18,20,1,34,27],\"limit\":[79,52,30,72,61]},\"2\":{\"initial\":[6,40,1,54,32],\"limit\":[8,73,90,90,86]},\"3\":{\"initial\":[45,9,71,29,20],\"limit\":[63,69,84,53,54]},\"4\":{\"initial\":[78,24,37,36,10],\"limit\":[93,43,85,43,58]},\"5\":{\"initial\":[1,7,9,2,35],\"limit\":[64,27,12,37,46]},\"6\":{\"initial\":[12,15,69,29,26],\"limit\":[60,46,76,82,60]},\"7\":{\"initial\":[13,18,12,31,50],\"limit\":[24,56,16,88,63]},\"8\":{\"initial\":[27,7,2,15,80],\"limit\":[48,79,18,37,93]},\"9\":{\"initial\":[32,12,17,32,19],\"limit\":[74,20,76,86,41]},\"10\":{\"initial\":[49,49,8,20,26],\"limit\":[72,68,16,82,94]},\"11\":{\"initial\":[19,30,30,38,66],\"limit\":[45,56,50,70,82]},\"12\":{\"initial\":[30,35,20,30,33],\"limit\":[57,57,22,64,36]},\"13\":{\"initial\":[22,23,24,11,3],\"limit\":[75,28,37,31,83]}},\"inputSite\":[1]},\"modes\":[{\"id\":9,\"name\":\"Totam culpa repellendus similique quas.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[400,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[0,70,100,100,20,60,50,20,70,0],\"gripPairsConfig\":[12,13,5,3,2,7,10,11],\"gripSequentialConfig\":[255,255,5,255,6,1,4,7,9,255,8,3],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,1500],\"pulseTimings\":[680,640,230,670],\"softGrip\":[0],\"speedControlStrategy\":[1]}},{\"id\":10,\"name\":\"Sunt porro officiis iure aliquid et facilis et.\",\"slot\":1,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[400,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[100,10,80,30,50,40,60,70,40,0],\"gripPairsConfig\":[12,6,8,10,1,13,9,11],\"gripSequentialConfig\":[12,6,5,2,9,1,10,7,3,8,4,13],\"gripSwitchingMode\":[3],\"holdOpen\":[2500,2500],\"pulseTimings\":[850,320,820,270],\"softGrip\":[0],\"speedControlStrategy\":[1]}},{\"id\":11,\"name\":\"Est beatae quibusdam sed veniam itaque facere.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,0],\"coContractionTimings\":[300,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[20,50,80,20,50,90,90,100,10,40],\"gripPairsConfig\":[4,12,5,13,10,7,11,2],\"gripSequentialConfig\":[13,5,255,7,3,4,255,8,6,255,2,11],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2500],\"pulseTimings\":[100,290,730,820],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 49,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z",
"author": {
"id": 49,
"mrn": "ML4SLDQB1768236466",
"name": "Dr. Perry Gorczany II",
"email": "1768236466sonia.prosacco@example.com",
"language": "en",
"phone": "757.413.0752",
"phone_country": "NF",
"phone_verified_at": null,
"address1": "65300 Joelle Avenue",
"address2": "Lake Coltfurt, NJ 37705",
"postal_code": "62218-3440",
"city": "Cormier, Hill and Murray",
"clinic_name": "Johnsmouth",
"clinic_location": "94168 Witting Prairie\nNorth Madysonburgh, MD 14800-4889",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"entries": [
{
"id": 2,
"config_history_id": 3,
"config_id": 4,
"old_value": "minus",
"new_value": "voluptas",
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z",
"config_entry": {
"id": 4,
"device_id": 35,
"mode_id": null,
"key": "labore",
"value": "qui",
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:HISTORY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get device config history entry
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/history/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/history/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 5,
"device_id": 36,
"index": null,
"name": "Reiciendis illum culpa laborum expedita sint quasi minima.",
"config": "{\"common\":{\"fingerStrength\":[1,400],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[22,42,3,39,10],\"limit\":[36,84,86,42,59]},\"1\":{\"initial\":[17,6,9,11,74],\"limit\":[46,17,65,50,89]},\"2\":{\"initial\":[64,57,52,35,88],\"limit\":[89,61,69,52,89]},\"3\":{\"initial\":[77,6,37,24,12],\"limit\":[91,94,62,24,56]},\"4\":{\"initial\":[4,11,44,35,82],\"limit\":[47,61,77,45,94]},\"5\":{\"initial\":[65,65,26,1,9],\"limit\":[95,88,85,47,60]},\"6\":{\"initial\":[9,78,26,15,2],\"limit\":[34,85,46,91,77]},\"7\":{\"initial\":[71,7,3,20,36],\"limit\":[77,20,32,27,64]},\"8\":{\"initial\":[30,24,2,27,42],\"limit\":[42,70,86,89,60]},\"9\":{\"initial\":[75,38,9,25,2],\"limit\":[75,81,35,71,92]},\"10\":{\"initial\":[3,25,26,3,19],\"limit\":[45,67,94,76,85]},\"11\":{\"initial\":[63,14,26,37,75],\"limit\":[78,93,52,45,85]},\"12\":{\"initial\":[1,60,45,65,57],\"limit\":[10,61,67,92,68]},\"13\":{\"initial\":[14,29,11,18,67],\"limit\":[40,67,23,45,75]}},\"inputSite\":[1]},\"modes\":[{\"id\":15,\"name\":\"Illo repudiandae ea sint voluptatem aut aliquam.\",\"slot\":0,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[400,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[50,70,30,90,100,100,10,50,80,20],\"gripPairsConfig\":[2,12,11,8,6,5,4,7],\"gripSequentialConfig\":[11,10,8,4,7,1,13,255,5,255,255,255],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2500],\"pulseTimings\":[130,730,410,300],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":16,\"name\":\"Et dolor pariatur rerum similique voluptatibus sit.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,0],\"coContractionTimings\":[500,400],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[80,50,100,30,80,30,20,20,0,0],\"gripPairsConfig\":[4,7,2,3,8,1,5,11],\"gripSequentialConfig\":[9,1,8,5,10,6,4,13,12,255,3,2],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,1500],\"pulseTimings\":[760,930,600,840],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":17,\"name\":\"Eveniet nam impedit quisquam.\",\"slot\":2,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[400,300],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[100,80,70,70,40,90,80,70,30,70],\"gripPairsConfig\":[12,1,3,5,8,6,11,4],\"gripSequentialConfig\":[11,12,255,4,255,255,10,8,255,5,2,1],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2000],\"pulseTimings\":[680,870,240,580],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"restore_point": 0,
"factory_reset_point": 0,
"changed_by": 51,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device config",
"code": "CONFIG:HISTORY_ENTRY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY_ENTRY:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:HISTORY_ENTRY:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update config history
requires authentication
Returns updated config history in response.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/history/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote session 2022-05-30\",
\"restore_point\": true,
\"factory_reset_point\": false
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/history/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote session 2022-05-30",
"restore_point": true,
"factory_reset_point": false
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 6,
"device_id": 40,
"index": null,
"name": "Magnam eum dolorum quod nam.",
"config": "{\"common\":{\"fingerStrength\":[1,300],\"gripPositions\":{\"_\":0,\"0\":{\"initial\":[18,26,66,3,13],\"limit\":[62,38,86,55,37]},\"1\":{\"initial\":[59,3,45,38,16],\"limit\":[91,78,53,66,29]},\"2\":{\"initial\":[56,16,76,44,4],\"limit\":[79,50,92,67,53]},\"3\":{\"initial\":[3,23,1,33,16],\"limit\":[26,62,85,90,59]},\"4\":{\"initial\":[16,21,44,16,64],\"limit\":[93,43,59,95,69]},\"5\":{\"initial\":[16,7,53,28,56],\"limit\":[30,14,62,51,61]},\"6\":{\"initial\":[14,48,67,18,35],\"limit\":[88,67,85,46,43]},\"7\":{\"initial\":[40,18,19,28,2],\"limit\":[79,57,51,78,11]},\"8\":{\"initial\":[16,67,47,73,38],\"limit\":[41,76,59,79,56]},\"9\":{\"initial\":[5,56,22,2,8],\"limit\":[82,90,56,70,87]},\"10\":{\"initial\":[20,62,7,39,20],\"limit\":[32,66,61,63,94]},\"11\":{\"initial\":[32,42,36,73,2],\"limit\":[81,93,89,85,57]},\"12\":{\"initial\":[73,37,26,63,70],\"limit\":[90,89,58,78,82]},\"13\":{\"initial\":[54,20,48,16,48],\"limit\":[62,65,68,40,90]}},\"inputSite\":[1]},\"modes\":[{\"id\":18,\"name\":\"Animi et omnis ducimus id velit et sit.\",\"slot\":0,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[500,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[0,80,10,60,80,40,90,50,20,30],\"gripPairsConfig\":[1,6,2,7,3,5,10,11],\"gripSequentialConfig\":[4,2,255,8,1,255,3,255,9,255,255,255],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2000],\"pulseTimings\":[230,950,30,290],\"softGrip\":[1],\"speedControlStrategy\":[1]}},{\"id\":19,\"name\":\"Et ipsa quo consequatur id alias perspiciatis non.\",\"slot\":1,\"config\":{\"autoGrasp\":[0,100],\"coContractionTimings\":[400,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[80,60,10,80,100,70,70,40,90,40],\"gripPairsConfig\":[7,3,6,2,1,8,4,11],\"gripSequentialConfig\":[3,8,255,5,1,6,255,7,2,255,255,255],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2500],\"pulseTimings\":[140,470,920,600],\"softGrip\":[0],\"speedControlStrategy\":[0]}},{\"id\":20,\"name\":\"Sunt soluta explicabo sint aut et.\",\"slot\":2,\"config\":{\"autoGrasp\":[1,100],\"coContractionTimings\":[100,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[10,50,40,0,40,90,10,60,70,0],\"gripPairsConfig\":[3,4,9,12,6,2,7,10],\"gripSequentialConfig\":[255,5,3,8,12,13,4,1,255,2,6,10],\"gripSwitchingMode\":[2],\"holdOpen\":[1500,2500],\"pulseTimings\":[130,300,690,980],\"softGrip\":[0],\"speedControlStrategy\":[0]}}]}",
"restore_point": 1,
"factory_reset_point": 0,
"changed_by": 52,
"created_at": "2026-01-12T16:47:46.000000Z",
"updated_at": "2026-01-12T16:47:46.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:HISTORY_UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Factory reset point already exists):
{
"message": "Factory reset point does not exist",
"code": "CONFIG:HISTORY_UPDATE:FACTORY_RESET_POINT_ALREADY_EXISTS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:HISTORY_UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:HISTORY_UPDATE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Undo single config history change
requires authentication
Returns updated config in response.
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/config/history/undo/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/history/undo/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, Normal/compact response):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:UNDO:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:UNDO:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:UNDO:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Restore config history entry
requires authentication
Restores config from given config history entry (all changes). Sends support ticket if patient is assigned to device, returns config instead.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/restore/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/restore/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, Patient not assigned, returns config):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (202):
{
"id": 1,
"sender_id": 53,
"recipient_id": 54,
"device_id": null,
"meeting_date": "2026-01-12 16:47:47",
"meeting_type": "online_meeting",
"contact_email": "lesley.oreilly@hotmail.com",
"status": "new",
"created_at": "2026-01-12T16:47:47.000000Z",
"updated_at": "2026-01-12T16:47:47.000000Z",
"sender": {
"id": 53,
"mrn": "9OGD2ICX1768236467",
"name": "Prof. Theresa Boehm II",
"email": "1768236467rahul82@example.org",
"language": "en",
"phone": "+1.631.214.5401",
"phone_country": "PR",
"phone_verified_at": null,
"address1": "41209 Oberbrunner Throughway Apt. 655",
"address2": "Fisherview, CO 14376-7979",
"postal_code": "78460",
"city": "Berge Ltd",
"clinic_name": "North Melyna",
"clinic_location": "3777 Jasmin Forge\nSouth Bartholomemouth, TN 03325-2008",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:47.000000Z",
"updated_at": "2026-01-12T16:47:47.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 54,
"mrn": "MX491N1J1768236467",
"name": "Savanna Moore",
"email": "1768236467qtreutel@example.net",
"language": "en",
"phone": "+1-239-609-6459",
"phone_country": "AL",
"phone_verified_at": null,
"address1": "869 Janae Corner",
"address2": "Carolborough, PA 56951-9334",
"postal_code": "37141-2375",
"city": "Wintheiser PLC",
"clinic_name": "Onachester",
"clinic_location": "58144 Reichel Street Suite 062\nLake Deonte, SD 89648-9532",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:47.000000Z",
"updated_at": "2026-01-12T16:47:47.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 55,
"title": "Dr.",
"content": "Fuga dolorum eveniet eos nobis.",
"is_read": false,
"created_at": "2026-01-12T16:47:47.000000Z",
"updated_at": "2026-01-12T16:47:47.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:RESTORE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:RESTORE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:RESTORE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Restore to factory reset point
requires authentication
Restores config from the device's factory reset point. Sends a support ticket if the patient is assigned to the device. Returns the array that contains:
config- The factory reset config. It might be updated with current config entries when the restored config does not contain a key or its value is false, but the key is available in the current config, has a non-false value, and is required by the config schema.not_modified- The part of the current config that contains keys which were ignored (because they’re on the ignore list, such as custom grips settings), or were not updated with values from the factory reset config (because the values are the same in both configs, or missing in the factory reset config but present and non-false in the current config). These are included in theconfigto ensure their values remain unchanged and are not replaced with defaults.ticket- Support ticket entity, if patient is assigned, null otherwise.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/restore-factory-reset" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/restore-factory-reset"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"config": {
"common": {
"inputSite": [
1
],
"generalHandSettings": false,
"batteryBeep": [
1,
0
],
"emgGains": false,
"autoGrasp": false
},
"modes": [
{
"id": 1,
"name": "Mode 0",
"slot": 0,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
},
{
"id": 1530,
"name": "Mode 1",
"slot": 1,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
},
{
"id": 1531,
"name": "Mode 2",
"slot": 2,
"config": {
"gripPairsConfig": false,
"emgThresholds": false,
"emgSpike": false,
"controlMode": false
}
}
]
},
"not_modified": {
"common": {
"inputSite": [
1
],
"batteryBeep": [
1,
0
],
"generalHandSettings": [
1,
2,
3,
4
]
},
"modes": [
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
},
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
},
{
"userFeedbackType": false,
"buzzingVolumeSettings": false
}
]
},
"ticket": {
"id": 1,
"sender_id": 1,
"recipient_id": 2,
"device_id": 1,
"meeting_date": "2025-07-22T15:00:00.000000Z",
"meeting_type": "none",
"contact_email": null,
"status": "new",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z",
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 1,
"title": "New config update",
"content": "",
"is_read": false,
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z",
"attachments": [
{
"id": 6629,
"ticket_id": 12973,
"ticket_message_id": 6517,
"type": "json",
"title": "Current config",
"attachment": "{\"common\":{},\"modes\":[{\"id\":1,\"name\":\"Mode 0\",\"slot\":0,\"config\":{}},{\"id\":2,\"name\":\"Mode 1\",\"slot\":1,\"config\":{}},{\"id\":3,\"name\":\"Mode 2\",\"slot\":2,\"config\":{}}]}",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z"
},
{
"id": 6630,
"ticket_id": 12973,
"ticket_message_id": 6517,
"type": "json",
"title": "New config",
"attachment": "{\"common\":{},\"modes\":[{\"id\":1,\"name\":\"Mode 0\",\"slot\":0,\"config\":{}},{\"id\":2,\"name\":\"Mode 1\",\"slot\":1,\"config\":{}},{\"id\":3,\"name\":\"Mode 2\",\"slot\":2,\"config\":{}}]}",
"created_at": "2025-07-22T15:00:00.000000Z",
"updated_at": "2025-07-22T15:00:00.000000Z"
}
]
}
]
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:RESTORE_FACTORY_RESET:INSUFFICIENT_PERMISSION"
}
Example response (403, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG:RESTORE_FACTORY_RESET:NO_RESTORE_POINT"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:RESTORE_FACTORY_RESET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send test config
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/send" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"description\": \"Fixed problem with grips.\",
\"p2p_session\": 1,
\"common\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\",
\"modes\": [
{
\"id\": 1,
\"config\": \"{\\\"gripPairsConfig\\\": [1, 4, 2, 3, 6, 7, 9, 8], \\\"controlConfig\\\": [0, 1, 0, 0, 0], \\\"gripSequentialConfig\\\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/send"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"description": "Fixed problem with grips.",
"p2p_session": 1,
"common": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]",
"modes": [
{
"id": 1,
"config": "{\"gripPairsConfig\": [1, 4, 2, 3, 6, 7, 9, 8], \"controlConfig\": [0, 1, 0, 0, 0], \"gripSequentialConfig\": [1, 2, 4, 3, 0, 255, 6, 7, 9, 8, 255, 255]"
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 7,
"sender_id": 64,
"recipient_id": 65,
"device_id": null,
"meeting_date": "2026-01-12 16:47:47",
"meeting_type": "online_meeting",
"contact_email": "moen.cathy@ratke.com",
"status": "new",
"created_at": "2026-01-12T16:47:48.000000Z",
"updated_at": "2026-01-12T16:47:48.000000Z",
"sender": {
"id": 64,
"mrn": "3GECRWIE1768236467",
"name": "Ignatius Watsica",
"email": "1768236467wfritsch@example.com",
"language": "en",
"phone": "+14135174422",
"phone_country": "PK",
"phone_verified_at": null,
"address1": "2805 Danial Island Apt. 013",
"address2": "Port Justinatown, NH 34427-9454",
"postal_code": "12742",
"city": "Murphy, Watsica and Luettgen",
"clinic_name": "Laverneburgh",
"clinic_location": "4091 Hand Street\nNew Elliott, CO 82929",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:47.000000Z",
"updated_at": "2026-01-12T16:47:47.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 65,
"mrn": "FUY1REQD1768236467",
"name": "Cole Wiegand",
"email": "1768236467xcronin@example.com",
"language": "en",
"phone": "(520) 399-7521",
"phone_country": "BR",
"phone_verified_at": null,
"address1": "55107 Mraz Route Suite 854",
"address2": "South Pasqualeport, IN 14337",
"postal_code": "47525-1018",
"city": "Bayer-Mayer",
"clinic_name": "North Tyreek",
"clinic_location": "94663 Kovacek Keys Apt. 871\nHowellton, CT 99184-2460",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:48.000000Z",
"updated_at": "2026-01-12T16:47:48.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 4,
"ticket_id": 7,
"sender_id": 66,
"title": "Ms.",
"content": "Ducimus natus recusandae exercitationem sit perspiciatis earum quae totam.",
"is_read": false,
"created_at": "2026-01-12T16:47:48.000000Z",
"updated_at": "2026-01-12T16:47:48.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:SEND:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG:SEND:DEVICE_NOT_FOUND"
}
Example response (422, Device does not have an amputee assigned):
{
"message": "Device does not have an amputee assigned",
"code": "CONFIG:SEND:NO_PATIENT"
}
Example response (422, Invalid P2P session):
{
"message": "Invalid P2P session",
"code": "CONFIG:SEND:INVALID_P2P_SESSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Convert config
requires authentication
Convert config JSON to match given Firmware Version. Keys are moved between common config and modes.
Example request:
curl --request POST \
"http://localhost:8000/api/config/convert" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"config\": \"[\\\"reiciendis\\\",\\\"ut\\\"]\",
\"firmware\": 1
}"
const url = new URL(
"http://localhost:8000/api/config/convert"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"config": "[\"reiciendis\",\"ut\"]",
"firmware": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device config",
"code": "CONFIG:CONVERT:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG:CONVERT:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Demo
API endpoints for managing config demos
List config demos
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/demos?accepted=15" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/demos"
);
const params = {
"accepted": "15",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_id": 72,
"message_id": 8,
"config": "Pariatur id quia autem enim maiores.",
"is_accepted": 1,
"notes": "Rem incidunt debitis odio.",
"created_at": "2026-01-12T16:47:49.000000Z",
"updated_at": "2026-01-12T16:47:49.000000Z",
"message": {
"id": 8,
"ticket_id": 15,
"sender_id": 87,
"title": "Mrs.",
"content": "Voluptatem accusantium voluptatem ducimus facilis ad maiores quibusdam magnam.",
"is_read": false,
"created_at": "2026-01-12T16:47:49.000000Z",
"updated_at": "2026-01-12T16:47:49.000000Z"
}
},
{
"id": 2,
"device_id": 73,
"message_id": 10,
"config": "Sed laborum nesciunt et iusto vel.",
"is_accepted": 1,
"notes": "Atque necessitatibus eum eos rerum.",
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"message": {
"id": 10,
"ticket_id": 18,
"sender_id": 92,
"title": "Ms.",
"content": "Fugiat deleniti corporis officiis vitae ratione aspernatur.",
"is_read": false,
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config demos",
"code": "CONFIG_DEMO:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_DEMO:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update config demo
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/config/demos/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"is_accepted\": false,
\"notes\": \"Something is still not working\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/demos/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"is_accepted": false,
"notes": "Something is still not working"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"device_id": 74,
"message_id": 11,
"config": "Placeat ratione quibusdam at autem provident.",
"is_accepted": 0,
"notes": "Possimus velit reprehenderit aut voluptatem.",
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config demos",
"code": "CONFIG_DEMO:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_DEMO:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config demo not found):
{
"message": "Config demo not found",
"code": "CONFIG_DEMO:UPDATE:DEMO_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Modes
API endpoints for managing config modes
List config modes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config-modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 72,
"device_id": 103,
"slot": null,
"name": "Nisi vel dolorem non dignissimos sequi.",
"active": 1,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"device": {
"id": 103,
"serial": "7fe2e7c0-3796-3a00-9ef4-1ff1c6829605",
"bluetooth_id": "bac97e64-8811-34b7-b589-a33cf0576ebe",
"company_id": null,
"model_id": null,
"amputee_id": 105,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z"
}
},
{
"id": 73,
"device_id": 105,
"slot": null,
"name": "Omnis odit distinctio enim non.",
"active": 1,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"config": {}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config modes",
"code": "CONFIG_MODES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get config mode
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config-modes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 74,
"device_id": 106,
"slot": null,
"name": "Facere nihil itaque et tenetur.",
"active": 0,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config modes",
"code": "CONFIG_MODES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:GET:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:GET:MODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create config mode
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config-modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"slot\": 0,
\"name\": \"Sport mode\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config-modes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"slot": 0,
"name": "Sport mode",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 75,
"device_id": 107,
"slot": null,
"name": "Cumque consequatur in aut.",
"active": 1,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create config modes",
"code": "CONFIG_MODES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:CREATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update config mode
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/config-modes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"slot\": 0,
\"name\": \"Sport mode\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"slot": 0,
"name": "Sport mode",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 76,
"device_id": 108,
"slot": null,
"name": "Sit eius maiores molestiae perspiciatis.",
"active": 0,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config mode",
"code": "CONFIG_MODES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:UPDATE:MODE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Copy device config from template
requires authentication
Copy config template into selected config mode. Sends support ticket if patient is assigned to device, returns config instead.
