{"id":74,"date":"2018-07-04T07:30:38","date_gmt":"2018-07-04T07:30:38","guid":{"rendered":"https:\/\/dev.foxtrackr.com\/?page_id=74"},"modified":"2018-07-04T09:03:12","modified_gmt":"2018-07-04T09:03:12","slug":"main-dev-concepts","status":"publish","type":"page","link":"https:\/\/dev.foxtrackr.com\/?page_id=74","title":{"rendered":"Main dev concepts"},"content":{"rendered":"
The API access is restricted for the most of the end points and for using it you need to login and get a JWT token. This Token contains a list of ACL attached to the user account and a list of GROUPS attached to the user account. The following paragraphs will introduce these different concepts.<\/h6>\n

Right Management<\/h2>\n

The platform, for each of the endpoint access, requires to have a certain level of authorization. These authorization are bases on ACL. The ACL are cumulative: each of them gives you different rights. The API endpoint documentation is indicating what ACL you need to use it.<\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n
Role<\/strong><\/td>\nDescription<\/strong><\/td>\n<\/tr>\n
ROLE_PENDING_USER<\/td>\nNo authorization associated to this ROLE. It is given to any registered user before being activated. Used for self registration.<\/td>\n<\/tr>\n
ROLE_REGISTERED_USER<\/td>\nNo authorization associated to this ROLE. It is given to any registered user once it has been validated.<\/td>\n<\/tr>\n
ROLE_DEVICE_READ<\/td>\nThis authorization allows to request read operation on the devices associated to your account. This ACL allow to read Positions, Temperature, Batteries…<\/td>\n<\/tr>\n
ROLE_DEVICE_WRITE<\/td>\nThis authorization allows to request write operation on devices. Write operations are basically orders sent to the devices like Reboot, Reset, On request positioning…<\/td>\n<\/tr>\n
ROLE_DEVICE_CONFIG<\/td>\nThis authorization allows to request device configuration modification. This allows to change the positioning frequency, change the device behavior.<\/td>\n<\/tr>\n
ROLE_DEVICE_ADMIN<\/td>\nThis authorization allows to add, remove devices, attach device to a Sigfox account, a devicetype…<\/td>\n<\/tr>\n
ROLE_USER_ADMIN<\/td>\nThis authorization gives your account access to the User management APIs (Add, remove, update…) You can create new account with rights you already have.<\/td>\n<\/tr>\n
ROLE_GROUP_ADMIN<\/td>\nThis authorization gives your account access to the Group management APIs (Add, remove, update…) You can create new groups to manage your devices organization, manage alarm and push APIs.<\/td>\n<\/tr>\n
ROLE_DEVICE_ALERTING<\/td>\nThis authorization gives your account access to the Alarm management APIs. You can activate alarms and configure alarms report<\/td>\n<\/tr>\n
OTHERS<\/td>\nSome other ACL are used for internal functions.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

JWT \/ Tokens<\/h2>\n

JWTokens is created when you sign\/in for a limited duration. This Token is the key to access all the APIs requiring an authentication. You can fin larger documentation on JWTokens on wikipedia<\/a>.<\/p>\n

The JWT have the following format:<\/p>\n

Bearer eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJ0ZXN0X3VzZXIiLCJyb2xlcyI6WyJST0xFX0RFVklDRV9SRUFEIiwiUk9MRV9ERVZJQ0VfV1JJVEUiLCJST0xFX1JFR0lTVEVSRURfVVNFUiIsIlJPTEVfUEVORElOR19VU0VSIl0sImdyb3VwcyI6WyJmb3h0cmFja3JfdjIiLCJpdF9sYWJvIl0sImV4cCI6MTUzMDg2NDQ5OX0.EOuJnKLnqMsH2PgK9dcHZ7JQNypjni3rOCMjkMp86Kz9yFGo5cxV4xbcHmB-W9XzU_pmmQzh2Fxf6liH7-ClaQ<\/pre>\n
This Token has 3 different parts:<\/p>\n