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config-modes/1/from-template/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config-modes/1/from-template/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, Patient not assigned, returns config):
{
"common": {
"gripPairsConfig": [
1,
4,
2,
3,
6,
7,
9,
8
],
"controlConfig": [
0,
1,
0,
0,
0
],
"emgThresholds": [
0,
0,
0,
0,
0,
0,
0,
0,
0,
0
],
"interval": [
100
],
"gripSequentialConfig": [
1,
2,
4,
3,
0,
255,
6,
7,
9,
8,
255,
255
]
},
"modes": [
{
"id": 100,
"name": "Mode 1",
"slot": 0,
"config": {
"interval": [
300
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 101,
"name": "Mode 2",
"slot": 1,
"config": {
"interval": [
400
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
},
{
"id": 102,
"name": "Mode 3",
"slot": 2,
"config": {
"interval": [
500
],
"fingerStrength": [
1,
100
],
"autoGrasp": [
0,
100
],
"emgSpike": [
0,
300
]
}
}
]
}
Example response (202):
{
"id": 21,
"sender_id": 107,
"recipient_id": 108,
"device_id": null,
"meeting_date": "2026-01-12 16:47:51",
"meeting_type": "online_meeting",
"contact_email": "pagac.deangelo@olson.com",
"status": "new",
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"sender": {
"id": 107,
"mrn": "CP72ENQQ1768236471",
"name": "Mrs. Selena Bahringer PhD",
"email": "1768236471madisen.olson@example.com",
"language": "en",
"phone": "(949) 471-8773",
"phone_country": "KH",
"phone_verified_at": null,
"address1": "159 Miller Lodge Apt. 028",
"address2": "Lake Camille, OK 02534",
"postal_code": "39551-5268",
"city": "Kirlin, Mueller and Barton",
"clinic_name": "Konopelskiport",
"clinic_location": "50777 Lonzo Loaf\nLake Arch, NE 84611",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 108,
"mrn": "V92Y1JAC1768236471",
"name": "Viola Marquardt",
"email": "1768236471hardy.fay@example.com",
"language": "en",
"phone": "279.678.4838",
"phone_country": "UZ",
"phone_verified_at": null,
"address1": "35007 Elliott Spring Suite 492",
"address2": "Schummmouth, NH 32534-3943",
"postal_code": "51880-4747",
"city": "Donnelly-Harris",
"clinic_name": "Leannonfurt",
"clinic_location": "56622 Schroeder Lights\nLondonton, OH 88879",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": null,
"messages": [
{
"id": 12,
"ticket_id": 21,
"sender_id": 109,
"title": "Dr.",
"content": "Voluptatum et doloremque fugiat laboriosam voluptatem alias ullam.",
"is_read": false,
"created_at": "2026-01-12T16:47:52.000000Z",
"updated_at": "2026-01-12T16:47:52.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config mode",
"code": "CONFIG_MODES:COPY_TEMPLATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:DEVICE_NOT_FOUND"
}
Example response (404, Config mode not found):
{
"message": "Config mode not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:MODE_NOT_FOUND"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_MODES:COPY_TEMPLATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Notes
API endpoints for config history notes
Get config entry notes list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/1/notes?user=1&type=public" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes"
);
const params = {
"user": "1",
"type": "public",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"config_history_id": 7,
"user_id": 76,
"note": "Delectus nostrum iure labore unde.",
"type": "public",
"created_at": "2026-01-12T16:47:48.000000Z",
"updated_at": "2026-01-12T16:47:48.000000Z",
"author": {
"id": 76,
"mrn": "BM3G57TI1768236468",
"name": "Lawson Kessler",
"email": "1768236468chanel82@example.org",
"language": "en",
"phone": "+1.281.973.2370",
"phone_country": "GB",
"phone_verified_at": null,
"address1": "807 Witting Hill",
"address2": "Huelsshire, RI 88813",
"postal_code": "86941",
"city": "Koch, Lakin and Leffler",
"clinic_name": "Uptonville",
"clinic_location": "923 Grant Parkways Suite 029\nEast Talonshire, WI 13705",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:48.000000Z",
"updated_at": "2026-01-12T16:47:48.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"config_history_id": 8,
"user_id": 78,
"note": "Recusandae soluta modi ipsum id deleniti.",
"type": "public",
"created_at": "2026-01-12T16:47:49.000000Z",
"updated_at": "2026-01-12T16:47:49.000000Z",
"author": {
"id": 78,
"mrn": "6931BN4Y1768236468",
"name": "Emelie Walker DDS",
"email": "1768236468vreichel@example.org",
"language": "en",
"phone": "757.765.8413",
"phone_country": "KY",
"phone_verified_at": null,
"address1": "82026 Howell Extensions Suite 198",
"address2": "Lake Linda, NV 05309",
"postal_code": "67772",
"city": "Koch LLC",
"clinic_name": "Erdmanberg",
"clinic_location": "588 Idell Forest\nLake Maximilianborough, AL 10386",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:49.000000Z",
"updated_at": "2026-01-12T16:47:49.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config notes",
"code": "CONFIG_NOTES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:LIST:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:LIST:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get config entry note
requires authentication
Returns single config history entry note in response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/config/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"config_history_id": 9,
"user_id": 80,
"note": "Modi cupiditate quisquam rerum beatae.",
"type": "public",
"created_at": "2026-01-12T16:47:49.000000Z",
"updated_at": "2026-01-12T16:47:49.000000Z",
"author": {
"id": 80,
"mrn": "NPRVG3WV1768236469",
"name": "Dr. Dexter Will III",
"email": "1768236469witting.annabelle@example.net",
"language": "en",
"phone": "907-210-6208",
"phone_country": "OM",
"phone_verified_at": null,
"address1": "93992 Maurice Village Apt. 040",
"address2": "Starkborough, DE 32502",
"postal_code": "31018-3825",
"city": "Hansen PLC",
"clinic_name": "West Phoebefurt",
"clinic_location": "456 Aufderhar Drives\nAlichester, OH 60486",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:49.000000Z",
"updated_at": "2026-01-12T16:47:49.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config notes",
"code": "CONFIG_NOTES:GET_ENTRY:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:GET_ENTRY:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:GET_ENTRY:HISTORY_ENTRY_NOT_FOUND"
}
Example response (404, Config history note not found):
{
"message": "Config history note not found",
"code": "CONFIG_NOTES:GET_ENTRY:HISTORY_NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create config entry note
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/config/1/notes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"note\": \"Dolores eveniet et animi ut quis.\",
\"type\": \"public\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"note": "Dolores eveniet et animi ut quis.",
"type": "public"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 4,
"config_history_id": 10,
"user_id": 82,
"note": "Est eius vitae velit vitae repellendus.",
"type": "public",
"created_at": "2026-01-12T16:47:49.000000Z",
"updated_at": "2026-01-12T16:47:49.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add config notes",
"code": "CONFIG_NOTES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:CREATE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:CREATE:HISTORY_ENTRY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete config note
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/config/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/config/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config history note deleted",
"code": "CONFIG_NOTES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config notes",
"code": "CONFIG_NOTES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CONFIG_NOTES:DELETE:DEVICE_NOT_FOUND"
}
Example response (404, Config history entry not found):
{
"message": "Config history entry not found",
"code": "CONFIG_NOTES:DELETE:HISTORY_ENTRY_NOT_FOUND"
}
Example response (404, Config history note not found):
{
"message": "Config history note not found",
"code": "CONFIG_NOTES:DELETE:HISTORY_NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Schema
API endpoints for config schema management
Get config schema
requires authentication
Returns list of config schema entries for given firmware version.
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/firmware/1/schema?filter=modes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1/schema"
);
const params = {
"filter": "modes",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"firmware_id": 7,
"key": "laudantium",
"is_common": 1,
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
},
{
"id": 2,
"firmware_id": 9,
"key": "est",
"is_common": 0,
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view config schema",
"code": "CONFIG_SCHEMA:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:GET:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Add config schema
requires authentication
Add one or many config schema entries. Each entry is one key in config. Body of this request is simple array of objects:
[
{"key": "key_name", "is_common": 1},
{"key": "another_name", "is_common": 0},
...
]
Example request:
curl --request POST \
"http://localhost:8000/api/versions/firmware/quia/schema" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "[
{
\"key\": \"gripsPosition.0.initial\",
\"is_common\": 1
}
]"
const url = new URL(
"http://localhost:8000/api/versions/firmware/quia/schema"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = [
{
"key": "gripsPosition.0.initial",
"is_common": 1
}
];
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"firmware_id": 11,
"key": "id",
"is_common": 0,
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
},
{
"id": 4,
"firmware_id": 13,
"key": "et",
"is_common": 1,
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage config schema",
"code": "CONFIG_SCHEMA:ADD:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:ADD:FIRMWARE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete config schema
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/firmware/1/schema/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1/schema/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config schema entry deleted",
"code": "CONFIG_SCHEMA:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage config schema",
"code": "CONFIG_SCHEMA:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "CONFIG_SCHEMA:DELETE:FIRMWARE_NOT_FOUND"
}
Example response (404, Config schema entry not found):
{
"message": "Config schema entry not found",
"code": "CONFIG_SCHEMA:DELETE:SCHEMA_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Templates
API endpoints for managing config templates
Get config templates list
requires authentication
Entries where author is present are private and owned by its author. Entries where author is null should be considered as global templates prepared by Aether team.
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates?search=sport&author=1&scope=me" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates"
);
const params = {
"search": "sport",
"author": "1",
"scope": "me",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Quidem alias doloribus enim ea.",
"description": "Officia ea consequuntur excepturi velit aspernatur commodi animi architecto.",
"author_id": 96,
"company_id": null,
"config": "{\"autoGrasp\":[1,0],\"coContractionTimings\":[500,400],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[60,50,50,60,100,0,90,80,0,100],\"gripPairsConfig\":[10,2,9,1,13,11,4,6],\"gripSequentialConfig\":[10,13,3,255,6,5,2,9,4,7,255,8],\"gripSwitchingMode\":[3],\"holdOpen\":[1500,2500],\"pulseTimings\":[970,600,630,380],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"author": {
"id": 96,
"mrn": "NBB3067H1768236470",
"name": "Makayla Lueilwitz",
"email": "1768236470dare.thomas@example.com",
"language": "en",
"phone": "351-358-0206",
"phone_country": "SN",
"phone_verified_at": null,
"address1": "3690 Powlowski Knoll",
"address2": "Johannahaven, MT 55682-6637",
"postal_code": "16033-3381",
"city": "Kihn PLC",
"clinic_name": "Port Milton",
"clinic_location": "7539 Coby Station Suite 417\nNorth John, NJ 32442-0087",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"name": "Maiores fugit neque eos dolorem qui quam sint quam.",
"description": "Possimus quam dolorum perferendis saepe quia delectus.",
"author_id": 97,
"company_id": null,
"config": "{\"autoGrasp\":[0,100],\"coContractionTimings\":[300,100],\"controlMode\":[0],\"emgGains\":[100,100],\"emgSpike\":[1,300],\"emgThresholds\":[40,100,100,10,90,70,10,40,50,30],\"gripPairsConfig\":[9,3,10,11,7,5,1,8],\"gripSequentialConfig\":[255,255,255,10,255,5,255,255,13,255,8,255],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2000],\"pulseTimings\":[20,660,530,350],\"softGrip\":[0],\"speedControlStrategy\":[1]}",
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"author": {
"id": 97,
"mrn": "9EQQTMCH1768236470",
"name": "Mr. Erich Gislason",
"email": "1768236470lamar.rath@example.org",
"language": "en",
"phone": "425.751.1870",
"phone_country": "LB",
"phone_verified_at": null,
"address1": "1347 Elaina Cliff",
"address2": "Hammesshire, VT 29249",
"postal_code": "55209-9918",
"city": "Turcotte, Reichel and Durgan",
"clinic_name": "West Dandre",
"clinic_location": "15770 Morgan Bypass Apt. 819\nStiedemannshire, GA 36170",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list config templates",
"code": "CONFIG_TEMPLATES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get config template
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"name": "Libero incidunt quod officia temporibus rerum officiis et.",
"description": "Enim perferendis pariatur tempora nemo adipisci totam fugiat adipisci.",
"author_id": 98,
"company_id": null,
"config": "{\"autoGrasp\":[0,0],\"coContractionTimings\":[500,200],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[60,90,60,60,70,60,10,20,80,70],\"gripPairsConfig\":[13,4,9,12,1,8,6,2],\"gripSequentialConfig\":[1,6,3,10,255,12,8,255,4,13,11,7],\"gripSwitchingMode\":[1],\"holdOpen\":[1500,2000],\"pulseTimings\":[360,830,830,280],\"softGrip\":[0],\"speedControlStrategy\":[1]}",
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"author": {
"id": 98,
"mrn": "ZV0AA7FI1768236470",
"name": "Dr. Amber Lind DVM",
"email": "1768236470soledad79@example.net",
"language": "en",
"phone": "860-297-0666",
"phone_country": "GM",
"phone_verified_at": null,
"address1": "36629 Chloe Coves Apt. 880",
"address2": "Rutheborough, LA 06915",
"postal_code": "23051",
"city": "Beier-Weber",
"clinic_name": "New Letitia",
"clinic_location": "4208 Gutmann Knoll Suite 735\nNorth Destiny, ND 66048",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view config template",
"code": "CONFIG_TEMPLATES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:GET:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new config template
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/config/templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Default config for Aether Zeus\",
\"description\": \"Description of the config template.\",
\"owner\": \"company\",
\"author\": 1,
\"config\": \"{\\\"param_1\\\": [100, 200], \\\"param_2\\\": [100, 200, 300]}\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Default config for Aether Zeus",
"description": "Description of the config template.",
"owner": "company",
"author": 1,
"config": "{\"param_1\": [100, 200], \"param_2\": [100, 200, 300]}"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "Placeat recusandae iure eos quasi non.",
"description": "Ipsum repudiandae laudantium laborum expedita et.",
"author_id": 99,
"company_id": null,
"config": "{\"autoGrasp\":[0,100],\"coContractionTimings\":[200,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[40,70,10,20,100,10,50,70,20,60],\"gripPairsConfig\":[7,3,12,9,4,5,13,2],\"gripSequentialConfig\":[2,255,7,255,8,10,255,12,9,255,255,255],\"gripSwitchingMode\":[2],\"holdOpen\":[2000,2500],\"pulseTimings\":[490,490,240,10],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"author": {
"id": 99,
"mrn": "XHIZ5RWN1768236470",
"name": "Rachel Klein",
"email": "1768236470hilario.bins@example.com",
"language": "en",
"phone": "801.914.9065",
"phone_country": "OM",
"phone_verified_at": null,
"address1": "52246 Feeney Mountains",
"address2": "West Dalehaven, KY 79485-3652",
"postal_code": "44594",
"city": "Zemlak-Moore",
"clinic_name": "South Arnulfo",
"clinic_location": "55223 Sarai Alley\nBednarbury, LA 25309-1218",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create config template",
"code": "CONFIG_TEMPLATES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update config template
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Default config for Aether Zeus\",
\"description\": \"Description of the config template.\",
\"owner\": \"company\",
\"author\": 1,
\"config\": \"{\\\"param_1\\\": [100, 200], \\\"param_2\\\": [100, 200, 300]}\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Default config for Aether Zeus",
"description": "Description of the config template.",
"owner": "company",
"author": 1,
"config": "{\"param_1\": [100, 200], \"param_2\": [100, 200, 300]}"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"name": "Quo omnis sint neque.",
"description": "Aut quas ullam id id est.",
"author_id": 100,
"company_id": null,
"config": "{\"autoGrasp\":[1,0],\"coContractionTimings\":[400,100],\"controlMode\":[1],\"emgGains\":[100,100],\"emgSpike\":[0,300],\"emgThresholds\":[20,70,60,20,10,30,10,0,10,20],\"gripPairsConfig\":[5,13,8,11,4,10,1,6],\"gripSequentialConfig\":[255,255,255,12,255,255,5,6,7,255,255,9],\"gripSwitchingMode\":[3],\"holdOpen\":[2500,2500],\"pulseTimings\":[570,110,820,480],\"softGrip\":[0],\"speedControlStrategy\":[0]}",
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"author": {
"id": 100,
"mrn": "RC02Y9FZ1768236470",
"name": "Breana Volkman",
"email": "1768236470andreanne91@example.com",
"language": "en",
"phone": "+1 (475) 685-1187",
"phone_country": "SN",
"phone_verified_at": null,
"address1": "64113 Noe Estates Apt. 667",
"address2": "Lake Reilly, HI 42798-2647",
"postal_code": "34423",
"city": "Aufderhar, Gutkowski and Rutherford",
"clinic_name": "East Carlie",
"clinic_location": "875 Hoeger Mountains\nWest Serena, DE 14903-3347",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:50.000000Z",
"updated_at": "2026-01-12T16:47:50.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update config template",
"code": "CONFIG_TEMPLATES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:UPDATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete config template
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/config/templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config template deleted",
"code": "CONFIG_TEMPLATES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config template",
"code": "CONFIG_TEMPLATES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATES:DELETE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Config Templates Notes
API endpoints for config templates notes
Get config templates notes list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1/notes?user=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes"
);
const params = {
"user": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"template_id": 6,
"user_id": 101,
"note": "Voluptatum saepe et et voluptas.",
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"author": {
"id": 101,
"mrn": "5H7OGJGZ1768236470",
"name": "Rudy Hagenes",
"email": "1768236470myriam77@example.org",
"language": "en",
"phone": "+18487488043",
"phone_country": "NU",
"phone_verified_at": null,
"address1": "299 Tessie Field",
"address2": "East Chasehaven, RI 90747-5897",
"postal_code": "96068",
"city": "Lubowitz-Lebsack",
"clinic_name": "Hillfurt",
"clinic_location": "79165 Schultz Viaduct\nNew Aliyah, AL 93383",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"template_id": 7,
"user_id": 102,
"note": "Delectus sint quia laborum pariatur doloremque quis optio.",
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"author": {
"id": 102,
"mrn": "XJ8FB9CG1768236471",
"name": "Connie Ruecker MD",
"email": "1768236471bosco.iliana@example.net",
"language": "en",
"phone": "(956) 549-5564",
"phone_country": "MQ",
"phone_verified_at": null,
"address1": "49325 Ferry Highway Suite 748",
"address2": "South Emmetburgh, SD 94375-3506",
"postal_code": "09432-0715",
"city": "Stiedemann, Padberg and Monahan",
"clinic_name": "Jaskolskimouth",
"clinic_location": "96610 Beahan Light Suite 729\nSouth Isabellberg, CA 43459-1678",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:LIST:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get config template note
requires authentication
Returns single config template note in response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/config/templates/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"template_id": 8,
"user_id": 103,
"note": "Assumenda et vel est.",
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"author": {
"id": 103,
"mrn": "G6VKAC7T1768236471",
"name": "Prof. Randall Dickens II",
"email": "1768236471javon.bergstrom@example.org",
"language": "en",
"phone": "706-428-8240",
"phone_country": "LV",
"phone_verified_at": null,
"address1": "1991 Myriam Parkway",
"address2": "North Presleyton, AL 15213",
"postal_code": "87895",
"city": "Greenfelder, Greenfelder and Zulauf",
"clinic_name": "East Scarlettchester",
"clinic_location": "316 Weimann Ramp Apt. 783\nSouth Donnellborough, MN 92257",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:GET:TEMPLATE_NOT_FOUND"
}
Example response (404, Config template note not found):
{
"message": "Config template note not found",
"code": "CONFIG_TEMPLATE_NOTES:GET:NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new config template note
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/config/templates/1/notes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"note\": \"Voluptatem facilis rem qui ducimus debitis est a itaque.\"
}"
const url = new URL(
"http://localhost:8000/api/config/templates/1/notes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"note": "Voluptatem facilis rem qui ducimus debitis est a itaque."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"template_id": 9,
"user_id": 104,
"note": "Exercitationem ea et dolorem pariatur.",
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"author": {
"id": 104,
"mrn": "PRN67FKJ1768236471",
"name": "Isai Marvin III",
"email": "1768236471milan.kertzmann@example.net",
"language": "en",
"phone": "(442) 221-9197",
"phone_country": "CF",
"phone_verified_at": null,
"address1": "978 Kobe Corners",
"address2": "Walkerville, WY 81106",
"postal_code": "26030",
"city": "Stoltenberg-Davis",
"clinic_name": "West Margarett",
"clinic_location": "87991 Medhurst Shores Suite 747\nLake Ana, OR 56717-8688",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:51.000000Z",
"updated_at": "2026-01-12T16:47:51.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:CREATE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete config template note
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/config/templates/1/notes/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/config/templates/1/notes/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Config template note deleted",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete config templates notes",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Config template not found):
{
"message": "Config template not found",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:TEMPLATE_NOT_FOUND"
}
Example response (404, Config template note not found):
{
"message": "Config template note not found",
"code": "CONFIG_TEMPLATE_NOTES:DELETE:NOTE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Custom Grips
API endpoints for custom grips management
List custom grips templates
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/custom-grips-templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/custom-grips-templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": 255,
"name": "daugherty.vivien",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
},
{
"id": 2,
"user_id": 256,
"name": "tess.frami",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create custom grip template
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/custom-grips-templates" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip Template 1\",
\"initial_position\": \"[50, 50, 50, 50, 50]\",
\"limit_position\": \"[900, 900, 900, 900, 900]\",
\"active_fingers\": \"[0, 1, 1, 1, 1]\"
}"
const url = new URL(
"http://localhost:8000/api/custom-grips-templates"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip Template 1",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"user_id": 257,
"name": "khackett",
"initial_position": "[50, 50, 50, 50, 50]",
"limit_position": "[900, 900, 900, 900, 900]",
"active_fingers": "[0, 1, 1, 1, 1]",
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip template name in use):
{
"message": "Custom grip template name already in use",
"code": "CUSTOM_GRIPS_TEMPLATES:CREATE:NAME_IN_USE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete custom grip template
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/custom-grips-templates/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/custom-grips-templates/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Custom grip deleted",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips templates",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Custom grip template not found):
{
"message": "Custom grip template not found",
"code": "CUSTOM_GRIPS_TEMPLATES:DELETE:TEMPLATE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List custom grips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/custom-grips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/custom-grips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_id": 130,
"name": "kgutkowski",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
},
{
"id": 2,
"device_id": 131,
"name": "valentina96",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view custom grips",
"code": "CUSTOM_GRIPS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:LIST:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create custom grip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/custom-grips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip 1\",
\"opposed\": true,
\"grip_number\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/1/custom-grips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip 1",
"opposed": true,
"grip_number": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"device_id": 132,
"name": "jordan91",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip name in use):
{
"message": "Custom grip name already in use",
"code": "CUSTOM_GRIPS:CREATE:NAME_IN_USE"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:CREATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update custom grip
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1/custom-grips/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Custom Grip 1\",
\"opposed\": true,
\"grip_number\": 1
}"
const url = new URL(
"http://localhost:8000/api/device/1/custom-grips/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Custom Grip 1",
"opposed": true,
"grip_number": 1
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"device_id": 133,
"name": "maureen.windler",
"opposed": 1,
"grip_number": 0,
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Custom grip name in use):
{
"message": "Custom grip name already in use",
"code": "CUSTOM_GRIPS:UPDATE:NAME_IN_USE"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:UPDATE:DEVICE_NOT_FOUND"
}
Example response (404, Custom grip not found):
{
"message": "Custom grip not found",
"code": "CUSTOM_GRIPS:UPDATE:GRIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete custom grip
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1/custom-grips/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/custom-grips/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Custom grip template deleted",
"code": "CUSTOM_GRIPS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage custom grips",
"code": "CUSTOM_GRIPS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "CUSTOM_GRIPS:DELETE:DEVICE_NOT_FOUND"
}
Example response (404, Custom grip not found):
{
"message": "Custom grip not found",
"code": "CUSTOM_GRIPS:DELETE:GRIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Device Models
API endpoints for device models management
Get device models list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/devices/models?active=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/devices/models"
);
const params = {
"active": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z"
},
{
"id": 4,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "left",
"active": 1,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list device models",
"code": "DEVICE_MODELS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create device model
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/devices/models" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Zeus hand v1\",
\"type\": \"hand\",
\"orientation\": \"left\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/devices/models"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Zeus hand v1",
"type": "hand",
"orientation": "left",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "left",
"active": 1,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create device model",
"code": "DEVICE_MODELS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update device model
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/devices/models/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Zeus hand v1\",
\"type\": \"hand\",
\"orientation\": \"left\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/devices/models/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Zeus hand v1",
"type": "hand",
"orientation": "left",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 6,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device model",
"code": "DEVICE_MODELS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device model not found):
{
"message": "Device model not found",
"code": "DEVICE_MODELS:UPDATE:MODEL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Devices
API endpoints for devices management
Check serial number or bluetooth ID
Public endpoint responding with status of given device serial number or bluetooth ID. If any of these numbers can be found in database, status will be true. Otherwise, status will be false (device does not exist).
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/check/S3R1AL-NUM83R" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"serial\"
}"
const url = new URL(
"http://localhost:8000/api/device/check/S3R1AL-NUM83R"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "serial"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"status": true
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get devices list
requires authentication
Possible extend options:
- model - device model details
- amputee - end-user assigned to device
- clinicians - list of clinicians assigned to the device
- firmwareVersion - device firmware version
- pcbVersion - PCB version
Example request:
curl --request GET \
--get "http://localhost:8000/api/devices?search=S3R1AL-NUM83R&active=-1&utee=1&clinician=1&model=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/devices"
);
const params = {
"search": "S3R1AL-NUM83R",
"active": "-1",
"amputee": "1",
"clinician": "1",
"model": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 5,
"serial": "ea336b6c-c8e3-3eb8-bdff-2579670e8a9f",
"bluetooth_id": "4fb66cbd-382c-3d92-a574-955e739c0dad",
"company_id": null,
"model_id": 7,
"amputee_id": 34,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z",
"model": {
"id": 7,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z"
},
"amputee": {
"id": 34,
"mrn": "4R4ILZ7M1768236464",
"name": "Jerome Koepp",
"email": "1768236464durgan.candice@example.org",
"language": "en",
"phone": "540.519.5503",
"phone_country": "ES",
"phone_verified_at": null,
"address1": "978 Hauck Glens",
"address2": "West Luciennehaven, CO 71363-2930",
"postal_code": "21168-9728",
"city": "Price PLC",
"clinic_name": "South Chethaven",
"clinic_location": "929 Christophe Avenue\nEast Gertrude, VA 84326",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 6,
"serial": "b93e7e0e-03c5-397f-b309-a30100773ddf",
"bluetooth_id": "152e6c0c-d107-396c-b982-2cd2966ba152",
"company_id": null,
"model_id": 8,
"amputee_id": 35,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z",
"model": {
"id": 8,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "left",
"active": 1,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z"
},
"amputee": {
"id": 35,
"mrn": "ZQSU4C5P1768236464",
"name": "Rashawn Herzog",
"email": "1768236464marvin49@example.org",
"language": "en",
"phone": "+1-862-698-2566",
"phone_country": "UA",
"phone_verified_at": null,
"address1": "149 Bergnaum Bypass Apt. 181",
"address2": "Port Krystel, IL 54124-8131",
"postal_code": "60688-2482",
"city": "Feest and Sons",
"clinic_name": "Neldaton",
"clinic_location": "83487 Eichmann Fall\nDurganshire, KY 64708",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list devices",
"code": "DEVICES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get device information
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 7,
"serial": "0a4b3d47-fcd0-3303-88fe-6d64e409ea7b",
"bluetooth_id": "d6aa8c59-e759-337a-bc82-e45468158cb5",
"company_id": null,
"model_id": 9,
"amputee_id": 36,
"clinician_id": null,
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z",
"model": {
"id": 9,
"name": "Zeus hand v1",
"type": "arm",
"orientation": "right",
"active": 1,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z"
},
"amputee": {
"id": 36,
"mrn": "AS5CLXZV1768236464",
"name": "Christa Reinger",
"email": "1768236464efrain51@example.net",
"language": "en",
"phone": "402.329.1100",
"phone_country": "IR",
"phone_verified_at": null,
"address1": "98256 Giovanni Shoal",
"address2": "Evertton, TN 35870",
"postal_code": "49259",
"city": "Kris PLC",
"clinic_name": "Framibury",
"clinic_location": "1520 Rick Common Suite 788\nSidneybury, SD 99721",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"pcb_version": {
"id": 1,
"name": "3.16.36",
"hardware_id": "",
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:GET:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"serial\": \"S3R1AL-NUM83R\",
\"bluetooth_id\": \"BL0123456789\",
\"model_id\": 1,
\"amputee_id\": 1,
\"clinicians\": [
2
],
\"firmware_version_id\": 1,
\"pcb_version_id\": 1,
\"reverse_magnets\": false,
\"is_electrode\": false,
\"active\": true,
\"last_activity_at\": \"2022-08-15 12:00:00\"
}"
const url = new URL(
"http://localhost:8000/api/device"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"serial": "S3R1AL-NUM83R",
"bluetooth_id": "BL0123456789",
"model_id": 1,
"amputee_id": 1,
"clinicians": [
2
],
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": false,
"is_electrode": false,
"active": true,
"last_activity_at": "2022-08-15 12:00:00"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 8,
"serial": "8533771a-fd47-3579-8e9a-bf55856afde4",
"bluetooth_id": "b8471698-7b6b-32f3-9fa9-755975ac1013",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create device",
"code": "DEVICES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Firmware has no schema):
{
"message": "Cannot create: firmware has no schema",
"code": "DEVICES:CREATE:NO_FIRMWARE_SCHEMA"
}
Example response (500, Server error):
{
"message": "Server error: device not created",
"code": "DEVICES:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update device
requires authentication
Amputee of device can update only these fields:
serial, bluetooth_id, firmware_version_id, pcb_version_id
Example request:
curl --request PUT \
"http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"serial\": \"S3R1AL-NUM83R\",
\"bluetooth_id\": \"BL0123456789\",
\"model_id\": 1,
\"amputee_id\": 1,
\"clinicians\": [
2
],
\"firmware_version_id\": 1,
\"pcb_version_id\": 1,
\"reverse_magnets\": false,
\"is_electrode\": false,
\"active\": true,
\"last_activity_at\": \"2022-08-15 12:00:00\"
}"
const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"serial": "S3R1AL-NUM83R",
"bluetooth_id": "BL0123456789",
"model_id": 1,
"amputee_id": 1,
"clinicians": [
2
],
"firmware_version_id": 1,
"pcb_version_id": 1,
"reverse_magnets": false,
"is_electrode": false,
"active": true,
"last_activity_at": "2022-08-15 12:00:00"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 9,
"serial": "63f77360-c4a2-3b3d-8da8-a55dddd7736c",
"bluetooth_id": "5ba587d3-4f4a-3bf5-9928-b828042db014",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update device",
"code": "DEVICES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Firmware has no schema):
{
"message": "Cannot update: firmware has no schema",
"code": "DEVICES:UPDATE:NO_FIRMWARE_SCHEMA"
}
Example response (403):
{
"message": "Cannot update: no clinicians left for patient relation",
"code": "DEVICES:UPDATE:NO_CLINICIANS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:UPDATE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete device
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Device deleted",
"code": "DEVICES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete device",
"code": "DEVICES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DELETE:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get device hashes
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/device/1/hash" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/hash"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access device hashes",
"code": "DEVICES:GET_HASHES:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:GET_HASHES:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update device hashes
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/hash" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"hash_global\": \"123456789012345\",
\"hash_common_settings\": \"123456789012345\",
\"hash_common_grips\": \"123456789012345\",
\"hash_mode1\": \"123456789012345\",
\"hash_mode2\": \"123456789012345\",
\"hash_mode3\": \"123456789012345\"
}"
const url = new URL(
"http://localhost:8000/api/device/1/hash"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"hash_global": "123456789012345",
"hash_common_settings": "123456789012345",
"hash_common_grips": "123456789012345",
"hash_mode1": "123456789012345",
"hash_mode2": "123456789012345",
"hash_mode3": "123456789012345"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access device hashes",
"code": "DEVICES:SET_HASHES:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:SET_HASHES:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Detach device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/detach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/detach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Device detached",
"code": "DEVICES:DETACH:DETACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to detach device",
"code": "DEVICES:DETACH:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DETACH:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Add device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/add/S3R1AL-NUM83R" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/add/S3R1AL-NUM83R"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 10,
"serial": "b5182146-e146-3002-a9fd-b36e46e731e1",
"bluetooth_id": "b33adf6f-88e3-321f-b8c3-3a2a4d4355e4",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to assign devices with code",
"code": "DEVICES:ASSIGN:INSUFFICIENT_PERMISSION"
}
Example response (403, User reached the temporary limit of attached devices):
{
"message": "Reached the limit of assigned devices",
"code": "DEVICES:ASSIGN:LIMIT_REACHED"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:ASSIGN:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Connect device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/connect/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/connect/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Device connected",
"code": "DEVICES:CONNECT:CONNECTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:CONNECT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:CONNECT:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Disconnect device
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/disconnect/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/disconnect/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Device disconnected",
"code": "DEVICES:DISCONNECT:DISCONNECTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view device data",
"code": "DEVICES:DISCONNECT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DISCONNECT:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Join devices
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/join/1/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/join/1/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200):
{
"id": 11,
"serial": "3cd8b286-58b7-3c67-8bf0-11d8c7e2f100",
"bluetooth_id": "4b6b4450-03ca-3836-9640-e719ca401bdf",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z",
"joined_devices": [
{
"id": 12,
"serial": "8148e4bd-0b72-34a5-bd4a-e2e20d0e43b3",
"bluetooth_id": "143b1a27-eaf2-38d7-a6ba-5cdf772bfd1e",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z",
"pivot": {
"electrode_id": 11,
"device_id": 12,
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
}
}
],
"joined_electrodes": [
{
"id": 13,
"serial": "54135211-e287-3fcc-aba1-a1048145afab",
"bluetooth_id": "b9202f3e-e446-350b-b4b8-950a6b163b05",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z",
"pivot": {
"device_id": 11,
"electrode_id": 13,
"created_at": "2026-01-12T16:47:45.000000Z",
"updated_at": "2026-01-12T16:47:45.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to join devices",
"code": "DEVICES:JOIN:INSUFFICIENT_PERMISSION"
}
Example response (403, Devices already joined):
{
"message": "Device and electrode already joined",
"code": "DEVICES:JOIN:ALREADY_JOINED"
}
Example response (403, Server error):
{
"message": "Server error",
"code": "DEVICES:JOIN:SERVER_ERROR"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:JOIN:DEVICE_NOT_FOUND"
}
Example response (404, Device 1 cannot be an electrode):
{
"message": "Device 1 cannot be an electrode",
"code": "DEVICES:JOIN:INCORRECT_DEVICE1_TYPE"
}
Example response (404, Device 2 must be an electrode):
{
"message": "Device 1 must be an electrode",
"code": "DEVICES:JOIN:INCORRECT_DEVICE2_TYPE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Detach joined devices
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/unjoin/1/2" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/unjoin/1/2"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"message": "Devices unjoined",
"code": "DEVICES:UNJOIN:UNJOINED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to join devices",
"code": "DEVICES:UNJOIN:INSUFFICIENT_PERMISSION"
}
Example response (403, OK):
{
"message": "Devices are not joined",
"code": "DEVICES:UNJOIN:NOT_JOINED"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:UNJOIN:DEVICE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create demo patient
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/device/1/dummy-patient" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/device/1/dummy-patient"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201, OK):
{
"email": "SERIAL@gmail.com",
"password": "Demo@123"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create dummy patient",
"code": "DEVICES:DUMMY_PATIENT:INSUFFICIENT_PERMISSION"
}
Example response (403, Device already has a patient):
{
"message": "Device already has a patient",
"code": "DEVICES:DUMMY_PATIENT:PATIENT_EXISTS"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "DEVICES:DUMMY_PATIENT:DEVICE_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: dummy patient not created",
"code": "DEVICES:DUMMY_PATIENT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Documents
API endpoints for documents management
List documents
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents?type=web" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents"
);
const params = {
"type": "web",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Valve Repairer OR Regulator Repairer",
"type": "mobile",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
},
{
"id": 2,
"name": "Business Teacher",
"type": "web",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create document
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Privacy Policy\",
\"type\": \"web\"
}"
const url = new URL(
"http://localhost:8000/api/documents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Privacy Policy",
"type": "web"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "Speech-Language Pathologist",
"type": "mobile",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete document
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/documents/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Document deleted",
"code": "DOCUMENTS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Document has existing versions):
{
"message": "Cannot delete: document has existing versions (1)",
"code": "DOCUMENTS:DELETE:HAS_VERSIONS"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:DELETE:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List document versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents/1/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"document_id": null,
"index": 22,
"file": "http://pagac.org/asperiores-similique-omnis-esse-recusandae-rerum",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
},
{
"id": 2,
"document_id": null,
"index": 85408546,
"file": "http://towne.com/praesentium-officiis-at-sequi-quos-veritatis",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:LIST_VERSIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:LIST_VERSIONS:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create document version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents/1/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"file\": \"https:\\/\\/www.aetherbiomedical.com\\/privacy-policy\"
}"
const url = new URL(
"http://localhost:8000/api/documents/1/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"file": "https:\/\/www.aetherbiomedical.com\/privacy-policy"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"document_id": null,
"index": 526885221,
"file": "http://koss.info/",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:CREATE_VERSION:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:CREATE_VERSION:DOCUMENT_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete document version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/documents/1/versions/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/1/versions/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Document version deleted",
"code": "DOCUMENTS:DELETE_VERSION:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage documents",
"code": "DOCUMENTS:DELETE_VERSION:INSUFFICIENT_PERMISSION"
}
Example response (404, Document not found):
{
"message": "Document not found",
"code": "DOCUMENTS:DELETE_VERSION:DOCUMENT_NOT_FOUND"
}
Example response (404, Document version not found):
{
"message": "Document version not found",
"code": "DOCUMENTS:DELETE_VERSION:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get documents status
requires authentication
Any document on the list has to be accepted. Use POST /documents/accept endpoint to mark them as accepted once user agrees to that.
Empty list means that user is up-to-date with all required documents and nothing has to be accepted.
Example request:
curl --request GET \
--get "http://localhost:8000/api/documents/status?type=web" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/documents/status"
);
const params = {
"type": "web",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"documents": [],
"texts": {
"title": "Changes to the Privacy Policy",
"description": "Due to the addition of a new data processing entity, please familiarize yourself with and accept the new privacy policy",
"checkbox": "I declare that I have read the content of the Privacy Policy and the Terms and Conditions and accept their provisions. I understand that acceptance is a condition for using the application."
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view documents status",
"code": "DOCUMENTS:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Accept documents
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/documents/accept" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"documents\": [
1
]
}"
const url = new URL(
"http://localhost:8000/api/documents/accept"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"documents": [
1
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Accepted 1 document(s)",
"code": "DOCUMENTS:ACCEPT:ACCEPTED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update documents status",
"code": "DOCUMENTS:ACCEPT:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Feedback
Endpoints related to feedback collecting
Check feedback token
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA/check" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA/check"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200, OK):
{
"valid": true
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send feedback with token
Example request:
curl --request POST \
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"rate\": 5,
\"description\": \"That was amazing!\",
\"skipped\": false
}"
const url = new URL(
"http://localhost:8000/api/feedback/4KJ2YLM0MA64Y6D6FUY2OFY690IICO1OJ2DHR6T68IZNI528H3SKUFJMY0C5DHOA"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"rate": 5,
"description": "That was amazing!",
"skipped": false
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 6,
"type": "on_demand",
"trigger": "firmware_update",
"platform": "mobile",
"rate": 3,
"description": "Consectetur ut autem dicta impedit et quasi nam eligendi.",
"skipped": 0,
"created_at": "2026-01-12T16:47:41.000000Z",
"updated_at": "2026-01-12T16:47:41.000000Z"
}
Example response (403, Invalid token):
{
"message": "Invalid token",
"code": "FEEDBACK:SEND_WITH_TOKEN:INVALID_TOKEN"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get feedback status
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": true,
"firmware_update": true,
"local_session": true,
"async_session": true,
"patient_create": false,
"clinician_invite": true
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to check feedback status",
"code": "FEEDBACK:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send feedback
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/feedback" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"contextual\",
\"trigger\": \"remote_session\",
\"platform\": \"web\",
\"rate\": 5,
\"description\": \"That was amazing!\",
\"skipped\": false
}"
const url = new URL(
"http://localhost:8000/api/feedback"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "contextual",
"trigger": "remote_session",
"platform": "web",
"rate": 5,
"description": "That was amazing!",
"skipped": false
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 2,
"user_id": 306,
"type": "contextual",
"trigger": "patient_create",
"platform": "web",
"rate": 4,
"description": "Non ad quis ut quibusdam repudiandae.",
"skipped": 0,
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to send feedback",
"code": "FEEDBACK:SEND:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List feedback
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (201):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 25,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"user_id": 307,
"type": "contextual",
"trigger": "clinician_invite",
"platform": "web",
"rate": 2,
"description": "Ea et autem adipisci ut excepturi.",
"skipped": 1,
"created_at": "2026-01-12T16:48:10.000000Z",
"updated_at": "2026-01-12T16:48:10.000000Z"
},
{
"id": 4,
"user_id": 308,
"type": "periodic",
"trigger": "patient_create",
"platform": "mobile",
"rate": 3,
"description": "Cupiditate modi aperiam odit in rem.",
"skipped": 0,
"created_at": "2026-01-12T16:48:10.000000Z",
"updated_at": "2026-01-12T16:48:10.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list feedback",
"code": "FEEDBACK:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Export feedback to CSV
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/csv" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/csv"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, CSV file):
{
"file": "https://staging-us-east-2-aether-biomedical-s3-us-bucket.s3.us-east-2.amazonaws.com/feedback/feedback-1759228216.csv",
"expires": "2025-09-30 10:40:00"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to export feedback",
"code": "FEEDBACK:EXPORT_CSV:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get feedback cooldowns
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/feedback/cooldowns" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/feedback/cooldowns"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:GET_COOLDOWNS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update feedback cooldowns
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/feedback/cooldowns" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"remote_session\": 1,
\"local_session\": 1,
\"async_session\": 1,
\"patient_create\": 1,
\"clinician_invite\": 1,
\"firmware_update\": 1,
\"new_config\": 1,
\"grip_change\": 1
}"
const url = new URL(
"http://localhost:8000/api/feedback/cooldowns"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"remote_session": 1,
"local_session": 1,
"async_session": 1,
"patient_create": 1,
"clinician_invite": 1,
"firmware_update": 1,
"new_config": 1,
"grip_change": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage feedback cooldowns",
"code": "FEEDBACK:UPDATE_COOLDOWNS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.GeoData
API endpoints for geodata
Get supported timezones list
Example request:
curl --request GET \
--get "http://localhost:8000/api/timezones" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/timezones"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
"Africa/Abidjan",
"Africa/Accra",
"Africa/Addis_Ababa",
"Africa/Algiers",
"Africa/Asmara",
"Africa/Bamako",
"Africa/Bangui",
"Africa/Banjul",
"Africa/Bissau",
"Africa/Blantyre",
"Africa/Brazzaville",
"Africa/Bujumbura",
"Africa/Cairo",
"Africa/Casablanca",
"Africa/Ceuta",
"Africa/Conakry",
"Africa/Dakar",
"Africa/Dar_es_Salaam",
"Africa/Djibouti",
"Africa/Douala",
"Africa/El_Aaiun",
"Africa/Freetown",
"Africa/Gaborone",
"Africa/Harare",
"Africa/Johannesburg",
"Africa/Juba",
"Africa/Kampala",
"Africa/Khartoum",
"Africa/Kigali",
"Africa/Kinshasa",
"Africa/Lagos",
"Africa/Libreville",
"Africa/Lome",
"Africa/Luanda",
"Africa/Lubumbashi",
"Africa/Lusaka",
"Africa/Malabo",
"Africa/Maputo",
"Africa/Maseru",
"Africa/Mbabane",
"Africa/Mogadishu",
"Africa/Monrovia",
"Africa/Nairobi",
"Africa/Ndjamena",
"Africa/Niamey",
"Africa/Nouakchott",
"Africa/Ouagadougou",
"Africa/Porto-Novo",
"Africa/Sao_Tome",
"Africa/Tripoli",
"Africa/Tunis",
"Africa/Windhoek",
"America/Adak",
"America/Anchorage",
"America/Anguilla",
"America/Antigua",
"America/Araguaina",
"America/Argentina/Buenos_Aires",
"America/Argentina/Catamarca",
"America/Argentina/Cordoba",
"America/Argentina/Jujuy",
"America/Argentina/La_Rioja",
"America/Argentina/Mendoza",
"America/Argentina/Rio_Gallegos",
"America/Argentina/Salta",
"America/Argentina/San_Juan",
"America/Argentina/San_Luis",
"America/Argentina/Tucuman",
"America/Argentina/Ushuaia",
"America/Aruba",
"America/Asuncion",
"America/Atikokan",
"America/Bahia",
"America/Bahia_Banderas",
"America/Barbados",
"America/Belem",
"America/Belize",
"America/Blanc-Sablon",
"America/Boa_Vista",
"America/Bogota",
"America/Boise",
"America/Cambridge_Bay",
"America/Campo_Grande",
"America/Cancun",
"America/Caracas",
"America/Cayenne",
"America/Cayman",
"America/Chicago",
"America/Chihuahua",
"America/Costa_Rica",
"America/Creston",
"America/Cuiaba",
"America/Curacao",
"America/Danmarkshavn",
"America/Dawson",
"America/Dawson_Creek",
"America/Denver",
"America/Detroit",
"America/Dominica",
"America/Edmonton",
"America/Eirunepe",
"America/El_Salvador",
"America/Fort_Nelson",
"America/Fortaleza",
"America/Glace_Bay",
"America/Goose_Bay",
"America/Grand_Turk",
"America/Grenada",
"America/Guadeloupe",
"America/Guatemala",
"America/Guayaquil",
"America/Guyana",
"America/Halifax",
"America/Havana",
"America/Hermosillo",
"America/Indiana/Indianapolis",
"America/Indiana/Knox",
"America/Indiana/Marengo",
"America/Indiana/Petersburg",
"America/Indiana/Tell_City",
"America/Indiana/Vevay",
"America/Indiana/Vincennes",
"America/Indiana/Winamac",
"America/Inuvik",
"America/Iqaluit",
"America/Jamaica",
"America/Juneau",
"America/Kentucky/Louisville",
"America/Kentucky/Monticello",
"America/Kralendijk",
"America/La_Paz",
"America/Lima",
"America/Los_Angeles",
"America/Lower_Princes",
"America/Maceio",
"America/Managua",
"America/Manaus",
"America/Marigot",
"America/Martinique",
"America/Matamoros",
"America/Mazatlan",
"America/Menominee",
"America/Merida",
"America/Metlakatla",
"America/Mexico_City",
"America/Miquelon",
"America/Moncton",
"America/Monterrey",
"America/Montevideo",
"America/Montserrat",
"America/Nassau",
"America/New_York",
"America/Nipigon",
"America/Nome",
"America/Noronha",
"America/North_Dakota/Beulah",
"America/North_Dakota/Center",
"America/North_Dakota/New_Salem",
"America/Nuuk",
"America/Ojinaga",
"America/Panama",
"America/Pangnirtung",
"America/Paramaribo",
"America/Phoenix",
"America/Port-au-Prince",
"America/Port_of_Spain",
"America/Porto_Velho",
"America/Puerto_Rico",
"America/Punta_Arenas",
"America/Rainy_River",
"America/Rankin_Inlet",
"America/Recife",
"America/Regina",
"America/Resolute",
"America/Rio_Branco",
"America/Santarem",
"America/Santiago",
"America/Santo_Domingo",
"America/Sao_Paulo",
"America/Scoresbysund",
"America/Sitka",
"America/St_Barthelemy",
"America/St_Johns",
"America/St_Kitts",
"America/St_Lucia",
"America/St_Thomas",
"America/St_Vincent",
"America/Swift_Current",
"America/Tegucigalpa",
"America/Thule",
"America/Thunder_Bay",
"America/Tijuana",
"America/Toronto",
"America/Tortola",
"America/Vancouver",
"America/Whitehorse",
"America/Winnipeg",
"America/Yakutat",
"America/Yellowknife",
"Antarctica/Casey",
"Antarctica/Davis",
"Antarctica/DumontDUrville",
"Antarctica/Macquarie",
"Antarctica/Mawson",
"Antarctica/McMurdo",
"Antarctica/Palmer",
"Antarctica/Rothera",
"Antarctica/Syowa",
"Antarctica/Troll",
"Antarctica/Vostok",
"Arctic/Longyearbyen",
"Asia/Aden",
"Asia/Almaty",
"Asia/Amman",
"Asia/Anadyr",
"Asia/Aqtau",
"Asia/Aqtobe",
"Asia/Ashgabat",
"Asia/Atyrau",
"Asia/Baghdad",
"Asia/Bahrain",
"Asia/Baku",
"Asia/Bangkok",
"Asia/Barnaul",
"Asia/Beirut",
"Asia/Bishkek",
"Asia/Brunei",
"Asia/Chita",
"Asia/Choibalsan",
"Asia/Colombo",
"Asia/Damascus",
"Asia/Dhaka",
"Asia/Dili",
"Asia/Dubai",
"Asia/Dushanbe",
"Asia/Famagusta",
"Asia/Gaza",
"Asia/Hebron",
"Asia/Ho_Chi_Minh",
"Asia/Hong_Kong",
"Asia/Hovd",
"Asia/Irkutsk",
"Asia/Jakarta",
"Asia/Jayapura",
"Asia/Jerusalem",
"Asia/Kabul",
"Asia/Kamchatka",
"Asia/Karachi",
"Asia/Kathmandu",
"Asia/Khandyga",
"Asia/Kolkata",
"Asia/Krasnoyarsk",
"Asia/Kuala_Lumpur",
"Asia/Kuching",
"Asia/Kuwait",
"Asia/Macau",
"Asia/Magadan",
"Asia/Makassar",
"Asia/Manila",
"Asia/Muscat",
"Asia/Nicosia",
"Asia/Novokuznetsk",
"Asia/Novosibirsk",
"Asia/Omsk",
"Asia/Oral",
"Asia/Phnom_Penh",
"Asia/Pontianak",
"Asia/Pyongyang",
"Asia/Qatar",
"Asia/Qostanay",
"Asia/Qyzylorda",
"Asia/Riyadh",
"Asia/Sakhalin",
"Asia/Samarkand",
"Asia/Seoul",
"Asia/Shanghai",
"Asia/Singapore",
"Asia/Srednekolymsk",
"Asia/Taipei",
"Asia/Tashkent",
"Asia/Tbilisi",
"Asia/Tehran",
"Asia/Thimphu",
"Asia/Tokyo",
"Asia/Tomsk",
"Asia/Ulaanbaatar",
"Asia/Urumqi",
"Asia/Ust-Nera",
"Asia/Vientiane",
"Asia/Vladivostok",
"Asia/Yakutsk",
"Asia/Yangon",
"Asia/Yekaterinburg",
"Asia/Yerevan",
"Atlantic/Azores",
"Atlantic/Bermuda",
"Atlantic/Canary",
"Atlantic/Cape_Verde",
"Atlantic/Faroe",
"Atlantic/Madeira",
"Atlantic/Reykjavik",
"Atlantic/South_Georgia",
"Atlantic/St_Helena",
"Atlantic/Stanley",
"Australia/Adelaide",
"Australia/Brisbane",
"Australia/Broken_Hill",
"Australia/Darwin",
"Australia/Eucla",
"Australia/Hobart",
"Australia/Lindeman",
"Australia/Lord_Howe",
"Australia/Melbourne",
"Australia/Perth",
"Australia/Sydney",
"Europe/Amsterdam",
"Europe/Andorra",
"Europe/Astrakhan",
"Europe/Athens",
"Europe/Belgrade",
"Europe/Berlin",
"Europe/Bratislava",
"Europe/Brussels",
"Europe/Bucharest",
"Europe/Budapest",
"Europe/Busingen",
"Europe/Chisinau",
"Europe/Copenhagen",
"Europe/Dublin",
"Europe/Gibraltar",
"Europe/Guernsey",
"Europe/Helsinki",
"Europe/Isle_of_Man",
"Europe/Istanbul",
"Europe/Jersey",
"Europe/Kaliningrad",
"Europe/Kiev",
"Europe/Kirov",
"Europe/Lisbon",
"Europe/Ljubljana",
"Europe/London",
"Europe/Luxembourg",
"Europe/Madrid",
"Europe/Malta",
"Europe/Mariehamn",
"Europe/Minsk",
"Europe/Monaco",
"Europe/Moscow",
"Europe/Oslo",
"Europe/Paris",
"Europe/Podgorica",
"Europe/Prague",
"Europe/Riga",
"Europe/Rome",
"Europe/Samara",
"Europe/San_Marino",
"Europe/Sarajevo",
"Europe/Saratov",
"Europe/Simferopol",
"Europe/Skopje",
"Europe/Sofia",
"Europe/Stockholm",
"Europe/Tallinn",
"Europe/Tirane",
"Europe/Ulyanovsk",
"Europe/Uzhgorod",
"Europe/Vaduz",
"Europe/Vatican",
"Europe/Vienna",
"Europe/Vilnius",
"Europe/Volgograd",
"Europe/Warsaw",
"Europe/Zagreb",
"Europe/Zaporozhye",
"Europe/Zurich",
"Indian/Antananarivo",
"Indian/Chagos",
"Indian/Christmas",
"Indian/Cocos",
"Indian/Comoro",
"Indian/Kerguelen",
"Indian/Mahe",
"Indian/Maldives",
"Indian/Mauritius",
"Indian/Mayotte",
"Indian/Reunion",
"Pacific/Apia",
"Pacific/Auckland",
"Pacific/Bougainville",
"Pacific/Chatham",
"Pacific/Chuuk",
"Pacific/Easter",
"Pacific/Efate",
"Pacific/Fakaofo",
"Pacific/Fiji",
"Pacific/Funafuti",
"Pacific/Galapagos",
"Pacific/Gambier",
"Pacific/Guadalcanal",
"Pacific/Guam",
"Pacific/Honolulu",
"Pacific/Kanton",
"Pacific/Kiritimati",
"Pacific/Kosrae",
"Pacific/Kwajalein",
"Pacific/Majuro",
"Pacific/Marquesas",
"Pacific/Midway",
"Pacific/Nauru",
"Pacific/Niue",
"Pacific/Norfolk",
"Pacific/Noumea",
"Pacific/Pago_Pago",
"Pacific/Palau",
"Pacific/Pitcairn",
"Pacific/Pohnpei",
"Pacific/Port_Moresby",
"Pacific/Rarotonga",
"Pacific/Saipan",
"Pacific/Tahiti",
"Pacific/Tarawa",
"Pacific/Tongatapu",
"Pacific/Wake",
"Pacific/Wallis",
"UTC"
]
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Goals
API endpoints for goals
The goals module consists of:
- exercises - predefined actions which should be performed by patient. Exercises can be managed only by SuperAdmin,
- goals - objectives defined for each patient which could consists of exercises, grips and grip switches,
- goal conditions - parts of the goal, single condition of type exercise, grips goal or switches goal.
List grips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/grips?model=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/grips"
);
const params = {
"model": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"number": 4550,
"name": "cupiditate grip",
"description": null,
"opposed": 0,
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
},
{
"id": 2,
"number": 7735,
"name": "excepturi grip",
"description": null,
"opposed": 0,
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view grips",
"code": "GOALS:LIST_GRIPS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List exercises
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/exercises" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/exercises"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "exercises.Boyer Tunnel",
"description": "exercises.Voluptas quia perferendis officia est.",
"icon": "😨",
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
},
{
"id": 2,
"name": "exercises.Franecki Loaf",
"description": "exercises.Aperiam explicabo aut ea nostrum sunt et molestiae.",
"icon": "😌",
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view exercises",
"code": "GOALS:LIST_EXERCISES:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create exercise
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/exercises" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Water plants\",
\"description\": \"Use Tripod Close Grip and water your plants\",
\"icon\": \"🪴\"
}"
const url = new URL(
"http://localhost:8000/api/exercises"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Water plants",
"description": "Use Tripod Close Grip and water your plants",
"icon": "🪴"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "exercises.Yundt Tunnel",
"description": "exercises.Ea est voluptates quam voluptas suscipit doloremque.",
"icon": "😬",
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:CREATE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update exercise
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/exercises/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Water plants\",
\"description\": \"Use Tripod Close Grip and water your plants\",
\"icon\": \"🪴\"
}"
const url = new URL(
"http://localhost:8000/api/exercises/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Water plants",
"description": "Use Tripod Close Grip and water your plants",
"icon": "🪴"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"name": "exercises.Rodriguez Pike",
"description": "exercises.Officiis voluptatum laborum quod voluptates doloremque molestiae inventore quos.",
"icon": "😟",
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:UPDATE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Example response (404, Exercise not found):
{
"message": "Exercise not found",
"code": "GOALS:UPDATE_EXERCISE:EXERCISE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete exercise
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/exercises/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/exercises/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Exercise deleted",
"code": "GOALS:DELETE_EXERCISE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage exercises",
"code": "GOALS:DELETE_EXERCISE:INSUFFICIENT_PERMISSION"
}
Example response (403, Exercise is used in goals):
{
"message": "Cannot delete: exercise is used in goals (1)",
"code": "GOALS:DELETE_EXERCISE:HAS_GOALS"
}
Example response (404, Exercise not found):
{
"message": "Exercise not found",
"code": "GOALS:DELETE_EXERCISE:EXERCISE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List user goals
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/goals?active=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals"
);
const params = {
"active": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"amputee_id": 258,
"clinician_id": 259,
"start_date": "2011-11-19",
"end_date": "1989-09-08",
"active": 1,
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
},
{
"id": 2,
"amputee_id": 260,
"clinician_id": 261,
"start_date": "1976-08-19",
"end_date": "1998-01-24",
"active": 0,
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user goals",
"code": "GOALS:LIST_GOALS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:LIST_GOALS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create user goal
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/goals" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"start_date\": \"2023-05-12\",
\"end_date\": \"2023-05-15\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"start_date": "2023-05-12",
"end_date": "2023-05-15",
"active": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"amputee_id": 262,
"clinician_id": 263,
"start_date": "1984-09-10",
"end_date": "1984-05-27",
"active": 0,
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:CREATE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:CREATE_GOAL:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update user goal
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1/goals/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"start_date\": \"2023-05-12\",
\"end_date\": \"2023-05-15\",
\"active\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"start_date": "2023-05-12",
"end_date": "2023-05-15",
"active": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"amputee_id": 264,
"clinician_id": 265,
"start_date": "2015-11-06",
"end_date": "2014-10-22",
"active": 0,
"created_at": "2026-01-12T16:48:05.000000Z",
"updated_at": "2026-01-12T16:48:05.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:UPDATE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot activate ongoing goal):
{
"message": "Cannot activate ongoing goal",
"code": "GOALS:UPDATE_GOAL:GOAL_IS_ONGOING"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:UPDATE_GOAL:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:UPDATE_GOAL:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete user goal
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/goals/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Goal deleted",
"code": "GOALS:DELETE_GOAL:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:DELETE_GOAL:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot delete ongoing goal):
{
"message": "Cannot delete active ongoing goal",
"code": "GOALS:DELETE_GOAL:GOAL_IS_ONGOING"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:DELETE_GOAL:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:DELETE_GOAL:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List user goal conditions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/goals/1/conditions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"goal_id": 5,
"type": "grip",
"grip_id": 3,
"grips_frequency": "d",
"grips_count": 591,
"switches_frequency": "d",
"switches_count": 455,
"exercise_id": 5,
"exercise_frequency": "d",
"exercise_count": 8,
"created_at": "2026-01-12T16:48:06.000000Z",
"updated_at": "2026-01-12T16:48:06.000000Z"
},
{
"id": 2,
"goal_id": 6,
"type": "switch",
"grip_id": 4,
"grips_frequency": "a",
"grips_count": 165,
"switches_frequency": "m",
"switches_count": 608,
"exercise_id": 6,
"exercise_frequency": "m",
"exercise_count": 9,
"created_at": "2026-01-12T16:48:06.000000Z",
"updated_at": "2026-01-12T16:48:06.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user goals",
"code": "GOALS:LIST_CONDITIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:LIST_CONDITIONS:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:LIST_CONDITIONS:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create user goal condition
requires authentication
Each goal condition could be one of type: grip, switch or exercise.
If goal condition is type of grip, fill only grip_id (optional), grips_frequency and grips_count.
If grip_id is null or missing, patient can perform any grip to fulfill objective.
If goal condition is type of switch, fill only switches_frequency and switches_count.
If goal condition is type of exercise, fill only exercise_id, exercise_frequency and exercise_count.
Restrictions:
- you can add one grip-any condition (
grip_id=null, any grip is counted) and many grip-specific conditions (for example: grip 1 - 100 times and grip 2 - 50 times), - all grips conditions must have same frequency (
grips_frequencyfield), - sum of grip-specific conditions (
grips_countfield) cannot be greater than grip-any condition for same goal - you can add only one switch condition for same goal,
- you can add multiple exercise conditions, but each exercise can be used only once.
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/goals/1/conditions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"type\": \"grip\",
\"grip_id\": 1,
\"grips_frequency\": \"d\",
\"grips_count\": 100,
\"switches_frequency\": \"d\",
\"switches_count\": 100,
\"exercise_id\": 1,
\"exercise_frequency\": \"d\",
\"exercise_count\": 5
}"
const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"type": "grip",
"grip_id": 1,
"grips_frequency": "d",
"grips_count": 100,
"switches_frequency": "d",
"switches_count": 100,
"exercise_id": 1,
"exercise_frequency": "d",
"exercise_count": 5
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"goal_id": 7,
"type": "exercise",
"grip_id": 5,
"grips_frequency": "m",
"grips_count": 991,
"switches_frequency": "m",
"switches_count": 152,
"exercise_id": 7,
"exercise_frequency": "d",
"exercise_count": 10,
"created_at": "2026-01-12T16:48:06.000000Z",
"updated_at": "2026-01-12T16:48:06.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:CREATE_CONDITION:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot create condition: all grip conditions have to be same frequency):
{
"message": "Cannot create condition: all grip conditions have to be same frequency",
"code": "GOALS:CREATE_CONDITION:INVALID_FREQUENCY"
}
Example response (403, Cannot create condition: grip-any condition for this goal already exist):
{
"message": "Cannot create condition: grip-any condition for this goal already exist",
"code": "GOALS:CREATE_CONDITION:GRIP_ANY_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: condition with this grip already exist):
{
"message": "Cannot create condition: condition with this grip already exist",
"code": "GOALS:CREATE_CONDITION:GRIP_CONDITION_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: grip-any value cannot be lower than sum of grip-specific conditions):
{
"message": "Cannot create condition: grip-any value cannot be lower than sum of grip-specific conditions",
"code": "GOALS:CREATE_CONDITION:GRIP_ANY_LOWER_THAN_GRIPS_SUM"
}
Example response (403, Cannot create condition: sum of grip-specific conditions cannot be greater than value of grip-any condition):
{
"message": "Cannot create condition: sum of grip-specific conditions cannot be greater than value of grip-any condition",
"code": "GOALS:CREATE_CONDITION:GRIPS_SUM_GREATER_THAN_GRIP_ANY"
}
Example response (403, Cannot create condition: switch condition for this goal already exist):
{
"message": "Cannot create condition: switch condition for this goal already exist",
"code": "GOALS:CREATE_CONDITION:SWITCH_CONDITION_ALREADY_EXISTS"
}
Example response (403, Cannot create condition: condition with this exercise already exist):
{
"message": "Cannot create condition: condition with this exercise already exist",
"code": "GOALS:CREATE_CONDITION:EXERCISE_CONDITION_ALREADY_EXISTS"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:CREATE_CONDITION:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:CREATE_CONDITION:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete user goal condition
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/goals/1/conditions/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/goals/1/conditions/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Goal condition deleted",
"code": "GOALS:DELETE_CONDITION:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user goals",
"code": "GOALS:DELETE_CONDITION:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "GOALS:DELETE_CONDITION:USER_NOT_FOUND"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:DELETE_CONDITION:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user goal progress
requires authentication
Data is grouped into three parts:
grips- data about grips progress,switches- data about switches progress,exercises- data about exercises progress and attempts made.
overall- summary of whole goal time-frame,period- summary of given period, according to frequency (for example: if frequency of conditions is "weekly", these data is summary of current's week).today- summary of today's, used mainly to send daily summary notifications,conditions- goal conditions with progress for each one.
typefor grips overall summary, which points which conditions were used to calculate the summary. If grip-any condition exists, it has priority over grip-specific conditions, otherwise summary contains sum of all grip-specific conditions,frequency,frequency_fromandfrequency_tofor period summary for both grips and switches, which describe time-frame of frequency and period,donefor today's summary for both grips and switches, indicates if today's goal is reached (it's calculated only for conditions of frequency "daily").
Example request:
curl --request GET \
--get "http://localhost:8000/api/goals/1/progress" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/goals/1/progress"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"grips": {
"meta": {
"overall": {
"from": "2023-09-01 00:00:00",
"to": "2023-08-30 23:59:59"
},
"period": {
"from": "2023-09-15 23:59:59",
"to": "2023-09-21 23:59:59",
"frequency": "w"
}
},
"summary": {
"type": "grips-specific",
"progress": 222,
"goal": 2535
},
"progress": [
{
"grip": {
"id": 1,
"number": 0,
"name": "Rest Opposition",
"description": null,
"created_at": "2023-08-30T12:20:00.000000Z",
"updated_at": "2023-08-30T12:20:00.000000Z"
},
"overall": {
"progress": 125,
"goal": 200
},
"period": {
"progress": 22,
"goal": 50
}
},
{
"grip": {
"id": 2,
"number": 1,
"name": "Power",
"description": null,
"created_at": "2023-05-18T11:24:11.000000Z",
"updated_at": "2023-05-18T11:24:11.000000Z"
},
"overall": {
"progress": 90,
"goal": 150
},
"period": {
"progress": 10,
"goal": 30
}
},
{
"grip": null,
"overall": {
"progress": 78,
"goal": 1250
},
"period": {
"progress": 17,
"goal": 240
}
}
],
"today": {
"performed": 0,
"goal": 0,
"done": true
}
},
"switches": {
"overall": {
"performed": 55,
"goal": 300
},
"period": {
"performed": 25,
"goal": 30,
"frequency": "d",
"frequency_from": "2023-09-20 00:00:00",
"frequency_to": "2023-09-20 23:59:59"
},
"today": {
"performed": 25,
"goal": 30,
"done": false
},
"condition": {
"type": "switch",
"switches_frequency": "d",
"switches_count": 30
}
},
"exercises": {
"performed": 1,
"goal": 3,
"done": false,
"conditions": [
{
"type": "exercise",
"exercise_id": 1,
"exercise_frequency": "d",
"exercise_count": 3,
"attempts": [
{
"date_from": "2023-06-06",
"date_to": "2023-06-12",
"count_done": 1,
"count_not_done": 1
},
{
"date_from": "2023-06-13",
"date_to": "2023-06-19",
"count_done": 0,
"count_not_done": 0
},
{
"date_from": "2023-06-20",
"date_to": "2023-06-26",
"count_done": 0,
"count_not_done": 0
},
{
"date_from": "2023-06-27",
"date_to": "2023-07-03",
"count_done": 0,
"count_not_done": 0
}
],
"exercise": {
"id": 1,
"name": "Water plants",
"description": "Use Tripod Grip and water your plants",
"icon": "🪴",
"created_at": "2023-05-19T10:25:37.000000Z",
"updated_at": "2023-05-19T10:25:37.000000Z"
}
}
]
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view goal progress",
"code": "GOALS:GET_PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:GET_PROGRESS:GOAL_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update user goal progress
requires authentication
Use this endpoint to update goal progress as patient. Add exercise attempts and mark them as done or not done.
Example request:
curl --request POST \
"http://localhost:8000/api/goals/1/progress" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"exercise_id\": 1,
\"exercise_done\": true
}"
const url = new URL(
"http://localhost:8000/api/goals/1/progress"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"exercise_id": 1,
"exercise_done": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 1,
"user_id": 272,
"goal_id": 8,
"type": "exercise",
"grip_id": null,
"grips": 472,
"switches": 737,
"exercise_id": 8,
"exercise_done": 0,
"created_at": "2026-01-12T16:48:06.000000Z",
"updated_at": "2026-01-12T16:48:06.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update goal progress",
"code": "GOALS:UPDATE_PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (404, Goal not found):
{
"message": "Goal not found",
"code": "GOALS:UPDATE_PROGRESS:GOAL_NOT_FOUND"
}
Example response (422, User timezone not set):
{
"message": "User timezone not set",
"code": "GOALS:UPDATE_PROGRESS:NO_TIMEZONE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Invitations
Accept clinician invitation
Example request:
curl --request POST \
"http://localhost:8000/api/invite/accept" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"ABC123DEF456GHI789JKL0\",
\"email\": \"example@domain.com\",
\"password\": \"Test123!\",
\"language\": \"en\",
\"name\": \"Tom Smith\",
\"clinic_name\": \"My clinic Ltd\",
\"clinic_location\": \"Example St 1\\/345 New York, NY\",
\"address1\": \"1092 Giles Spurs Apt. 136\",
\"address2\": \"Lake Bradley, KY 82146\",
\"mfa_enabled\": true,
\"mfa_method\": \"email\"
}"
const url = new URL(
"http://localhost:8000/api/invite/accept"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "ABC123DEF456GHI789JKL0",
"email": "example@domain.com",
"password": "Test123!",
"language": "en",
"name": "Tom Smith",
"clinic_name": "My clinic Ltd",
"clinic_location": "Example St 1\/345 New York, NY",
"address1": "1092 Giles Spurs Apt. 136",
"address2": "Lake Bradley, KY 82146",
"mfa_enabled": true,
"mfa_method": "email"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 4,
"mrn": "0ZK0H3S51768236461",
"name": "Dr. Zander Pacocha PhD",
"email": "1768236461marvin.efren@example.org",
"language": "en",
"phone": "1-651-849-7055",
"phone_country": "ET",
"phone_verified_at": null,
"address1": "33453 Bergnaum Ville Apt. 852",
"address2": "West Laurine, SC 31532",
"postal_code": "23481",
"city": "Bartoletti, Volkman and Gorczany",
"clinic_name": "East Arlieburgh",
"clinic_location": "5869 Farrell Field\nSouth Freeman, MO 29516-6003",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:41.000000Z",
"updated_at": "2026-01-12T16:47:41.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
}
Example response (403, Invitation expired):
{
"message": "Invitation expired",
"code": "INVITATIONS:ACCEPT:INVITATION_EXPIRED"
}
Example response (404, Invitation not found):
{
"message": "Invitation not found",
"code": "INVITATIONS:ACCEPT:INVITATION_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: invitation not accepted",
"code": "INVITATIONS:ACCEPT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Accept Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle/accept" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"token\": \"a1b2c3d4e5f6g7h8i9j0k1l2m3\",
\"email\": \"user@example.com\",
\"password\": \"securePassword123\",
\"phone\": \"541.346.1790\",
\"phone_country\": \"US\",
\"name\": \"John Doe\",
\"language\": \"en\"
}"
const url = new URL(
"http://localhost:8000/api/invite/acadle/accept"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"token": "a1b2c3d4e5f6g7h8i9j0k1l2m3",
"email": "user@example.com",
"password": "securePassword123",
"phone": "541.346.1790",
"phone_country": "US",
"name": "John Doe",
"language": "en"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"id": 5,
"mrn": "RC2PJQTW1768236461",
"name": "Flo Hudson",
"email": "1768236461nrosenbaum@example.net",
"language": "en",
"phone": "626.493.4370",
"phone_country": "TW",
"phone_verified_at": null,
"address1": "953 Isaias Drive Apt. 357",
"address2": "Port Meghan, KS 88477",
"postal_code": "54187-2539",
"city": "Farrell, Gislason and Mann",
"clinic_name": "Tiannaborough",
"clinic_location": "7649 Cormier Station\nBernitaview, LA 36515-9253",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:41.000000Z",
"updated_at": "2026-01-12T16:47:41.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": [
{
"id": 1,
"name": "SuperAdmin"
}
]
}
Example response (403, Invitation expired):
{
"message": "Invitation expired",
"code": "INVITATIONS_ACADLE:ACCEPT:INVITATION_EXPIRED"
}
Example response (404, Invitation not found):
{
"message": "Invitation not found",
"code": "INVITATIONS_ACADLE:ACCEPT:INVITATION_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: invitation not accepted",
"code": "INVITATIONS_ACADLE:ACCEPT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List users for invitations
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/users" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/users"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 15,
"mrn": "ZOF51SH51768236462",
"name": "Fritz Kassulke",
"email": "1768236462btremblay@example.com",
"language": "en",
"phone": "(240) 765-3989",
"phone_country": "AW",
"phone_verified_at": null,
"address1": "31049 Nola Circle Apt. 422",
"address2": "West Frieda, DC 78306-6938",
"postal_code": "57071-1444",
"city": "Moen-Connelly",
"clinic_name": "Shayleefurt",
"clinic_location": "8316 Bartell Plaza Suite 432\nOrenberg, IA 80771",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
},
{
"id": 16,
"mrn": "7HW4YU2D1768236462",
"name": "Trevor Hermiston IV",
"email": "1768236462wunsch.lauretta@example.com",
"language": "en",
"phone": "1-989-322-0325",
"phone_country": "CX",
"phone_verified_at": null,
"address1": "668 Boehm Summit Suite 456",
"address2": "New Bradleymouth, WV 22261-0244",
"postal_code": "42860-4573",
"city": "Schinner-Gulgowski",
"clinic_name": "Lake Ismael",
"clinic_location": "725 Ignacio Lodge\nBeahanside, WA 70642-6490",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list users for invitations",
"code": "INVITATIONS:USERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create clinician invitations
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"patient_id\": 1,
\"invitations\": [
{
\"user_id\": 1,
\"user_email\": \"newuser@domain.com\",
\"role\": \"Clinician\",
\"training_confirmed\": true,
\"permissions\": [
\"quis\"
]
}
]
}"
const url = new URL(
"http://localhost:8000/api/invite"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"patient_id": 1,
"invitations": [
{
"user_id": 1,
"user_email": "newuser@domain.com",
"role": "Clinician",
"training_confirmed": true,
"permissions": [
"quis"
]
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 10,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 17,
"mrn": "T3C5TLDP1768236462",
"name": "Myrna Grimes V",
"email": "1768236462bechtelar.curtis@example.com",
"language": "en",
"phone": "531.807.0254",
"phone_country": "SA",
"phone_verified_at": null,
"address1": "391 Jerde Locks Apt. 909",
"address2": "Valentinaburgh, OR 57524",
"postal_code": "52981-3364",
"city": "Schaefer, Okuneva and Braun",
"clinic_name": "Chetburgh",
"clinic_location": "81710 Emmanuelle Circles Suite 427\nFlavieside, NC 45397",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"invitations": [
{
"id": 1,
"user_id": 18,
"invited_user_id": 17,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-01-12T16:47:43.000000Z",
"updated_at": "2026-01-12T16:47:43.000000Z"
}
],
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
},
{
"id": 20,
"mrn": "MPVEGM1A1768236463",
"name": "Breana Witting MD",
"email": "1768236463west.grant@example.org",
"language": "en",
"phone": "+1.629.507.1948",
"phone_country": "MH",
"phone_verified_at": null,
"address1": "6759 Stroman Avenue Suite 088",
"address2": "New Lois, OK 99709-5426",
"postal_code": "17923-2128",
"city": "Vandervort-Watsica",
"clinic_name": "Kuhicville",
"clinic_location": "650 Lavina Stravenue\nWest Reyes, VA 67759",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:43.000000Z",
"updated_at": "2026-01-12T16:47:43.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"invitations": [
{
"id": 2,
"user_id": 21,
"invited_user_id": 20,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-01-12T16:47:43.000000Z",
"updated_at": "2026-01-12T16:47:43.000000Z"
}
],
"roles": [
{
"id": 1,
"name": "SuperAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create invitations",
"code": "INVITATIONS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, No access to given patient):
{
"message": "No access to given patient",
"code": "INVITATIONS:CREATE:NO_ACCESS_TO_PATIENT"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Resend invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/1/resend" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/1/resend"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 23,
"mrn": "Z56N2D9U1768236463",
"name": "Prof. Alvena Muller",
"email": "1768236463juanita.leffler@example.org",
"language": "en",
"phone": "+1.469.893.7474",
"phone_country": "VU",
"phone_verified_at": null,
"address1": "5455 Loyce Ways",
"address2": "North Theresa, NJ 00134",
"postal_code": "72540-9312",
"city": "Ferry, Gleason and Skiles",
"clinic_name": "North Carlottamouth",
"clinic_location": "82764 Ardith Cove Apt. 307\nNorth Mathiasland, KY 62022-4367",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:43.000000Z",
"updated_at": "2026-01-12T16:47:43.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 3,
"user_id": 24,
"invited_user_id": 23,
"type": "clinician",
"training_confirmed": 0,
"created_at": "2026-01-12T16:47:43.000000Z",
"updated_at": "2026-01-12T16:47:43.000000Z"
}
],
"roles": [
{
"id": 4,
"name": "ClinicianSupport"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to resend invitations",
"code": "INVITATIONS:RESEND:INSUFFICIENT_PERMISSION"
}
Example response (403, User not found):
{
"message": "User not found",
"code": "INVITATIONS:RESEND:USER_NOT_FOUND"
}
Example response (403, Invitation already accepted):
{
"message": "Invitation already accepted",
"code": "INVITATIONS:RESEND:INVITATION_ALREADY_ACCEPTED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List all users invited to Acadle
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/acadle/users?search=john" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/acadle/users"
);
const params = {
"search": "john",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 26,
"mrn": "UXZINV7U1768236463",
"name": "Courtney Fay",
"email": "1768236463shanny.robel@example.com",
"language": "en",
"phone": "1-458-352-4859",
"phone_country": "MW",
"phone_verified_at": null,
"address1": "9559 Viola Ways Apt. 259",
"address2": "Reynoldsborough, DE 76304",
"postal_code": "49074-1302",
"city": "O'Kon-Windler",
"clinic_name": "Franzbury",
"clinic_location": "224 Labadie Avenue\nWest Immanuel, LA 17322",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:43.000000Z",
"updated_at": "2026-01-12T16:47:43.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": [
{
"id": 1,
"name": "SuperAdmin"
}
]
},
{
"id": 27,
"mrn": "MNZPEIC81768236463",
"name": "Ms. Ruthie Fahey DDS",
"email": "1768236463dlockman@example.org",
"language": "en",
"phone": "+1-520-218-3842",
"phone_country": "TL",
"phone_verified_at": null,
"address1": "640 Sauer Rest Suite 131",
"address2": "Creminfurt, OK 93641",
"postal_code": "09109-2968",
"city": "Larson Group",
"clinic_name": "West Lourdesville",
"clinic_location": "3168 Shanelle Stravenue\nTreviontown, AL 53441-0149",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:43.000000Z",
"updated_at": "2026-01-12T16:47:43.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list users for invitations",
"code": "INVITATIONS_ACADLE:USERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"icollier@example.com\"
}"
const url = new URL(
"http://localhost:8000/api/invite/acadle"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "icollier@example.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 28,
"mrn": "9Z82F4TO1768236463",
"name": "Giuseppe Lang",
"email": "1768236463gillian.osinski@example.com",
"language": "en",
"phone": "+1.562.645.2328",
"phone_country": "TG",
"phone_verified_at": null,
"address1": "296 Watsica Fork",
"address2": "Earlenefurt, OH 11386",
"postal_code": "09942-3082",
"city": "Roberts, Deckow and Hyatt",
"clinic_name": "Williambury",
"clinic_location": "8703 Stark Light Suite 494\nGaylordhaven, NV 26822-6657",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:43.000000Z",
"updated_at": "2026-01-12T16:47:43.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"invitations": [
{
"id": 4,
"user_id": 29,
"invited_user_id": 28,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z"
}
],
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (400, User already exists):
{
"message": "User with this email already exists in the system",
"code": "INVITATIONS_ACADLE:CREATE:USER_ALREADY_EXISTS"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create invitations",
"code": "INVITATIONS_ACADLE:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Resend Acadle invitation
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/invite/acadle/1/resend" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/acadle/1/resend"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 31,
"mrn": "9U7UKJRT1768236464",
"name": "Lavonne Bruen DDS",
"email": "1768236464jackson12@example.com",
"language": "en",
"phone": "+12608028835",
"phone_country": "SX",
"phone_verified_at": null,
"address1": "1097 Angel Orchard",
"address2": "West Yasmeen, MT 16172-0483",
"postal_code": "00460-7809",
"city": "Heller-Kerluke",
"clinic_name": "North Lauraview",
"clinic_location": "74584 Dietrich Islands\nSouth Talonville, NH 97344-5960",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"invitations": [
{
"id": 5,
"user_id": 32,
"invited_user_id": 31,
"type": "clinician",
"training_confirmed": 1,
"created_at": "2026-01-12T16:47:44.000000Z",
"updated_at": "2026-01-12T16:47:44.000000Z"
}
],
"roles": [
{
"id": 1,
"name": "SuperAdmin"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to resend invitations",
"code": "INVITATIONS_ACADLE:RESEND:INSUFFICIENT_PERMISSION"
}
Example response (403, User not found):
{
"message": "User not found",
"code": "INVITATIONS_ACADLE:RESEND:USER_NOT_FOUND"
}
Example response (403, Invitation already accepted):
{
"message": "Invitation already accepted",
"code": "INVITATIONS_ACADLE:RESEND:INVITATION_ALREADY_ACCEPTED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Admin access to invitation tokens
requires authentication
Requires admin.invitations_tokens_access permission.
Fetches only non-accepted and non-expired invitations.
Example request:
curl --request GET \
--get "http://localhost:8000/api/invite/tokens/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/invite/tokens/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"id": 1,
"user_id": 1,
"invited_user_id": 2,
"token": "I0V25NUVMHC0F8RRF1YEY5BT",
"training_confirmed": 1,
"created_at": "2025-05-12T12:00:00.000000Z",
"updated_at": "2025-05-12T12:00:00.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to get invitation tokens",
"code": "INVITATIONS:ADMIN_TOKENS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "INVITATIONS:ADMIN_TOKENS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logs
API endpoints for managing event logs
Get events log
requires authentication
user - user account that performed the action
element - element model that has been affected by the action
Example request:
curl --request GET \
--get "http://localhost:8000/api/logs?search=Test&ip=200.200.100.5&user=1&type=user&date_from=1642003200&date_to=1642003200&include_sessions=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
const url = new URL(
"http://localhost:8000/api/logs"
);
const params = {
"search": "Test",
"ip": "200.200.100.5",
"user": "1",
"type": "user",
"date_from": "1642003200",
"date_to": "1642003200",
"include_sessions": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": 277,
"event_name": "event_factory",
"element_type": "App\\Models\\User",
"element_id": 276,
"comments": "",
"ip_address": "111.202.64.126",
"created_at": "2004-08-04T12:40:08.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z",
"user": {
"id": 277,
"mrn": "7TR97DV21768236486",
"name": "Emily Gutkowski",
"email": "1768236486hartmann.germaine@example.com",
"language": "en",
"phone": "(413) 599-0482",
"phone_country": "AF",
"phone_verified_at": null,
"address1": "93063 Kshlerin Throughway",
"address2": "Roxannemouth, LA 33861",
"postal_code": "98728-3288",
"city": "Waters-Moen",
"clinic_name": "North Elwyntown",
"clinic_location": "11729 Johanna Terrace\nGorczanyborough, WI 91820-6738",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"element": {
"id": 276,
"mrn": "N55EF71U1768236486",
"name": "Dagmar Carter",
"email": "1768236486armstrong.sheldon@example.com",
"language": "en",
"phone": "(848) 963-9125",
"phone_country": "VA",
"phone_verified_at": null,
"address1": "1058 Madonna Summit Suite 768",
"address2": "West Ruben, MD 84436",
"postal_code": "15202",
"city": "Kessler-Davis",
"clinic_name": "Rosenbaumberg",
"clinic_location": "71429 Price Ranch\nSouth Alexismouth, TN 25059",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:06.000000Z",
"updated_at": "2026-01-12T16:48:06.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
},
{
"id": 2,
"user_id": 280,
"event_name": "event_factory",
"element_type": "App\\Models\\User",
"element_id": 279,
"comments": "",
"ip_address": "152.79.104.144",
"created_at": "2008-05-01T12:58:50.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z",
"user": {
"id": 280,
"mrn": "DRPD797P1768236487",
"name": "Concepcion Swaniawski",
"email": "1768236487xlubowitz@example.org",
"language": "en",
"phone": "+1 (785) 352-6291",
"phone_country": "MX",
"phone_verified_at": null,
"address1": "2475 Howell Landing",
"address2": "Deckowmouth, WY 52906-4708",
"postal_code": "99415-8237",
"city": "Weber-Schinner",
"clinic_name": "Lake Conniebury",
"clinic_location": "668 Emmett Center\nRusselton, NM 74107",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"element": {
"id": 279,
"mrn": "8QE6HDIB1768236487",
"name": "Dr. Jed Beatty",
"email": "1768236487monica85@example.org",
"language": "en",
"phone": "484.581.2859",
"phone_country": "UM",
"phone_verified_at": null,
"address1": "586 Kihn Port Apt. 542",
"address2": "South Rexborough, AL 71167",
"postal_code": "04262-8945",
"city": "Keebler-Dach",
"clinic_name": "East Madonnaberg",
"clinic_location": "95038 Dan Road Apt. 114\nJerroldborough, CO 51000-1887",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access event logs",
"code": "EVENT_LOGS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Messages
API endpoints for message center
Get user messages list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"filter\": \"all\"
}"
const url = new URL(
"http://localhost:8000/api/messages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"filter": "all"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"user_id": null,
"message_id": 1,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 1,
"sender_id": null,
"title": "Et nemo quidem sit et expedita earum.",
"content": "Sit cumque et autem et et qui est.",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z",
"sender": null
}
},
{
"id": 2,
"user_id": null,
"message_id": 2,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 2,
"sender_id": null,
"title": "Debitis autem nulla iure omnis est.",
"content": "Amet quo unde est voluptas ut.",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z",
"sender": null
}
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send message to multiple users
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"title\": \"Reminder about your vaccination\",
\"content\": \"Lorem ipsum dolor sit amet\",
\"roles\": \"Clinician,Amputee\"
}"
const url = new URL(
"http://localhost:8000/api/message"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"title": "Reminder about your vaccination",
"content": "Lorem ipsum dolor sit amet",
"roles": "Clinician,Amputee"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Messages sent",
"count": 3,
"code": "MESSAGES:SEND:SENT"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to send messages",
"code": "MESSAGES:SEND:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mark message as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message/1/read" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"state\": true
}"
const url = new URL(
"http://localhost:8000/api/message/1/read"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"state": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"user_id": 143,
"message_id": 3,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to mark this message as read",
"code": "MESSAGES:READ:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "MESSAGES:READ:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mark message as archived
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/message/1/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"state\": true
}"
const url = new URL(
"http://localhost:8000/api/message/1/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"state": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"user_id": 144,
"message_id": 4,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to mark this message as archived",
"code": "MESSAGES:ARCHIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "MESSAGES:ARCHIVE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List of messages and tickets
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/messages-and-tickets" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/messages-and-tickets"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 2
},
"items": [
{
"type": "UserMessage",
"date": "2024-11-02T10:00:00.000000Z",
"item": {
"id": 1,
"user_id": 1,
"message_id": 1,
"is_read": 0,
"is_archived": 0,
"is_deleted": 0,
"message": {
"id": 1,
"sender_id": 1,
"title": "Message title",
"content": "Message content",
"created_at": "2024-11-02T10:00:00.000000Z",
"updated_at": "2024-11-02T10:00:00.000000Z",
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
}
}
}
},
{
"type": "SupportTicket",
"date": "2024-11-01T15:15:00.000000Z",
"item": {
"id": 1,
"sender_id": 1,
"recipient_id": 999,
"device_id": null,
"meeting_date": "2024-11-10T15:00:00.000000Z",
"meeting_type": "none",
"contact_email": null,
"status": "new",
"created_at": "2024-11-01T15:15:00.000000Z",
"updated_at": "2024-11-01T15:15:00.000000Z",
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
},
"recipient": {
"id": 2,
"mrn": "MRN2",
"name": "Patient",
"email": "patient4@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": null,
"clinic_location": null,
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"created_by": 1,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2024-10-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": null,
"roles": [
{
"id": 5,
"name": "Amputee",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 2,
"role_id": 5,
"model_type": "App\\Models\\User"
}
}
]
},
"device": null,
"messages": [
{
"id": 1,
"ticket_id": 1,
"sender_id": 1,
"title": "Communication channel",
"content": "Welcome to the digital platform. Please use this channel for communicating with your clinician.",
"is_read": false,
"created_at": "2024-11-01T15:15:00.000000Z",
"updated_at": "2024-11-01T15:15:00.000000Z",
"attachments": [],
"sender": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"roles": [
{
"id": 3,
"name": "Clinician",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 3,
"model_type": "App\\Models\\User"
}
}
]
}
}
]
}
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mobile logs
API endpoints for managing mobile logs
Store log
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/mobile-logs" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "device_id=1"\
--form "date_start=2005-08-07 10:32:33"\
--form "date_end=1991-11-24 09:05:14"\
--form "encrypt_key=provident"\
--form "encrypt_iv=in"\
--form "file=@/tmp/php6mf2uV" const url = new URL(
"http://localhost:8000/api/mobile-logs"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('device_id', '1');
body.append('date_start', '2005-08-07 10:32:33');
body.append('date_end', '1991-11-24 09:05:14');
body.append('encrypt_key', 'provident');
body.append('encrypt_iv', 'in');
body.append('file', document.querySelector('input[name="file"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (202):
{
"id": 1,
"user_id": 281,
"device_id": 134,
"file": "/tmp/fakerazzFcK",
"date_start": "1998-08-29 21:37:04",
"date_end": "2010-12-16 09:37:11",
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to write mobile logs",
"code": "MOBILE_LOGS:STORE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get logs
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 2,
"user_id": 282,
"device_id": 135,
"file": "/tmp/fakerkvQVJu",
"date_start": "1973-11-10 17:59:07",
"date_end": "1974-02-17 11:07:01",
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z"
},
{
"id": 3,
"user_id": 283,
"device_id": 136,
"file": "/tmp/fakera4p3mN",
"date_start": "2018-01-10 01:15:09",
"date_end": "1998-04-26 19:36:46",
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get logs by user
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 4,
"user_id": 284,
"device_id": 137,
"file": "/tmp/fakermw6aTV",
"date_start": "1981-08-14 13:00:20",
"date_end": "1999-10-03 22:15:14",
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z"
},
{
"id": 5,
"user_id": 285,
"device_id": 138,
"file": "/tmp/fakerVZBXDP",
"date_start": "2007-04-02 04:59:28",
"date_end": "1978-12-23 03:28:07",
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET_BY_USER:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get logs by device
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile-logs/device/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile-logs/device/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 6,
"user_id": 286,
"device_id": 139,
"file": "/tmp/fakerGR224D",
"date_start": "2019-05-06 22:42:39",
"date_end": "1988-11-12 20:02:21",
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z"
},
{
"id": 7,
"user_id": 287,
"device_id": 140,
"file": "/tmp/fakereYNi8P",
"date_start": "1987-09-11 07:13:46",
"date_end": "1980-08-21 16:55:28",
"created_at": "2026-01-12T16:48:07.000000Z",
"updated_at": "2026-01-12T16:48:07.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view mobile logs",
"code": "MOBILE_LOGS:GET_BY_DEVICE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.P2P Sessions
API endpoints for managing P2P (peer-to-peer) sessions
Get active session data
requires authentication
Returns P2P sessions with status "waiting_for_decision" or "in_progress".
Example request:
curl --request GET \
--get "http://localhost:8000/api/p2p/1/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/p2p/1/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 1,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "b21c867b-66ca-3668-9eb2-eb8ede5892f5",
"clinician_uuid": "fe97a983-5e83-3944-8250-cdb945f1e80c",
"token": "WWSRGF2AW2IFEM8EMMFLHI8C93JRWU13YY6FEU41KRE7VL98EMMMTAHCYRYFWBMD",
"status": "waiting_for_decision",
"created_at": "2026-01-12T16:47:52.000000Z",
"updated_at": "2026-01-12T16:47:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view active P2P session",
"code": "P2P_SESSIONS:GET_ACTIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:GET_ACTIVE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get session data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/p2p/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/p2p/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 2,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "e7187bac-1fb3-3506-a12d-b61ceaf55dec",
"clinician_uuid": "f210c25e-38ff-3963-88d1-98d3e57f5d48",
"token": "FIZT7JXIXD0E2Z4SNDG59P186URQ58M6F7NJFHV7R4D5N9SKS276V00C5JG56ESN",
"status": "waiting_for_decision",
"created_at": "2026-01-12T16:47:52.000000Z",
"updated_at": "2026-01-12T16:47:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view P2P session",
"code": "P2P_SESSIONS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:GET:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new P2P session
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/p2p/create" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"amputee_id\": 2,
\"device_id\": 5,
\"amputee_uuid\": \"7cb48aff-c482-39fd-ade2-345a48e18631\",
\"clinician_uuid\": \"df655341-276e-3be6-b05e-83738c2ba999\"
}"
const url = new URL(
"http://localhost:8000/api/p2p/create"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"amputee_id": 2,
"device_id": 5,
"amputee_uuid": "7cb48aff-c482-39fd-ade2-345a48e18631",
"clinician_uuid": "df655341-276e-3be6-b05e-83738c2ba999"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"amputee_id": 118,
"device_id": null,
"clinician_id": 119,
"amputee_uuid": "d4cc7334-3eb2-3b48-8ef9-a100aa51675a",
"clinician_uuid": "9760b2af-b1a6-3339-9d1a-96b33cdef4b2",
"token": "RD78LVWJA5H5IS737O4PUG1IHTFBTPH0FNSY9PES41BHLE9NCUEA9QRP7VQH50C6",
"status": "waiting_for_decision",
"created_at": "2026-01-12T16:47:52.000000Z",
"updated_at": "2026-01-12T16:47:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create P2P session",
"code": "P2P_SESSIONS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Device not assigned to patient):
{
"message": "Device is not assigned to the patient",
"code": "P2P_SESSIONS:CREATE:DEVICE_NOT_ASSIGNED"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "P2P_SESSIONS:CREATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update P2P session
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/p2p/1/update" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"status\": \"closed\"
}"
const url = new URL(
"http://localhost:8000/api/p2p/1/update"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"status": "closed"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 4,
"amputee_id": null,
"device_id": null,
"clinician_id": null,
"amputee_uuid": "d16ec4ba-e5a1-332c-ae1d-c6e99d0bbc43",
"clinician_uuid": "e2179afc-73b8-317b-be92-3680458ad0f5",
"token": "NPNEN77ZJ3XN5UXC84M1X5OABJ0O1JPD6WI7WWN4H5K8G627FDAQN1W1LAV1RWP5",
"status": "waiting_for_decision",
"created_at": "2026-01-12T16:47:52.000000Z",
"updated_at": "2026-01-12T16:47:52.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update P2P session",
"code": "P2P_SESSIONS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "P2P session not found",
"code": "P2P_SESSIONS:UPDATE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Product features and toggles
API endpoints for product features and toggles management
Definitions:
- Product feature - part of application which can be considered as hardware compatible (with for example specific PCB version) or software compatible (with for example specific firmware version). Product features are used in versions compatibility matrix.
- Product toggle - part of application which can be enabled and disabled for current environment.
List product features
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/features" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/features"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "white",
"slug": "quia-totam-nisi-et",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
},
{
"id": 2,
"name": "lime",
"slug": "dignissimos-et-voluptatem-dolores-expedita",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "PRODUCT_FEATURES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create product feature
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/product/features" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\"
}"
const url = new URL(
"http://localhost:8000/api/product/features"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "blue",
"slug": "sed-illum-tenetur-totam-itaque-dolores",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update product feature
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/product/features/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\"
}"
const url = new URL(
"http://localhost:8000/api/product/features/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "olive",
"slug": "quidem-dolores-omnis-aut-assumenda-odit-itaque-quia",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product feature not found):
{
"message": "Product feature not found",
"code": "PRODUCT_FEATURES:UPDATE:FEATURE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete product feature
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/product/features/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/features/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Product feature deleted",
"code": "PRODUCT_FEATURES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_FEATURES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Product feature belongs to compatibility entries):
{
"message": "Cannot delete: product feature belongs to existing compatibility entries (1)",
"code": "PRODUCT_FEATURES:DELETE:HAS_COMPATIBILITY_ENTRIES"
}
Example response (404, Product feature not found):
{
"message": "Product feature not found",
"code": "PRODUCT_FEATURES:DELETE:FEATURE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List product toggles
requires authentication
This endpoint returns list of global toggles. For some users there could exist user toggle which overrides these settings.
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/toggles?global=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/toggles"
);
const params = {
"global": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "black",
"slug": "ratione-sed-voluptatem-pariatur-esse-nobis-doloremque",
"enabled": 1,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
},
{
"id": 2,
"name": "teal",
"slug": "dolor-occaecati-aliquid-ut-facilis-possimus-aut-facere",
"enabled": 0,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "PRODUCT_TOGGLES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create product toggle
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/product/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\",
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/product/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config",
"enabled": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "purple",
"slug": "qui-commodi-est-eius-provident",
"enabled": 0,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update product toggle
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/product/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Remote config\",
\"slug\": \"remote_config\",
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/product/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Remote config",
"slug": "remote_config",
"enabled": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "yellow",
"slug": "velit-iste-doloribus-rerum-ipsam-quia-voluptatum-aspernatur",
"enabled": 1,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product toggle not found):
{
"message": "Product toggle not found",
"code": "PRODUCT_TOGGLES:UPDATE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete product toggle
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/product/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Product toggle deleted",
"code": "PRODUCT_TOGGLES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "PRODUCT_TOGGLES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Product toggle not found):
{
"message": "Product toggle not found",
"code": "PRODUCT_TOGGLES:DELETE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List product FAQ
requires authentication
This endpoint returns list of product FAQ.
Example request:
curl --request GET \
--get "http://localhost:8000/api/product/faq" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/product/faq"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"question": "Natus est atque fugiat labore nesciunt. Rem perspiciatis non hic aut rem accusamus dolorem. Cum a at porro natus dolorem.",
"answer": "Quia harum fugiat mollitia. Aut doloremque est eum aut maxime. Iure vero totam modi asperiores adipisci praesentium est delectus. Ducimus quia aspernatur recusandae deserunt a beatae aut.",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
},
{
"id": 2,
"question": "Qui eveniet deserunt ut iste. Eveniet nesciunt rerum impedit id. Delectus mollitia tempora et natus cumque. Consequatur ut labore facilis magnam accusamus.",
"answer": "Ut perferendis quia sequi temporibus sunt dignissimos enim. Deserunt nihil cum dicta dicta modi. Repudiandae minus et reprehenderit aut officiis.",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "FAQ:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List user toggles
requires authentication
This endpoint returns list of user toggles with their global toggles.
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"toggle_id": 6,
"user_id": 251,
"enabled": 0,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z",
"toggle": {
"id": 6,
"name": "silver",
"slug": "quas-distinctio-voluptas-praesentium-sunt-culpa-asperiores-doloremque",
"enabled": 1,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
},
{
"id": 2,
"toggle_id": 8,
"user_id": 252,
"enabled": 0,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z",
"toggle": {
"id": 8,
"name": "green",
"slug": "aut-incidunt-temporibus-earum-quisquam-reiciendis-necessitatibus-et-numquam",
"enabled": 1,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view product features and toggles",
"code": "USER_TOGGLES:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create user toggle
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/toggles" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"toggle_id\": 1,
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/toggles"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"toggle_id": 1,
"enabled": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"toggle_id": 9,
"user_id": 253,
"enabled": 1,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:CREATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update user toggle
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"enabled\": true
}"
const url = new URL(
"http://localhost:8000/api/user/1/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"enabled": true
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"toggle_id": 10,
"user_id": 254,
"enabled": 0,
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:UPDATE:USER_NOT_FOUND"
}
Example response (404, User toggle not found):
{
"message": "User toggle not found",
"code": "USER_TOGGLES:UPDATE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete user toggle
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1/toggles/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/toggles/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User toggle deleted",
"code": "USER_TOGGLES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage product features and toggles",
"code": "USER_TOGGLES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USER_TOGGLES:DELETE:USER_NOT_FOUND"
}
Example response (404, User toggle not found):
{
"message": "User toggle not found",
"code": "USER_TOGGLES:DELETE:TOGGLE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Releases
API endpoints for releases management
List releases
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/releases" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 14,
"description": "Aut et id quis et autem quia expedita. Dolores repellat aut dicta est voluptatem alias non optio. Nobis odio nihil earum aut accusamus.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"version": {
"id": 14,
"name": "1.22.1",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
},
{
"id": 2,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 15,
"description": "Omnis aut cumque dolores mollitia totam repellendus voluptatem. Eum reprehenderit voluptas consequatur veniam quis. Est autem quia quo eum tenetur earum exercitationem.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"version": {
"id": 15,
"name": "1.95.18",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list releases",
"code": "RELEASES:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get release
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 16,
"description": "Recusandae cupiditate delectus eaque enim aut. Sit aperiam natus consequatur. Et dolores et aut voluptate quo temporibus. Sint est quis omnis rerum eius.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"version": {
"id": 16,
"name": "2.63.50",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view release",
"code": "RELEASES:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:GET:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create release
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/releases" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version_type\": \"SoftwareVersion\",
\"version_id\": 1,
\"description\": \"This version fixes minor bugs.\"
}"
const url = new URL(
"http://localhost:8000/api/releases"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version_type": "SoftwareVersion",
"version_id": 1,
"description": "This version fixes minor bugs."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 17,
"description": "Mollitia et voluptate voluptatem expedita. Deleniti in minima ea dolore. Dolorem laborum qui et eveniet et molestiae necessitatibus. Quibusdam et nesciunt ut est totam.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create release",
"code": "RELEASES:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update release
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version_type\": \"SoftwareVersion\",
\"version_id\": 1,
\"description\": \"This version fixes minor bugs.\"
}"
const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version_type": "SoftwareVersion",
"version_id": 1,
"description": "This version fixes minor bugs."
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 5,
"version_type": "App\\Models\\SoftwareVersion",
"version_id": 18,
"description": "Magni cumque incidunt corrupti magnam nemo a natus. Consequuntur ducimus quo qui mollitia autem enim culpa. Corrupti dignissimos nihil soluta ut. Reprehenderit et et similique ipsam.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update release",
"code": "RELEASES:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:UPDATE:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete release
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/releases/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/releases/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "RELEASES:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete release",
"code": "RELEASES:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Release not found):
{
"message": "Release not found",
"code": "RELEASES:DELETE:RELEASE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Search
API endpoints for search
Search
requires authentication
Searches in:
- users (by name and email)
- devices (by serial number)
Returned collection contains entries of type User or Device.
If the device has a patient assigned, this patient is included in the results as an entry of type User. If the device has no patient, the device is included in the results.
Users included in the results, but not found directly have "devices" relation filled in with the devices that match the search query.
Example request:
curl --request GET \
--get "http://localhost:8000/api/search" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"query\": \"Tom\"
}"
const url = new URL(
"http://localhost:8000/api/search"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"query": "Tom"
};
fetch(url, {
method: "GET",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"type": "User",
"item": {
"id": 1,
"mrn": "MRN",
"name": "User name",
"email": "user@domain.com",
"language": "en",
"phone": "",
"phone_verified_at": null,
"address1": "",
"address2": "",
"postal_code": "",
"city": "",
"clinic_name": "Test Company",
"clinic_location": "Test Company Location",
"image": null,
"mfa_enabled": 0,
"mfa_method": "email",
"mfa_verified_to": null,
"created_by": null,
"active": 1,
"notifications_timezone": "Europe/Warsaw",
"notifications_at": "08:00:00",
"created_at": "2024-09-01T15:00:00.000000Z",
"updated_at": "2024-10-10T10:30:00.000000Z",
"invitation_status": "accepted",
"pivot": {
"assigned_user_id": 2,
"user_id": 1
},
"devices": [],
"roles": [
{
"id": 5,
"name": "Amputee",
"guard_name": "web",
"created_at": "2024-01-01T12:00:00.000000Z",
"updated_at": "2024-01-01T12:00:00.000000Z",
"pivot": {
"model_id": 1,
"role_id": 5,
"model_type": "App\\Models\\User"
}
}
]
}
},
{
"type": "Device",
"item": {
"id": 1,
"serial": "SERIAL-NUMBER",
"bluetooth_id": "BLUETOOTH_ID",
"model_id": 1,
"amputee_id": 1,
"firmware_version_id": 1,
"pcb_version_id": 1,
"active": 1,
"last_activity_at": "2024-11-11 12:00:00",
"created_at": "2024-08-30T15:00:00.000000Z",
"updated_at": "2024-09-01T16:00:00.000000Z",
"pivot": {
"user_id": 2,
"device_id": 1
}
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to search",
"code": "SEARCH:SEARCH:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Servicing
API endpoints for servicing
List of parts
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/servicing/parts" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/servicing/parts"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_model": null,
"name": "Discover Card",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z"
},
{
"id": 2,
"device_model": null,
"name": "Visa",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list service parts",
"code": "SERVICING:LIST_PARTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Report service repair
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/servicing/repair" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "user_id=1"\
--form "device_id=1"\
--form "parts[][part_id]=1"\
--form "parts[][reason]=Mechanical issue"\
--form "files[]=@/tmp/phpvec5K8" const url = new URL(
"http://localhost:8000/api/servicing/repair"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('user_id', '1');
body.append('device_id', '1');
body.append('parts[][part_id]', '1');
body.append('parts[][reason]', 'Mechanical issue');
body.append('files[]', document.querySelector('input[name="files[]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 136,
"device_id": 115,
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z",
"parts": [
{
"id": 1,
"repair_id": 1,
"part_id": 3,
"reason": "Dolor nostrum maiores tenetur rerum. Et et voluptatem amet totam autem. Ex molestias ea sequi et consequatur. Voluptas similique voluptatem est laudantium ut.",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z",
"part": {
"id": 3,
"device_model": null,
"name": "Visa Retired",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z"
}
},
{
"id": 2,
"repair_id": 1,
"part_id": 4,
"reason": "Aut distinctio et quia expedita consequatur ex. Nulla dolor quas explicabo ducimus. Sed ut saepe facere cum. Necessitatibus omnis inventore alias suscipit.",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z",
"part": {
"id": 4,
"device_model": null,
"name": "MasterCard",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z"
}
},
{
"id": 3,
"repair_id": 1,
"part_id": 5,
"reason": "Ratione id deserunt illum fugiat. Ad eius non iusto tempora rerum asperiores. Quidem praesentium quod et ut.",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z",
"part": {
"id": 5,
"device_model": null,
"name": "MasterCard",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z"
}
}
],
"attachments": [
{
"id": 1,
"repair_id": 1,
"file": "/tmp/fakerXd4tVp",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z"
},
{
"id": 2,
"repair_id": 1,
"file": "/tmp/fakerOBt3Re",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z"
},
{
"id": 3,
"repair_id": 1,
"file": "/tmp/fakerrne8wT",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to report service repair",
"code": "SERVICING:REPORT_REPAIR:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Settings
API endpoints for app settings
Get app version
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/app-version" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/app-version"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"version": "1.6.0"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get silent push timeout
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/silent-push" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/silent-push"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"timeout": "15"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get available languages
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/settings/languages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/settings/languages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"languages": [
"de",
"en",
"es",
"it",
"pl",
"ru",
"uk"
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get mobile stores versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/mobile/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/mobile/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"ios": "1.0",
"android": "1.0"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update app version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/settings/app-version" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"version\": \"1.6.0\"
}"
const url = new URL(
"http://localhost:8000/api/settings/app-version"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"version": "1.6.0"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"version": "1.6.0"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_APP_VERSION:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update silent push timeout
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/settings/silent-push" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"timeout\": 15
}"
const url = new URL(
"http://localhost:8000/api/settings/silent-push"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"timeout": 15
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"timeout": "15"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_SILENT_PUSH:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update mobile stores versions
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/mobile/versions" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"ios\": \"1.1\",
\"android\": \"1.1\"
}"
const url = new URL(
"http://localhost:8000/api/mobile/versions"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"ios": "1.1",
"android": "1.1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"ios": "1.0",
"android": "1.0"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update settings",
"code": "SETTINGS:UPDATE_MOBILE_STORES_VERSION:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Support Ticket
API endpoints for managing support tickets
Get tickets list
requires authentication
Possible extend options:
- sender - the user who created ticket
- recipient - the user who was ticket recipient
- device - the device assigned to ticket
- messages - message allocated to ticket
- messages.attachments - list of attachments assigned to message and ticket
- messages.sender - the user who wrote the message
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets?status=new&sender=1&recipient=1&device=1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets"
);
const params = {
"status": "new",
"sender": "1",
"recipient": "1",
"device": "1",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 27,
"sender_id": 145,
"recipient_id": 146,
"device_id": 122,
"meeting_date": "2026-01-12 16:47:54",
"meeting_type": "online_meeting",
"contact_email": "vswift@douglas.info",
"status": "new",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z",
"sender": {
"id": 145,
"mrn": "CLEGYJNX1768236474",
"name": "Roscoe Stanton",
"email": "1768236474emely.heathcote@example.com",
"language": "en",
"phone": "+1.904.492.6420",
"phone_country": "PE",
"phone_verified_at": null,
"address1": "83669 Heathcote Drives Suite 334",
"address2": "Kielmouth, NV 15962",
"postal_code": "54633-8300",
"city": "Wilderman, Herman and Thompson",
"clinic_name": "Schmidtmouth",
"clinic_location": "8117 Walker Rue\nProhaskaview, VT 55597",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 146,
"mrn": "124YAINZ1768236474",
"name": "Katlyn Berge",
"email": "1768236474jairo.volkman@example.com",
"language": "en",
"phone": "+1 (234) 681-6879",
"phone_country": "DJ",
"phone_verified_at": null,
"address1": "6089 Shirley Rest Suite 824",
"address2": "West Maxwellmouth, WI 39329",
"postal_code": "56714-1569",
"city": "Bailey, Stiedemann and Thompson",
"clinic_name": "Bradtkeburgh",
"clinic_location": "60842 Elyse Stravenue\nCreminmouth, KY 23495",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 122,
"serial": "73b16df2-ce83-3420-b9aa-5f33e718d177",
"bluetooth_id": "6a9bf13e-351b-3398-8edd-4adc3e5491f4",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:54.000000Z",
"updated_at": "2026-01-12T16:47:54.000000Z"
},
"messages": [
{
"id": 15,
"ticket_id": 27,
"sender_id": 147,
"title": "Mrs.",
"content": "Rerum culpa dolorem consequuntur eos qui.",
"is_read": false,
"created_at": "2026-01-12T16:47:55.000000Z",
"updated_at": "2026-01-12T16:47:55.000000Z"
}
]
},
{
"id": 35,
"sender_id": 159,
"recipient_id": 160,
"device_id": 123,
"meeting_date": "2026-01-12 16:47:55",
"meeting_type": "online_meeting",
"contact_email": "noble46@hotmail.com",
"status": "new",
"created_at": "2026-01-12T16:47:56.000000Z",
"updated_at": "2026-01-12T16:47:56.000000Z",
"sender": {
"id": 159,
"mrn": "MV5LPQ0O1768236475",
"name": "Mr. Braulio Rohan IV",
"email": "1768236475christiansen.garnett@example.org",
"language": "en",
"phone": "+1.650.405.5858",
"phone_country": "KP",
"phone_verified_at": null,
"address1": "46429 Green Canyon Apt. 493",
"address2": "East Danmouth, AR 75764-2615",
"postal_code": "41665",
"city": "Kub-Bailey",
"clinic_name": "Nashtown",
"clinic_location": "153 Koss Walk\nWest Orville, AZ 89986-5998",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:55.000000Z",
"updated_at": "2026-01-12T16:47:55.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 160,
"mrn": "XKDLVGHZ1768236475",
"name": "Rachael Crooks",
"email": "1768236475gerhold.caterina@example.com",
"language": "en",
"phone": "517.671.5301",
"phone_country": "PT",
"phone_verified_at": null,
"address1": "8318 Weissnat Wells",
"address2": "North Berylville, FL 63127",
"postal_code": "56932-2046",
"city": "Hessel Inc",
"clinic_name": "West Arjunberg",
"clinic_location": "57175 Darron Plains Suite 460\nWest Americamouth, OH 06298-8141",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:56.000000Z",
"updated_at": "2026-01-12T16:47:56.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 123,
"serial": "fbaaf0cb-4c98-3cb2-bed4-e4867385a8dc",
"bluetooth_id": "4c556d64-3af7-3e4c-82c3-45940eaac355",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:56.000000Z",
"updated_at": "2026-01-12T16:47:56.000000Z"
},
"messages": [
{
"id": 19,
"ticket_id": 35,
"sender_id": 161,
"title": "Ms.",
"content": "Id quaerat est nesciunt vel et.",
"is_read": false,
"created_at": "2026-01-12T16:47:56.000000Z",
"updated_at": "2026-01-12T16:47:56.000000Z"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list support tickets",
"code": "TICKETS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get tickets status
requires authentication
Counts tickets by their status
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets/status" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets/status"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"unread": 1
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list support tickets",
"code": "TICKETS:STATUS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get support ticket
requires authentication
Returns single support ticket in the response.
Example request:
curl --request GET \
--get "http://localhost:8000/api/ticket/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 43,
"sender_id": 173,
"recipient_id": 174,
"device_id": 124,
"meeting_date": "2026-01-12 16:47:56",
"meeting_type": "online_meeting",
"contact_email": "bins.coy@hotmail.com",
"status": "new",
"created_at": "2026-01-12T16:47:57.000000Z",
"updated_at": "2026-01-12T16:47:57.000000Z",
"sender": {
"id": 173,
"mrn": "Z4WY6CLF1768236476",
"name": "Ludwig Daugherty",
"email": "1768236476ybarrows@example.org",
"language": "en",
"phone": "281.664.2972",
"phone_country": "MM",
"phone_verified_at": null,
"address1": "234 Watsica Shoal Apt. 375",
"address2": "Salvadorbury, SC 80237-8497",
"postal_code": "62357",
"city": "Beier-O'Connell",
"clinic_name": "Hillardmouth",
"clinic_location": "718 Eliezer Key\nNew Monserratestad, GA 13982-2920",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:56.000000Z",
"updated_at": "2026-01-12T16:47:56.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 174,
"mrn": "5V4UR62J1768236476",
"name": "Dr. Marjolaine Dibbert Jr.",
"email": "1768236476hermann.bertram@example.org",
"language": "en",
"phone": "689-226-1082",
"phone_country": "RU",
"phone_verified_at": null,
"address1": "245 Alec Pine Suite 402",
"address2": "Derekport, MI 23127-8813",
"postal_code": "28903-6425",
"city": "Schoen-Glover",
"clinic_name": "West Isadoreview",
"clinic_location": "16842 Evelyn Radial Apt. 536\nPort Dimitri, OR 83657-4175",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:57.000000Z",
"updated_at": "2026-01-12T16:47:57.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 124,
"serial": "2dff1fda-f9c1-3dd5-8d22-1851b4233e4d",
"bluetooth_id": "868eccf8-d576-3622-8b85-71d33d36e183",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:57.000000Z",
"updated_at": "2026-01-12T16:47:57.000000Z"
},
"messages": [
{
"id": 23,
"ticket_id": 43,
"sender_id": 175,
"title": "Mr.",
"content": "Doloremque tempora et natus libero voluptatem.",
"is_read": false,
"created_at": "2026-01-12T16:47:57.000000Z",
"updated_at": "2026-01-12T16:47:57.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view support ticket",
"code": "TICKETS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:GET:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get support ticket history
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/ticket/1/history" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/history"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"ticket_id": 51,
"author_id": 188,
"action": "qui",
"reason": "Odio non et accusantium ex corrupti ut similique laudantium.",
"created_at": "2026-01-12T16:47:58.000000Z",
"updated_at": "2026-01-12T16:47:58.000000Z"
},
{
"id": 2,
"ticket_id": 52,
"author_id": 190,
"action": "beatae",
"reason": "Repellat beatae alias nulla suscipit autem voluptatibus.",
"created_at": "2026-01-12T16:47:58.000000Z",
"updated_at": "2026-01-12T16:47:58.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view support ticket",
"code": "TICKETS:HISTORY:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:HISTORY:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get support ticket available filters
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tickets/available-filters" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tickets/available-filters"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
{
"clinicians": [
{
"id": 95,
"mrn": null,
"name": "Name",
"email": "email",
"region": "us",
"language": "pl",
"phone": "+48-555555555",
"phone_verified_at": null,
"address1": "Address",
"address2": "Address 2",
"postal_code": "",
"city": "",
"clinic_name": "Name",
"clinic_location": "Name",
"image": "https://aether-dev-bucket.s3.amazonaws.com/users/LDueuv1uG218G7owaiLAaWRkpaGxjB0jEFwzZsT1.png",
"mfa_enabled": 0,
"mfa_method": "sms",
"mfa_verified_to": null,
"location_id": 2,
"created_by": 1,
"active": 1,
"notifications_timezone": "America/Adak",
"notifications_at": null,
"created_at": "2022-07-19T14:43:37.000000Z",
"updated_at": "2024-09-27T05:52:51.000000Z",
"invitation_status": "expired",
"roles": [
{
"id": 2,
"name": "Clinician",
"guard_name": "web",
"created_at": "2022-03-21T17:15:47.000000Z",
"updated_at": "2022-03-21T17:15:47.000000Z",
"pivot": {
"model_id": 95,
"role_id": 2,
"model_type": "App\\Models\\User"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:AVAILABLE_FILTERS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new support ticket
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tickets" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "recipient=1"\
--form "device=1"\
--form "meeting_type=online_meeting"\
--form "meeting_date=2026-01-12 16:47:58"\
--form "contact_email=arturo.cummings@goodwin.com"\
--form "message[content]=Qui et qui minima reiciendis consequuntur sit accusamus."\
--form "message[title]=Veniam excepturi sunt culpa."\
--form "message[attachments][]=@/tmp/phpE7oNFI" const url = new URL(
"http://localhost:8000/api/tickets"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('recipient', '1');
body.append('device', '1');
body.append('meeting_type', 'online_meeting');
body.append('meeting_date', '2026-01-12 16:47:58');
body.append('contact_email', 'arturo.cummings@goodwin.com');
body.append('message[content]', 'Qui et qui minima reiciendis consequuntur sit accusamus.');
body.append('message[title]', 'Veniam excepturi sunt culpa.');
body.append('message[attachments][]', document.querySelector('input[name="message[attachments][]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 53,
"sender_id": 191,
"recipient_id": 192,
"device_id": 125,
"meeting_date": "2026-01-12 16:47:58",
"meeting_type": "online_meeting",
"contact_email": "zhackett@hotmail.com",
"status": "new",
"created_at": "2026-01-12T16:47:58.000000Z",
"updated_at": "2026-01-12T16:47:58.000000Z",
"sender": {
"id": 191,
"mrn": "8WMY8YPA1768236478",
"name": "Prof. Kiara O'Hara",
"email": "1768236478chaley@example.org",
"language": "en",
"phone": "+1.401.966.6807",
"phone_country": "ST",
"phone_verified_at": null,
"address1": "8439 Pete Neck",
"address2": "Lake Beaulahhaven, IL 17918",
"postal_code": "38293-5214",
"city": "Ebert-Abernathy",
"clinic_name": "Lake Isom",
"clinic_location": "2973 Jenkins Corner Suite 416\nNolaberg, MA 62171-5738",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:58.000000Z",
"updated_at": "2026-01-12T16:47:58.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 192,
"mrn": "VYJEWNKP1768236478",
"name": "Mr. Roger Rippin DVM",
"email": "1768236478fwolf@example.org",
"language": "en",
"phone": "1-615-713-4679",
"phone_country": "PS",
"phone_verified_at": null,
"address1": "8818 Gutmann Summit",
"address2": "North Kasandra, PA 01292",
"postal_code": "51811-9047",
"city": "Upton-Blanda",
"clinic_name": "Geraldton",
"clinic_location": "56976 Al Gardens\nWest Taylor, WV 79814-0229",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:58.000000Z",
"updated_at": "2026-01-12T16:47:58.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 125,
"serial": "c094af9b-5dde-3c09-9f21-17b79c2add95",
"bluetooth_id": "94ff6953-d9f7-3acb-8a5e-a808d3aaef62",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:58.000000Z",
"updated_at": "2026-01-12T16:47:58.000000Z"
},
"messages": [
{
"id": 27,
"ticket_id": 53,
"sender_id": 193,
"title": "Miss",
"content": "Velit deleniti labore nobis mollitia nisi.",
"is_read": false,
"created_at": "2026-01-12T16:47:58.000000Z",
"updated_at": "2026-01-12T16:47:58.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Close support ticket
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/close" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/close"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 61,
"sender_id": 205,
"recipient_id": 206,
"device_id": 126,
"meeting_date": "2026-01-12 16:47:59",
"meeting_type": "online_meeting",
"contact_email": "reynolds.jed@gmail.com",
"status": "new",
"created_at": "2026-01-12T16:47:59.000000Z",
"updated_at": "2026-01-12T16:47:59.000000Z",
"sender": {
"id": 205,
"mrn": "VI6J1RQ91768236479",
"name": "Marco Murazik",
"email": "1768236479casper05@example.org",
"language": "en",
"phone": "+1 (614) 465-7617",
"phone_country": "ET",
"phone_verified_at": null,
"address1": "535 Corene Coves",
"address2": "New Ford, MA 62781-8311",
"postal_code": "19181",
"city": "Hamill-Bechtelar",
"clinic_name": "Reneefort",
"clinic_location": "286 Hauck Vista Suite 506\nLake Murielview, KY 93714-5266",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:59.000000Z",
"updated_at": "2026-01-12T16:47:59.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 206,
"mrn": "S8OR7MS11768236479",
"name": "Sibyl Wunsch",
"email": "1768236479eleonore85@example.com",
"language": "en",
"phone": "(980) 385-5568",
"phone_country": "KP",
"phone_verified_at": null,
"address1": "797 Stroman Flat",
"address2": "Abelport, SD 47431",
"postal_code": "14481",
"city": "Johns, Lakin and Murphy",
"clinic_name": "Titohaven",
"clinic_location": "7022 Giles Court Apt. 655\nAlaynashire, OK 08086",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:59.000000Z",
"updated_at": "2026-01-12T16:47:59.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 126,
"serial": "66a22c44-c602-3e99-8662-c5d8819e5306",
"bluetooth_id": "5d38b4af-3295-3929-a7bb-17081a540c0f",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:59.000000Z",
"updated_at": "2026-01-12T16:47:59.000000Z"
},
"messages": []
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to close support ticket",
"code": "TICKETS:CLOSE:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:CLOSE:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Reopen support ticket
requires authentication
Patient (Amputee) role can reopen only non-config tickets.
For config tickets patients will get "Insufficient permission" response.
For patients role reason field is required.
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/reopen" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"reason\": \"Something is still not working\"
}"
const url = new URL(
"http://localhost:8000/api/ticket/1/reopen"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"reason": "Something is still not working"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 3,
"ticket_id": 62,
"author_id": 208,
"action": "voluptas",
"reason": "Est sit et placeat voluptates est voluptatem nihil.",
"created_at": "2026-01-12T16:47:59.000000Z",
"updated_at": "2026-01-12T16:47:59.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to reopen support ticket",
"code": "TICKETS:REOPEN:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:REOPEN:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new support ticket message
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/messages" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "title=Aut provident."\
--form "content=Iste sapiente sint in in."\
--form "attachments[]=@/tmp/phpCzbnPH" const url = new URL(
"http://localhost:8000/api/ticket/1/messages"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('title', 'Aut provident.');
body.append('content', 'Iste sapiente sint in in.');
body.append('attachments[]', document.querySelector('input[name="attachments[]"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 63,
"sender_id": 209,
"recipient_id": 210,
"device_id": 127,
"meeting_date": "2026-01-12 16:47:59",
"meeting_type": "online_meeting",
"contact_email": "fschimmel@hotmail.com",
"status": "new",
"created_at": "2026-01-12T16:47:59.000000Z",
"updated_at": "2026-01-12T16:47:59.000000Z",
"sender": {
"id": 209,
"mrn": "7DTSSBTE1768236479",
"name": "Miss Taryn Kuhic",
"email": "1768236479frami.maybelle@example.net",
"language": "en",
"phone": "1-661-282-7044",
"phone_country": "BG",
"phone_verified_at": null,
"address1": "61337 Purdy Skyway",
"address2": "Lake Lela, MA 19997",
"postal_code": "82185-0769",
"city": "Bauch-Stokes",
"clinic_name": "Schroederville",
"clinic_location": "353 Herzog Island Apt. 314\nPort Alexander, OR 37646",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:59.000000Z",
"updated_at": "2026-01-12T16:47:59.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 210,
"mrn": "BKZ3K7RH1768236479",
"name": "Eileen Jerde",
"email": "1768236479fadel.rocky@example.com",
"language": "en",
"phone": "757-866-5170",
"phone_country": "KM",
"phone_verified_at": null,
"address1": "46981 Okuneva Hill Suite 035",
"address2": "Schinnerton, LA 00929-2367",
"postal_code": "93637-3024",
"city": "Stracke-Gerlach",
"clinic_name": "West Jalon",
"clinic_location": "782 Ruben Corner\nPort Mattfort, DE 53397-9062",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:59.000000Z",
"updated_at": "2026-01-12T16:47:59.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 127,
"serial": "564fe6c8-3827-3d55-97e8-7a1d495c0886",
"bluetooth_id": "ef2c26c9-b4f0-3eb7-a212-0754a8564214",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:59.000000Z",
"updated_at": "2026-01-12T16:47:59.000000Z"
},
"messages": [
{
"id": 31,
"ticket_id": 63,
"sender_id": 211,
"title": "Miss",
"content": "Eveniet et non fuga quae voluptatem.",
"is_read": false,
"created_at": "2026-01-12T16:48:00.000000Z",
"updated_at": "2026-01-12T16:48:00.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create support ticket",
"code": "TICKETS:CREATE_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:CREATE_MESSAGE:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mark all messages as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/read" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/read"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 71,
"sender_id": 223,
"recipient_id": 224,
"device_id": 128,
"meeting_date": "2026-01-12 16:48:00",
"meeting_type": "online_meeting",
"contact_email": "ebernier@hotmail.com",
"status": "new",
"created_at": "2026-01-12T16:48:00.000000Z",
"updated_at": "2026-01-12T16:48:00.000000Z",
"sender": {
"id": 223,
"mrn": "7NGSZUVU1768236480",
"name": "Mrs. Lilyan Littel",
"email": "1768236480hermina.mueller@example.com",
"language": "en",
"phone": "1-720-395-9007",
"phone_country": "MM",
"phone_verified_at": null,
"address1": "7935 Lisandro Plains",
"address2": "Maymiestad, NV 54161-2896",
"postal_code": "97818",
"city": "Weber-McLaughlin",
"clinic_name": "Smithamside",
"clinic_location": "679 Konopelski Trace\nNorth Marlenhaven, NY 31019",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:00.000000Z",
"updated_at": "2026-01-12T16:48:00.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 224,
"mrn": "MALEGB4C1768236480",
"name": "Santiago Tillman",
"email": "1768236480rsipes@example.net",
"language": "en",
"phone": "+13078897406",
"phone_country": "CU",
"phone_verified_at": null,
"address1": "94548 Micheal Lane Apt. 102",
"address2": "Lake Kennithside, ME 38978-4583",
"postal_code": "39136-6258",
"city": "Osinski-Considine",
"clinic_name": "North Magdalena",
"clinic_location": "67462 Roberts Isle\nAnselshire, MA 09040-8300",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:00.000000Z",
"updated_at": "2026-01-12T16:48:00.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 128,
"serial": "abf9aa29-e496-3174-86cb-2de8a0ffffdc",
"bluetooth_id": "e6a46091-0af6-3b11-acb2-bd92e5ca9b8f",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:48:00.000000Z",
"updated_at": "2026-01-12T16:48:00.000000Z"
},
"messages": [
{
"id": 35,
"ticket_id": 71,
"sender_id": 225,
"title": "Miss",
"content": "Dolores aut delectus vero dolores iusto adipisci officia est.",
"is_read": false,
"created_at": "2026-01-12T16:48:01.000000Z",
"updated_at": "2026-01-12T16:48:01.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to read message",
"code": "TICKETS:READ_ALL:INSUFFICIENT_PERMISSION"
}
Example response (404, Support ticket not found):
{
"message": "Support ticket not found",
"code": "TICKETS:READ_ALL:TICKET_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mark single message as read
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/ticket/1/read/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/ticket/1/read/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 79,
"sender_id": 237,
"recipient_id": 238,
"device_id": 129,
"meeting_date": "2026-01-12 16:48:02",
"meeting_type": "online_meeting",
"contact_email": "bkshlerin@mitchell.info",
"status": "new",
"created_at": "2026-01-12T16:48:02.000000Z",
"updated_at": "2026-01-12T16:48:02.000000Z",
"sender": {
"id": 237,
"mrn": "ZAGLFHN61768236482",
"name": "Sonny Stiedemann",
"email": "1768236482ariane50@example.com",
"language": "en",
"phone": "(757) 274-0605",
"phone_country": "VG",
"phone_verified_at": null,
"address1": "90105 Delbert Trace",
"address2": "North Aryannatown, HI 18538-7894",
"postal_code": "35034",
"city": "Nolan-Fay",
"clinic_name": "North Friedaview",
"clinic_location": "7390 Baumbach Tunnel Apt. 783\nNorth Alaina, SC 56440",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:02.000000Z",
"updated_at": "2026-01-12T16:48:02.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"recipient": {
"id": 238,
"mrn": "7WR42HP51768236482",
"name": "Otto Zieme",
"email": "1768236482padberg.keshawn@example.com",
"language": "en",
"phone": "479.486.7651",
"phone_country": "DZ",
"phone_verified_at": null,
"address1": "38926 Brenna Shores Apt. 492",
"address2": "Hollisbury, CT 38212-5779",
"postal_code": "62491",
"city": "Bayer, Leannon and Murazik",
"clinic_name": "East Sam",
"clinic_location": "47708 Earnestine Valleys Suite 357\nNew Ariel, DE 13127-7636",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:48:02.000000Z",
"updated_at": "2026-01-12T16:48:02.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": []
},
"device": {
"id": 129,
"serial": "983a0936-359e-3acb-bab9-c7a7a8fdeade",
"bluetooth_id": "5c9dbc04-0b84-3409-8704-b4163c7eb1b1",
"company_id": null,
"model_id": null,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:48:02.000000Z",
"updated_at": "2026-01-12T16:48:02.000000Z"
},
"messages": [
{
"id": 39,
"ticket_id": 79,
"sender_id": 239,
"title": "Dr.",
"content": "Voluptatem perferendis quo eaque quia.",
"is_read": false,
"created_at": "2026-01-12T16:48:02.000000Z",
"updated_at": "2026-01-12T16:48:02.000000Z"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to read message",
"code": "TICKETS:READ_MESSAGE:INSUFFICIENT_PERMISSION"
}
Example response (404, Message not found):
{
"message": "Message not found",
"code": "TICKETS:READ_MESSAGE:MESSAGE_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Tooltips
API endpoints for managing tooltips
List tooltips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tooltips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"name": "Kari Block",
"type": "video",
"language": "cr",
"file": "0",
"created_by": 301,
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z",
"deleted_at": null
},
{
"id": 2,
"name": "Ophelia Schuppe",
"type": "image",
"language": "ie",
"file": "0",
"created_by": 302,
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z",
"deleted_at": null
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list tooltips",
"code": "TOOLTIPS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List archived tooltips
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/tooltips/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"name": "Mr. Murphy Kshlerin Jr.",
"type": "video",
"language": "hr",
"file": "0",
"created_by": 303,
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z",
"deleted_at": null
},
{
"id": 4,
"name": "Hilton Wunsch",
"type": "video",
"language": "yo",
"file": "0",
"created_by": 304,
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z",
"deleted_at": null
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:LIST_ARCHIVE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=Rigoberto Streets"\
--form "type=image"\
--form "language=mk"\
--form "file=@/tmp/phpzq3VvL" const url = new URL(
"http://localhost:8000/api/tooltips"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', 'Rigoberto Streets');
body.append('type', 'image');
body.append('language', 'mk');
body.append('file', document.querySelector('input[name="file"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "Camylle Stracke",
"type": "video",
"language": "tt",
"file": "0",
"created_by": 305,
"created_at": "2026-01-12T16:48:09.000000Z",
"updated_at": "2026-01-12T16:48:09.000000Z",
"deleted_at": null
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (500, Server error):
{
"message": "Server error: tooltip not created",
"code": "TOOLTIPS:CREATE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Archive tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips/1/archive" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/1/archive"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Tooltip archived",
"code": "TOOLTIPS:ARCHIVE:ARCHIVED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:ARCHIVE:INSUFFICIENT_PERMISSION"
}
Example response (404, Tooltip not found):
{
"message": "Tooltip not found",
"code": "TOOLTIPS:ARCHIVE:TOOLTIP_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Restore archived tooltip
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/tooltips/1/restore" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/tooltips/1/restore"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Tooltip restored",
"code": "TOOLTIPS:RESTORE:RESTORED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage tooltips",
"code": "TOOLTIPS:RESTORE:INSUFFICIENT_PERMISSION"
}
Example response (404, Tooltip not found):
{
"message": "Tooltip not found",
"code": "TOOLTIPS:RESTORE:TOOLTIP_NOT_FOUND"
}
Example response (404, Tooltip is not archived):
{
"message": "Tooltip is not archived",
"code": "TOOLTIPS:RESTORE:TOOLTIP_NOT_ARCHIVED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Trainings
API endpoints for trainings
Get user badges
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/1/user-badges" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/user-badges"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"user_id": 310,
"badge_id": 2
},
{
"user_id": 312,
"badge_id": 4
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:BADGES:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:BADGES:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:BADGES:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Start user training
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/start/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/start/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 1,
"user_id": 313,
"training_id": 1,
"created_at": "2026-01-12T16:48:10.000000Z",
"updated_at": "2026-01-12T16:48:10.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:START:INSUFFICIENT_PERMISSION"
}
Example response (403, User training already started):
{
"message": "Cannot start: training already started",
"code": "TRAININGS:START:ALREADY_STARTED"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:START:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get training progress
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/trainings/progress/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/progress/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 2,
"user_id": 314,
"training_id": 2,
"created_at": "2026-01-12T16:48:10.000000Z",
"updated_at": "2026-01-12T16:48:10.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:PROGRESS:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:PROGRESS:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:PROGRESS:TRAINING_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Mark training task done
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/trainings/1/day/2/task/3" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/trainings/1/day/2/task/3"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (200):
{
"id": 3,
"user_id": 315,
"training_id": 3,
"created_at": "2026-01-12T16:48:10.000000Z",
"updated_at": "2026-01-12T16:48:10.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to manage user trainings",
"code": "TRAININGS:MARK_DONE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has no training started):
{
"message": "User has no training started",
"code": "TRAININGS:MARK_DONE:NO_USER_TRAINING"
}
Example response (404, Training not found):
{
"message": "Training not found",
"code": "TRAININGS:MARK_DONE:TRAINING_NOT_FOUND"
}
Example response (404, Training day not found):
{
"message": "Training day not found",
"code": "TRAININGS:MARK_DONE:TRAINING_DAY_NOT_FOUND"
}
Example response (404, Training task not found):
{
"message": "Training task not found",
"code": "TRAININGS:MARK_DONE:TRAINING_TASK_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Users
API endpoints for user management
Get users list
requires authentication
Possible extend options:
- clinicians - users assigned to this user as clinicians (for Amputee role)
- patients - users assigned to this user as patients (for ClinicAdmin/Clinician/ClinicianSupport role)
- devices - products assigned to user (for Amputee role)
- devicesAsClinician - products assigned to user as clinician (for ClinicAdmin/Clinician/ClinicianSupport role)
- roles - user roles
- permissions - user permissions (for ClinicianSupport role)
Example request:
curl --request GET \
--get "http://localhost:8000/api/users?search=Tom&active=-1&clinician[]=16&roles=Clinician%2CAmputee" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/users"
);
const params = {
"search": "Tom",
"active": "-1",
"clinician[0]": "16",
"roles": "Clinician,Amputee",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 7,
"mrn": "ONA3ZOT71768236461",
"name": "Miss Caitlyn Fadel I",
"email": "1768236461jayda37@example.net",
"language": "en",
"phone": "+12813339549",
"phone_country": "SC",
"phone_verified_at": null,
"address1": "6805 Boyer Estate Apt. 696",
"address2": "Lake Margarita, ND 38512",
"postal_code": "35287",
"city": "Little-Ernser",
"clinic_name": "Dietrichfort",
"clinic_location": "56354 Wyman Rue Suite 759\nRonnyport, ME 71556",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:41.000000Z",
"updated_at": "2026-01-12T16:47:41.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"clinicians": [
{
"id": 8,
"mrn": "NVW8B4XI1768236461",
"name": "Allene Gorczany",
"email": "1768236461aliya.schroeder@example.net",
"language": "en",
"phone": "1-820-224-0730",
"phone_country": "MZ",
"phone_verified_at": null,
"address1": "515 Alan Islands",
"address2": "Revabury, CO 52309-0250",
"postal_code": "99170",
"city": "Lynch-Dickens",
"clinic_name": "Hoppemouth",
"clinic_location": "603 Carole Island\nWest Francesco, FL 04204-5898",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:41.000000Z",
"updated_at": "2026-01-12T16:47:41.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"pivot": {
"user_id": 7,
"assigned_user_id": 8
},
"roles": []
}
],
"devices": [
{
"id": 1,
"serial": "9b907de8-ac7f-35f6-808b-0799e86182b7",
"bluetooth_id": "5258daba-0996-35d7-925c-140adf8c693a",
"company_id": null,
"model_id": null,
"amputee_id": 7,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:41.000000Z",
"updated_at": "2026-01-12T16:47:41.000000Z"
}
],
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
},
{
"id": 9,
"mrn": "EC71BOLB1768236461",
"name": "Mr. Robb Kuvalis IV",
"email": "1768236461tcasper@example.org",
"language": "en",
"phone": "(531) 956-2255",
"phone_country": "OM",
"phone_verified_at": null,
"address1": "689 Jeremie Turnpike Suite 226",
"address2": "East Kaciburgh, TN 74313",
"postal_code": "65646-7644",
"city": "Thiel Group",
"clinic_name": "North Maryburgh",
"clinic_location": "8341 Quitzon Estates\nAydenberg, CO 65178-0431",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:41.000000Z",
"updated_at": "2026-01-12T16:47:41.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"clinicians": [
{
"id": 10,
"mrn": "UN5P81Y91768236461",
"name": "Chyna Moore",
"email": "1768236461heller.phoebe@example.net",
"language": "en",
"phone": "(252) 915-1877",
"phone_country": "CY",
"phone_verified_at": null,
"address1": "98039 Davis River",
"address2": "Lake Irving, KS 05406",
"postal_code": "26181-3467",
"city": "Metz PLC",
"clinic_name": "Yostchester",
"clinic_location": "9821 Runolfsson Divide\nNew Alvertaview, AL 56697",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:41.000000Z",
"updated_at": "2026-01-12T16:47:41.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"pivot": {
"user_id": 9,
"assigned_user_id": 10
},
"roles": []
}
],
"devices": [
{
"id": 2,
"serial": "a73fa59f-f7ed-329a-8f22-9696c02f5d77",
"bluetooth_id": "20c09a65-ae6d-301b-83d8-ffe30326d562",
"company_id": null,
"model_id": null,
"amputee_id": 9,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:41.000000Z",
"updated_at": "2026-01-12T16:47:41.000000Z"
}
],
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user list",
"code": "USERS:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get current user data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/me" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/me"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 11,
"mrn": "L0UXO0WE1768236462",
"name": "Lemuel Rowe",
"email": "1768236462klein.javon@example.net",
"language": "en",
"phone": "+1 (223) 292-1164",
"phone_country": "CF",
"phone_verified_at": null,
"address1": "6980 Hettinger Fields",
"address2": "Wilmafort, OK 13419",
"postal_code": "41160-1926",
"city": "Nicolas-Hartmann",
"clinic_name": "Corneliusport",
"clinic_location": "3782 Lesley Turnpike Apt. 746\nBartolettiland, NH 96456",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z",
"invitation_status": null,
"acadle_invitation_status": "accepted",
"roles": [
{
"id": 6,
"name": "AcadleUser"
}
]
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get other user data
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"id": 12,
"mrn": "ZQW8QTF41768236462",
"name": "Prof. Shemar Pacocha MD",
"email": "1768236462qzemlak@example.org",
"language": "en",
"phone": "+1.305.961.6297",
"phone_country": "LB",
"phone_verified_at": null,
"address1": "12630 Norene Circles Suite 054",
"address2": "North Brendonville, HI 27235",
"postal_code": "46148-2691",
"city": "Hessel, King and Hermiston",
"clinic_name": "New Johannaborough",
"clinic_location": "223 Koch Flats\nMcGlynnville, PA 58283",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 3,
"name": "Clinician"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user data",
"code": "USERS:GET:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:GET:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create new user account
requires authentication
Predefined permissions:
user.view- access to view users' data (GET /user/{id} endpoint)user.update- access to update users' data (PUT /user/{id} and POST /user/{id}/phone endpoints)user.passwordChange- access to change users' passwords (POST /user/{id}/password endpoint)user.devices- access to list of users' devices (GET /user/{id}/devices endpoint)user.tickets.view- access to listing and viewing ticketsuser.tickets.update- access to updating tickets (marking messages as read)user.tickets.send- access to sending messages in ticketsuser.tickets.close- access to closing ticketsuser.goals- access to view or manage users' goals
Example request:
curl --request POST \
"http://localhost:8000/api/user" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "mrn=MRN12345678"\
--form "name=Tom Smith"\
--form "email=test@example.com"\
--form "language=en"\
--form "address1=61935 Mills Spurs"\
--form "address2=Danielhaven, MI 27536"\
--form "postal_code=51939-0167"\
--form "city=West Trudie"\
--form "clinic_name=Aether"\
--form "clinic_location=61935 Mills Spurs"\
--form "mfa_enabled=1"\
--form "mfa_method=email"\
--form "clinicians[]=2"\
--form "notifications_timezone=Europe/Warsaw"\
--form "notifications_at=8:00"\
--form "role=Amputee"\
--form "image=@/tmp/phpLddIP7" const url = new URL(
"http://localhost:8000/api/user"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('mrn', 'MRN12345678');
body.append('name', 'Tom Smith');
body.append('email', 'test@example.com');
body.append('language', 'en');
body.append('address1', '61935 Mills Spurs');
body.append('address2', 'Danielhaven, MI 27536');
body.append('postal_code', '51939-0167');
body.append('city', 'West Trudie');
body.append('clinic_name', 'Aether');
body.append('clinic_location', '61935 Mills Spurs');
body.append('mfa_enabled', '1');
body.append('mfa_method', 'email');
body.append('clinicians[]', '2');
body.append('notifications_timezone', 'Europe/Warsaw');
body.append('notifications_at', '8:00');
body.append('role', 'Amputee');
body.append('image', document.querySelector('input[name="image"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 13,
"mrn": "K8IRNNOX1768236462",
"name": "Brenda Gusikowski",
"email": "1768236462rebeka.jacobson@example.net",
"language": "en",
"phone": "+1-501-826-4732",
"phone_country": "NA",
"phone_verified_at": null,
"address1": "235 Predovic Inlet Apt. 323",
"address2": "South Eduardo, WV 22507",
"postal_code": "49671-7558",
"city": "Cole PLC",
"clinic_name": "North Karineville",
"clinic_location": "3827 Enrico Squares Suite 171\nBradtkefort, AR 87343",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z",
"invitation_status": null,
"acadle_invitation_status": null,
"roles": [
{
"id": 5,
"name": "Amputee"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create user with given role",
"code": "USERS:CREATE:INSUFFICIENT_PERMISSION"
}
Example response (403, E-mail in use (in another region)):
{
"message": "E-mail address already in use (in another region)",
"code": "USERS:CREATE:EMAIL_IN_USE"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update user account
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "mrn=MRN12345678"\
--form "name=Tom Smith"\
--form "email=test@example.com"\
--form "language=en"\
--form "address1=5929 Kelly Way Apt. 990"\
--form "address2=North Kristian, IA 30735"\
--form "postal_code=34294-7919"\
--form "city=West Hulda"\
--form "clinic_name=Aether"\
--form "clinic_location=5929 Kelly Way Apt. 990"\
--form "image_delete=1"\
--form "mfa_enabled=1"\
--form "mfa_method=email"\
--form "active=1"\
--form "clinicians[]=2"\
--form "notifications_timezone=Europe/Warsaw"\
--form "notifications_at=8:00"\
--form "role=Amputee"\
--form "image=@/tmp/phpHdzkYi" const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('mrn', 'MRN12345678');
body.append('name', 'Tom Smith');
body.append('email', 'test@example.com');
body.append('language', 'en');
body.append('address1', '5929 Kelly Way Apt. 990');
body.append('address2', 'North Kristian, IA 30735');
body.append('postal_code', '34294-7919');
body.append('city', 'West Hulda');
body.append('clinic_name', 'Aether');
body.append('clinic_location', '5929 Kelly Way Apt. 990');
body.append('image_delete', '1');
body.append('mfa_enabled', '1');
body.append('mfa_method', 'email');
body.append('active', '1');
body.append('clinicians[]', '2');
body.append('notifications_timezone', 'Europe/Warsaw');
body.append('notifications_at', '8:00');
body.append('role', 'Amputee');
body.append('image', document.querySelector('input[name="image"]').files[0]);
fetch(url, {
method: "PUT",
headers,
body,
}).then(response => response.json());Example response (202):
{
"id": 14,
"mrn": "WNVS7KAO1768236462",
"name": "Magdalena Runolfsson",
"email": "1768236462norwood.turner@example.net",
"language": "en",
"phone": "+1-478-496-3202",
"phone_country": "MX",
"phone_verified_at": null,
"address1": "76441 Koepp Trace",
"address2": "Autumnbury, MT 51436",
"postal_code": "47981-9649",
"city": "Schneider Inc",
"clinic_name": "North Mayraview",
"clinic_location": "619 Ayana Turnpike\nTurcotteborough, ID 76067-5083",
"image": null,
"mfa_enabled": 0,
"mfa_method": null,
"mfa_verified_to": null,
"location_id": null,
"created_by": null,
"active": 1,
"notifications_timezone": null,
"notifications_at": null,
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z",
"invitation_status": "accepted",
"acadle_invitation_status": null,
"roles": [
{
"id": 2,
"name": "ClinicAdmin"
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (403, Insufficient permission to assign role):
{
"message": "Insufficient permission to assign this role as ClinicAdmin",
"code": "USERS:UPDATE:INSUFFICIENT_PERMISSION_ASSIGN_ROLE"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:UPDATE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update user phone number
requires authentication
Phone number has to be verified after update.
Call /api/mfa/phone/verify with user-filled code after performing this operation.
If value is "0" phone number will be removed without any verification.
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/phone" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"phone\": \"+1 (208) 892-0242\",
\"phone_country\": \"US\"
}"
const url = new URL(
"http://localhost:8000/api/user/1/phone"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone": "+1 (208) 892-0242",
"phone_country": "US"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, Phone number removed):
{
"message": "Phone number removed",
"code": "USERS:SET_PHONE:REMOVED"
}
Example response (200, Phone number updated):
{
"message": "Verification code sent. Call /api/mfa/phone/verify to verify phone number.",
"code": "USERS:SET_PHONE:UPDATED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:SET_PHONE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:SET_PHONE:USER_NOT_FOUND"
}
Example response (500, Code send failed):
{
"message": "Verification code sending failed",
"code": "USERS:SET_PHONE:SEND_FAILED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete user account
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/user/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "User deleted",
"code": "USERS:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete user",
"code": "USERS:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, User has existing patients or chat rooms):
{
"message": "Cannot delete: user has existing patients or chat rooms (patients: 1, chat rooms: 0)",
"code": "USERS:DELETE:HAS_PATIENTS"
}
Example response (403, User has existing devices):
{
"message": "Cannot delete: user has existing devices (as patient: 1, as clinician: 0)",
"code": "USERS:DELETE:HAS_DEVICES"
}
Example response (403, User has open P2P sessions):
{
"message": "Cannot delete: user has open P2P sessions (as patient: 0, as clinician: 1)",
"code": "USERS:DELETE:HAS_P2P_SESSIONS"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DELETE:USER_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error: user not deleted",
"code": "USERS:DELETE:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Change other user password
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/password" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"password\": \"ut\"
}"
const url = new URL(
"http://localhost:8000/api/user/1/password"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"password": "ut"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "User password changed",
"code": "USERS:PASSWORD_CHANGE:CHANGED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to change user password",
"code": "USERS:PASSWORD_CHANGE:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:PASSWORD_CHANGE:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user devices list
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/devices" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/devices"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 3,
"serial": "177faf2f-e575-3fad-b453-ff0f9744dcba",
"bluetooth_id": "f147c749-2c9a-31c2-b9bf-a3a96739553e",
"company_id": null,
"model_id": 1,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z",
"model": {
"id": 1,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "left",
"active": 1,
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z"
}
},
{
"id": 4,
"serial": "f878e339-9e04-31d1-a8f2-a5b683b6f067",
"bluetooth_id": "6fbf8a6d-0fa5-34fb-8b57-54bff198696b",
"company_id": null,
"model_id": 2,
"amputee_id": null,
"clinician_id": null,
"firmware_version_id": null,
"pcb_version_id": null,
"reverse_magnets": 0,
"is_electrode": 0,
"active": 1,
"last_activity_at": "0000-00-00 00:00:00",
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z",
"model": {
"id": 2,
"name": "Zeus hand v1",
"type": "leg",
"orientation": "right",
"active": 1,
"created_at": "2026-01-12T16:47:42.000000Z",
"updated_at": "2026-01-12T16:47:42.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to view user devices",
"code": "USERS:DEVICES:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DEVICES:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Attach patient to clinician
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/attach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"email\": \"name@domain.com\"
}"
const url = new URL(
"http://localhost:8000/api/user/attach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"email": "name@domain.com"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"message": "Patient attached",
"code": "USERS:ATTACH:ATTACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to attach patients",
"code": "USERS:ATTACH:INSUFFICIENT_PERMISSION"
}
Example response (403, Patient is already assigned to another clinician):
{
"message": "Patient is already assigned to another clinician",
"code": "USERS:ATTACH:ALREADY_ASSIGNED"
}
Example response (403, User reached the temporary limit of attached devices):
{
"message": "Reached the limit of assigned devices",
"code": "USERS:ATTACH:LIMIT_REACHED"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:ATTACH:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Detach patient from clinician
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/user/1/detach" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/detach"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Patient detached",
"code": "USERS:DETACH:DETACHED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to detach patient",
"code": "USERS:DETACH:INSUFFICIENT_PERMISSION"
}
Example response (403, Cannot detach last clinician):
{
"message": "Cannot detach patient's last clinician",
"code": "USERS:DETACH:CANNOT_DETACH_LAST_CLINICIAN"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:DETACH:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Admin access to MFA codes
requires authentication
Requires admin.mfa_access permission.
Example request:
curl --request GET \
--get "http://localhost:8000/api/user/1/mfa-codes" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/user/1/mfa-codes"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200, OK):
[
{
"id": 1,
"user_id": 1,
"code": "123456",
"channel": "email",
"expires": "2025-05-09 12:00:00"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access MFA codes",
"code": "USERS:ADMIN_MFA_ACCESS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:ADMIN_MFA_ACCESS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get user mobile consents
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/consents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/consents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"user_id": 1,
"name": "facere",
"value": "laborum",
"created_at": "2018-04-07T21:42:43.000000Z",
"updated_at": "1977-12-16T09:02:53.000000Z"
},
{
"id": 2,
"user_id": 1,
"name": "delectus",
"value": "nam",
"created_at": "1990-09-14T02:01:17.000000Z",
"updated_at": "1974-04-11T10:13:08.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use mobile consents",
"code": "USERS:GET_MOBILE_CONSENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Set user mobile consent
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/consents" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"Push notifications\",
\"value\": 1
}"
const url = new URL(
"http://localhost:8000/api/consents"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "Push notifications",
"value": 1
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
[
{
"id": 3,
"user_id": 1,
"name": "voluptatem",
"value": "ut",
"created_at": "1988-11-11T12:40:22.000000Z",
"updated_at": "2006-09-15T16:19:34.000000Z"
},
{
"id": 4,
"user_id": 1,
"name": "impedit",
"value": "id",
"created_at": "2016-06-30T00:45:18.000000Z",
"updated_at": "1971-01-04T11:30:41.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to use mobile consents",
"code": "USERS:SET_MOBILE_CONSENTS:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Clear user notifications
requires authentication
Clearing notifications allow to receive another notification on same day. This endpoint deletes notifications of type:
- daily activity reminders
- goals daily summary
This endpoint is intended for testing use only.Example request:
curl --request DELETE \
"http://localhost:8000/api/notifications/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/notifications/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"messages": "1 notifications deleted",
"code": "USERS:CLEAR_NOTIFICATIONS:CLEARED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update user data",
"code": "USERS:CLEAR_NOTIFICATIONS:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "USERS:CLEAR_NOTIFICATIONS:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Versions
API endpoints for versions management
Get software versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/software" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/software"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"name": "3.92.12",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
},
{
"id": 2,
"name": "9.18.44",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "SOFTWARE_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create software version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/software" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\"
}"
const url = new URL(
"http://localhost:8000/api/versions/software"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 3,
"name": "9.66.8",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "SOFTWARE_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete software version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/software/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/software/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "SOFTWARE_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "SOFTWARE_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "SOFTWARE_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "SOFTWARE_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get firmware versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/firmware" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 2,
"name": "1.90.63",
"file_firmware": "/tmp/faker4Y7Qtl",
"file_firmware_v2": "/tmp/fakerrUsHYJ",
"file_firmware_v3": "/tmp/faker65kLnE",
"file_firmware_v4": "/tmp/fakersy9d46",
"file_firmware_v5": "/tmp/faker2Q8mhm",
"file_firmware_new_pcb": "/tmp/fakerT2KyDZ",
"file_bootloader": "/tmp/fakercmEa69",
"file_bootloader_v2": "/tmp/fakerL0l0gS",
"file_bootloader_v3": "/tmp/faker1QJSnu",
"file_bootloader_v4": "/tmp/fakerrtrwik",
"changelog": "Repellat voluptatem aliquid voluptates voluptas officiis asperiores totam. Non provident veniam ipsum maxime alias culpa perferendis. Natus ut facere voluptatem vero.",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
},
{
"id": 3,
"name": "9.77.5",
"file_firmware": "/tmp/fakergww1MR",
"file_firmware_v2": "/tmp/fakerm77hbz",
"file_firmware_v3": "/tmp/fakerXW0H4e",
"file_firmware_v4": "/tmp/fakerVng02Q",
"file_firmware_v5": "/tmp/fakerAmQRL7",
"file_firmware_new_pcb": "/tmp/fakerMBYo7l",
"file_bootloader": "/tmp/fakerEi8zNW",
"file_bootloader_v2": "/tmp/fakerLmoeSo",
"file_bootloader_v3": "/tmp/fakerdZrKMl",
"file_bootloader_v4": "/tmp/fakerAf0NRT",
"changelog": "Assumenda est ducimus repudiandae quae possimus doloremque pariatur inventore. Quo ea dolor voluptatem rerum.",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "FIRMWARE_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create firmware version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/firmware" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=1.0"\
--form "models[]=1"\
--form "changelog[][language]=en"\
--form "changelog[][changelog]=Fixed bug with the connection"\
--form "file_firmware=@/tmp/phphHCdXT" \
--form "file_firmware_v2=@/tmp/phpJKPbi2" \
--form "file_firmware_v3=@/tmp/phpiVX8rb" \
--form "file_firmware_v4=@/tmp/phpT4VuTw" \
--form "file_firmware_v5=@/tmp/phpLbliEw" \
--form "file_firmware_new_pcb=@/tmp/phpGN51OK" \
--form "file_bootloader=@/tmp/phpQo1id2" \
--form "file_bootloader_v2=@/tmp/phpKTJQoT" \
--form "file_bootloader_v3=@/tmp/phpH4XAjQ" \
--form "file_bootloader_v4=@/tmp/phpff35zT" const url = new URL(
"http://localhost:8000/api/versions/firmware"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', '1.0');
body.append('models[]', '1');
body.append('changelog[][language]', 'en');
body.append('changelog[][changelog]', 'Fixed bug with the connection');
body.append('file_firmware', document.querySelector('input[name="file_firmware"]').files[0]);
body.append('file_firmware_v2', document.querySelector('input[name="file_firmware_v2"]').files[0]);
body.append('file_firmware_v3', document.querySelector('input[name="file_firmware_v3"]').files[0]);
body.append('file_firmware_v4', document.querySelector('input[name="file_firmware_v4"]').files[0]);
body.append('file_firmware_v5', document.querySelector('input[name="file_firmware_v5"]').files[0]);
body.append('file_firmware_new_pcb', document.querySelector('input[name="file_firmware_new_pcb"]').files[0]);
body.append('file_bootloader', document.querySelector('input[name="file_bootloader"]').files[0]);
body.append('file_bootloader_v2', document.querySelector('input[name="file_bootloader_v2"]').files[0]);
body.append('file_bootloader_v3', document.querySelector('input[name="file_bootloader_v3"]').files[0]);
body.append('file_bootloader_v4', document.querySelector('input[name="file_bootloader_v4"]').files[0]);
fetch(url, {
method: "POST",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "4.91.77",
"file_firmware": "/tmp/fakerU2l5yI",
"file_firmware_v2": "/tmp/fakerhExnH2",
"file_firmware_v3": "/tmp/fakerQKDFMu",
"file_firmware_v4": "/tmp/fakerjP8lRf",
"file_firmware_v5": "/tmp/fakeru0KdAV",
"file_firmware_new_pcb": "/tmp/fakerKQHDay",
"file_bootloader": "/tmp/fakerj1eV24",
"file_bootloader_v2": "/tmp/fakerNySNun",
"file_bootloader_v3": "/tmp/fakeru86KY0",
"file_bootloader_v4": "/tmp/fakerVGLPIn",
"changelog": "Deserunt ut consequatur vel. Et accusamus modi mollitia neque sint quod. Non nisi eius incidunt voluptatibus sequi commodi facilis. Officiis dicta ut accusantium quis in.",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "FIRMWARE_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update firmware version
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/firmware/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: multipart/form-data" \
--header "Accept: application/json" \
--form "name=1.0"\
--form "models[]=1"\
--form "file_firmware_delete=1"\
--form "file_firmware_v2_delete=1"\
--form "file_firmware_v3_delete=1"\
--form "file_firmware_v4_delete=1"\
--form "file_firmware_v5_delete=1"\
--form "file_firmware_new_pcb_delete=1"\
--form "file_bootloader_delete=1"\
--form "file_bootloader_v2_delete=1"\
--form "file_bootloader_v3_delete=1"\
--form "file_bootloader_v4_delete=1"\
--form "changelog[][language]=en"\
--form "changelog[][changelog]=Fixed bug with the connection"\
--form "file_firmware=@/tmp/phprgYpM1" \
--form "file_firmware_v2=@/tmp/phphYUBXP" \
--form "file_firmware_v3=@/tmp/phpmBS4CI" \
--form "file_firmware_v4=@/tmp/phpfB9huT" \
--form "file_firmware_v5=@/tmp/phpctcjPw" \
--form "file_firmware_new_pcb=@/tmp/phpxompiC" \
--form "file_bootloader=@/tmp/phpfUAfS9" \
--form "file_bootloader_v2=@/tmp/phpZfoLaa" \
--form "file_bootloader_v3=@/tmp/phpjR6BRp" \
--form "file_bootloader_v4=@/tmp/phpPeEFgf" const url = new URL(
"http://localhost:8000/api/versions/firmware/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "multipart/form-data",
"Accept": "application/json",
};
const body = new FormData();
body.append('name', '1.0');
body.append('models[]', '1');
body.append('file_firmware_delete', '1');
body.append('file_firmware_v2_delete', '1');
body.append('file_firmware_v3_delete', '1');
body.append('file_firmware_v4_delete', '1');
body.append('file_firmware_v5_delete', '1');
body.append('file_firmware_new_pcb_delete', '1');
body.append('file_bootloader_delete', '1');
body.append('file_bootloader_v2_delete', '1');
body.append('file_bootloader_v3_delete', '1');
body.append('file_bootloader_v4_delete', '1');
body.append('changelog[][language]', 'en');
body.append('changelog[][changelog]', 'Fixed bug with the connection');
body.append('file_firmware', document.querySelector('input[name="file_firmware"]').files[0]);
body.append('file_firmware_v2', document.querySelector('input[name="file_firmware_v2"]').files[0]);
body.append('file_firmware_v3', document.querySelector('input[name="file_firmware_v3"]').files[0]);
body.append('file_firmware_v4', document.querySelector('input[name="file_firmware_v4"]').files[0]);
body.append('file_firmware_v5', document.querySelector('input[name="file_firmware_v5"]').files[0]);
body.append('file_firmware_new_pcb', document.querySelector('input[name="file_firmware_new_pcb"]').files[0]);
body.append('file_bootloader', document.querySelector('input[name="file_bootloader"]').files[0]);
body.append('file_bootloader_v2', document.querySelector('input[name="file_bootloader_v2"]').files[0]);
body.append('file_bootloader_v3', document.querySelector('input[name="file_bootloader_v3"]').files[0]);
body.append('file_bootloader_v4', document.querySelector('input[name="file_bootloader_v4"]').files[0]);
fetch(url, {
method: "PUT",
headers,
body,
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "6.47.14",
"file_firmware": "/tmp/faker2BAr1A",
"file_firmware_v2": "/tmp/fakerm5eXsl",
"file_firmware_v3": "/tmp/fakerKJkOEv",
"file_firmware_v4": "/tmp/fakerRKWdNU",
"file_firmware_v5": "/tmp/fakerX4eJlX",
"file_firmware_new_pcb": "/tmp/fakerky2JeA",
"file_bootloader": "/tmp/fakerCnxtdn",
"file_bootloader_v2": "/tmp/fakerNpc4sl",
"file_bootloader_v3": "/tmp/fakeraQCg0p",
"file_bootloader_v4": "/tmp/faker9uQHod",
"changelog": "Quis voluptatibus maxime est saepe. Deserunt commodi aut quo ducimus numquam illo dicta. Perspiciatis quo quos itaque debitis eius aut nemo.",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions",
"code": "FIRMWARE_VERSION:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "FIRMWARE_VERSION:UPDATE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete firmware version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/firmware/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/firmware/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "FIRMWARE_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "FIRMWARE_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "FIRMWARE_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (403, Version in use (device)):
{
"message": "Cannot delete: version is assigned to devices (1)",
"code": "FIRMWARE_VERSION:DELETE:VERSION_IN_USE_DEVICE"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "FIRMWARE_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get PCB versions
requires authentication
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/pcb" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/pcb"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 2,
"name": "7.60.86",
"hardware_id": "",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
},
{
"id": 3,
"name": "5.10.60",
"hardware_id": "",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions",
"code": "PCB_VERSION:LIST:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create PCB version
requires authentication
Example request:
curl --request POST \
"http://localhost:8000/api/versions/pcb" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\",
\"models\": [
1
],
\"hardware_id\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/versions/pcb"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0",
"models": [
1
],
"hardware_id": "1"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 4,
"name": "6.86.46",
"hardware_id": "",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to create versions",
"code": "PCB_VERSION:CREATE:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update PCB version
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/pcb/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"name\": \"1.0\",
\"models\": [
1
],
\"hardware_id\": \"1\"
}"
const url = new URL(
"http://localhost:8000/api/versions/pcb/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"name": "1.0",
"models": [
1
],
"hardware_id": "1"
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (201):
{
"id": 5,
"name": "8.92.91",
"hardware_id": "",
"created_at": "2026-01-12T16:48:03.000000Z",
"updated_at": "2026-01-12T16:48:03.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions",
"code": "PCB_VERSION:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "PCB_VERSION:UPDATE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete PCB version
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/pcb/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/pcb/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Version deleted",
"code": "PCB_VERSION:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions",
"code": "PCB_VERSION:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (403, Version in use (compatibility)):
{
"message": "Cannot delete: version is used in compatibility entries (1)",
"code": "PCB_VERSION:DELETE:VERSION_IN_USE_COMPATIBILITY"
}
Example response (403, Version in use (device)):
{
"message": "Cannot delete: version is assigned to devices (1)",
"code": "PCB_VERSION:DELETE:VERSION_IN_USE_DEVICE"
}
Example response (404, Version not found):
{
"message": "Version not found",
"code": "PCB_VERSION:DELETE:VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.List compatibilities
requires authentication
Most typical scenarios to use compatibility matrix:
- full matrix (no filters) - for admin panel displaying,
- filtered by all of the versions (software, firmware, PCB and device model) - for checking specific scenario compatibility and supported features.
Example request:
curl --request GET \
--get "http://localhost:8000/api/versions/compatibility?model=1&software=1.2&firmware=1.5&pcb=1.0&summary=" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/compatibility"
);
const params = {
"model": "1",
"software": "1.2",
"firmware": "1.5",
"pcb": "1.0",
"summary": "0",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"paginator": {
"total": 2,
"count": 2,
"perpage": 20,
"current_page": 1,
"last_page": 1
},
"items": [
{
"id": 1,
"device_model_id": 10,
"software_version_id": 4,
"firmware_version_id": 14,
"pcb_version_id": 6,
"is_fully_compatible": 1,
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"features": [
{
"id": 1,
"compatibility_id": 1,
"feature_id": 5,
"is_compatible": 1,
"reason": "Laboriosam facere aliquid voluptatem blanditiis suscipit numquam asperiores. Architecto ullam minus eveniet vel ab sunt sed. Quibusdam occaecati laudantium commodi enim non voluptas qui.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"feature": {
"id": 5,
"name": "navy",
"slug": "nisi-asperiores-tempore-aut-qui-officiis",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
},
{
"id": 2,
"compatibility_id": 1,
"feature_id": 7,
"is_compatible": 1,
"reason": "Vitae et voluptatem sit corporis blanditiis aspernatur excepturi. Qui velit labore dicta id. Fugiat eius et in temporibus.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"feature": {
"id": 7,
"name": "navy",
"slug": "dolorum-magnam-et-ut-quibusdam",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
},
{
"id": 3,
"compatibility_id": 1,
"feature_id": 9,
"is_compatible": 1,
"reason": "Vel ratione veniam occaecati iusto beatae. Voluptates sit fugit veniam voluptatem reprehenderit tempora ratione. Qui ipsam aut iste a et laborum ex quod.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"feature": {
"id": 9,
"name": "black",
"slug": "rem-ut-tempore-sequi-ea-ut-ex-harum",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
}
]
},
{
"id": 5,
"device_model_id": 14,
"software_version_id": 8,
"firmware_version_id": 18,
"pcb_version_id": 10,
"is_fully_compatible": 1,
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"features": [
{
"id": 4,
"compatibility_id": 5,
"feature_id": 10,
"is_compatible": 1,
"reason": "Unde eius sed quaerat sit vel et. Illum voluptatem aut laborum autem eligendi non facere. Nemo quae in quis voluptatem voluptas sit. Qui libero consequatur esse itaque.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"feature": {
"id": 10,
"name": "green",
"slug": "alias-aliquam-occaecati-quis-voluptatem-tenetur",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
},
{
"id": 5,
"compatibility_id": 5,
"feature_id": 12,
"is_compatible": 0,
"reason": "Qui illum qui id corrupti veritatis. Deserunt nihil iste repellat quibusdam. Ducimus quod iste rerum et quidem non saepe.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"feature": {
"id": 12,
"name": "fuchsia",
"slug": "perspiciatis-sunt-porro-exercitationem-accusamus-suscipit-dignissimos-reprehenderit",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
},
{
"id": 6,
"compatibility_id": 5,
"feature_id": 14,
"is_compatible": 1,
"reason": "Aut porro adipisci itaque perferendis hic nostrum repellat qui. Ad ipsum fugit natus id. Non officia soluta eius.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"feature": {
"id": 14,
"name": "navy",
"slug": "nisi-consequatur-et-neque-a-in-commodi-maiores",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
}
]
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to list versions compatibilities",
"code": "COMPATIBILITY:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, Device model not found):
{
"message": "Device model not found",
"code": "COMPATIBILITY:LIST:DEVICE_MODEL_NOT_FOUND"
}
Example response (404, Software version not found):
{
"message": "Software version not found",
"code": "COMPATIBILITY:LIST:SOFTWARE_VERSION_NOT_FOUND"
}
Example response (404, Firmware version not found):
{
"message": "Firmware version not found",
"code": "COMPATIBILITY:LIST:FIRMWARE_VERSION_NOT_FOUND"
}
Example response (404, PCB version not found):
{
"message": "PCB version not found",
"code": "COMPATIBILITY:LIST:PCB_VERSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Add compatibility
requires authentication
Adds or updates compatibility matrix with assigned features. You can specify many versions for each list.
Example request:
curl --request POST \
"http://localhost:8000/api/versions/compatibility" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"device_models\": [
1
],
\"software_versions\": [
1
],
\"firmware_versions\": [
1
],
\"pcb_versions\": [
1
],
\"is_fully_compatible\": true,
\"features\": [
{
\"feature_id\": 1,
\"compatible\": true,
\"reason\": \"Firmware does not support...\"
}
]
}"
const url = new URL(
"http://localhost:8000/api/versions/compatibility"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"device_models": [
1
],
"software_versions": [
1
],
"firmware_versions": [
1
],
"pcb_versions": [
1
],
"is_fully_compatible": true,
"features": [
{
"feature_id": 1,
"compatible": true,
"reason": "Firmware does not support..."
}
]
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202, OK):
{
"added": 1,
"updated": 0,
"not_changed": 0
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to add versions compatibility",
"code": "COMPATIBILITY:ADD:INSUFFICIENT_PERMISSION"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update compatibility
requires authentication
Example request:
curl --request PUT \
"http://localhost:8000/api/versions/compatibility/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"device_model_id\": 9,
\"software_version_id\": 9,
\"firmware_version_id\": 19,
\"pcb_version_id\": 6,
\"is_fully_compatible\": true,
\"features\": [
{
\"id\": 1,
\"feature_id\": 1,
\"compatible\": true,
\"reason\": \"Firmware does not support...\",
\"delete\": true
}
]
}"
const url = new URL(
"http://localhost:8000/api/versions/compatibility/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"device_model_id": 9,
"software_version_id": 9,
"firmware_version_id": 19,
"pcb_version_id": 6,
"is_fully_compatible": true,
"features": [
{
"id": 1,
"feature_id": 1,
"compatible": true,
"reason": "Firmware does not support...",
"delete": true
}
]
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (202):
{
"id": 9,
"device_model_id": 18,
"software_version_id": 12,
"firmware_version_id": 22,
"pcb_version_id": 14,
"is_fully_compatible": 0,
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"features": [
{
"id": 7,
"compatibility_id": 9,
"feature_id": 15,
"is_compatible": 0,
"reason": "Odio magni explicabo sequi ipsum. Iste sed quidem et vel accusamus. Quia aliquid officia repudiandae minima pariatur eveniet. Repudiandae magni est id itaque tenetur blanditiis.",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z",
"feature": {
"id": 15,
"name": "fuchsia",
"slug": "mollitia-quam-dolor-sint-eum-excepturi-autem-eum",
"created_at": "2026-01-12T16:48:04.000000Z",
"updated_at": "2026-01-12T16:48:04.000000Z"
}
}
]
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to update versions compatibility",
"code": "COMPATIBILITY:UPDATE:INSUFFICIENT_PERMISSION"
}
Example response (404, Versions Compatibility not found):
{
"message": "Versions compatibility not found",
"code": "COMPATIBILITY:UPDATE:COMPATIBILITY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete compatibility
requires authentication
Example request:
curl --request DELETE \
"http://localhost:8000/api/versions/compatibility/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/versions/compatibility/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Versions compatibility deleted",
"code": "COMPATIBILITY:DELETE:DELETED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to delete versions compatibility",
"code": "COMPATIBILITY:DELETE:INSUFFICIENT_PERMISSION"
}
Example response (404, Versions compatibility not found):
{
"message": "Versions compatibility not found",
"code": "COMPATIBILITY:DELETE:COMPATIBILITY_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Video sessions
API endpoints for managing video sessions
List video sessions
requires authentication
Returns list of open video sessions. For most cases there should be exactly one entry (open/active session) or exactly zero entries (empty array, no open sessions).
Example request:
curl --request GET \
--get "http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
[
{
"id": 1,
"moderator_id": 122,
"guest_id": 123,
"jwt_moderator": "61de7ba6838bde2a7d9a58e0c45434f7174ee4df8dce4493378d5688255cc22d",
"jwt_guest": "4fc82b7956e90b122a110cd725f8b27bc4c8c51f4e3f4caa029bfef01ddd6e82",
"room_name": "room_af2f3eed47c7bdc5d2490f1388f680b0",
"expires": 1768237372,
"status": "open",
"created_at": "2026-01-12T16:47:53.000000Z",
"updated_at": "2026-01-12T16:47:53.000000Z"
},
{
"id": 2,
"moderator_id": 126,
"guest_id": 127,
"jwt_moderator": "4d8e7438a0573b2895ab0f49fe82596b564e8ba985bc8be657ac764bbd0d7895",
"jwt_guest": "2901529c22b10096407c167f4107565aee24228b79071ad5063825c860f6c93f",
"room_name": "room_5a9e64b279abdd289630c1d087e301c3",
"expires": 1768237373,
"status": "open",
"created_at": "2026-01-12T16:47:53.000000Z",
"updated_at": "2026-01-12T16:47:53.000000Z"
}
]
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to access video session",
"code": "VIDEO_SESSIONS:LIST:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "VIDEO_SESSIONS:LIST:USER_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Initialize video session
requires authentication
Creates JWT (JSON Web Token) and room name for Jitsi session. Logged-in user is a moderator of the session. JWT lifetime is 15 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (201):
{
"id": 3,
"moderator_id": 130,
"guest_id": 131,
"jwt_moderator": "72ddd2cc4594aa1134b8eaa9da845a31e70ad31ef81b0968f6d58b310c9a9926",
"jwt_guest": "16149626b0365e04a9a52d02e17ca8aeb63680b9f5ee2ba334b0b1a38a833cfe",
"room_name": "room_5a9e64b279abdd289630c1d087e301c3",
"expires": 1768237373,
"status": "open",
"created_at": "2026-01-12T16:47:53.000000Z",
"updated_at": "2026-01-12T16:47:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to initialize video session",
"code": "VIDEO_SESSIONS:INIT:INSUFFICIENT_PERMISSION"
}
Example response (404, User not found):
{
"message": "User not found",
"code": "VIDEO_SESSIONS:INIT:USER_NOT_FOUND"
}
Example response (500, Server error):
{
"message": "Server error",
"code": "VIDEO_SESSIONS:INIT:SERVER_ERROR"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Refresh video session
requires authentication
Refreshes video session JWT tokens to extend session lifetime.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/1/refresh" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1/refresh"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "POST",
headers,
}).then(response => response.json());Example response (202):
{
"id": 4,
"moderator_id": 134,
"guest_id": 135,
"jwt_moderator": "f056b8cae37dc3ed60ee52da9a2951f8a6c531fe3222a3ad6835dbdd905c7d2a",
"jwt_guest": "f056b8cae37dc3ed60ee52da9a2951f8a6c531fe3222a3ad6835dbdd905c7d2a",
"room_name": "room_5a9e64b279abdd289630c1d087e301c3",
"expires": 1768237373,
"status": "open",
"created_at": "2026-01-12T16:47:53.000000Z",
"updated_at": "2026-01-12T16:47:53.000000Z"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to refresh video session",
"code": "VIDEO_SESSIONS:REFRESH:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "Video session not found",
"code": "VIDEO_SESSIONS:REFRESH:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Close video session
requires authentication
Marks video session (database entry) as closed. Does not close session on Jitsi side.
Example request:
curl --request DELETE \
"http://localhost:8000/api/sessions/video/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json"const url = new URL(
"http://localhost:8000/api/sessions/video/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
fetch(url, {
method: "DELETE",
headers,
}).then(response => response.json());Example response (202, OK):
{
"message": "Video session closed",
"code": "VIDEO_SESSIONS:CLOSE:CLOSED"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to close video session",
"code": "VIDEO_SESSIONS:CLOSE:INSUFFICIENT_PERMISSION"
}
Example response (404, Session not found):
{
"message": "Video session not found",
"code": "VIDEO_SESSIONS:CLOSE:SESSION_NOT_FOUND"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Invite technical support
requires authentication
Sends notification to Slack channel. Link to meeting is valid for 10 minutes.
Example request:
curl --request POST \
"http://localhost:8000/api/sessions/video/invite-support/1" \
--header "Authorization: Bearer {ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--header "Accept: application/json" \
--data "{
\"room\": \"room_1081c785cf1464e4d6ebc3976561d490\",
\"description\": \"Grip switching is not working, please join.\"
}"
const url = new URL(
"http://localhost:8000/api/sessions/video/invite-support/1"
);
const headers = {
"Authorization": "Bearer {ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"room": "room_1081c785cf1464e4d6ebc3976561d490",
"description": "Grip switching is not working, please join."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200, OK):
{
"response": "success",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:SUCCESS"
}
Example response (403, Insufficient permission):
{
"message": "Insufficient permission to invite tech support",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:INSUFFICIENT_PERMISSION"
}
Example response (404, Device not found):
{
"message": "Device not found",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:DEVICE_NOT_FOUND"
}
Example response (500, Request failed):
{
"response": "invalid_payload",
"code": "VIDEO_SESSIONS:INVITE_TECH_SUPPORT:FAILED"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.