Version {versionBranch = [0,0,1,1], versionTags = []}
Adhocracy3 has a basic user management built-in. In order for thentos to have minimal impact on the existing code base, it can be deployed as a reverse proxy and mimic the built-in user management rest api. This way, the frontend does not need to change at all to use the old features of the new user management system. The impact of new features to the frontend can be kept at a minimum.
What follows is the fully compatible adhocracy3 user management rest api. Any deviation should be considered an error and reported in a later version of this document.
All requests that are not handled by the endpoints listed below are handled as follows: We extract the Thentos Session Token (X-Thentos-Session) from the request headers and forward the request to the service, adding X-Thentos-User and X-Thentos-Groups with the appropriate data to the request headers. If the request does not include a valid session token, it is rejected. Responses from the service are returned unmodified.
The confirmation email contains a link to this end-point. The path contains a token can only be learned from receiving (or intercepting) the email.
Supported content types are:
application/jsonExample: application/json
{
"path": "/activate/MXe13lTh8Tr_UaqL6hcRIeGo"
}Headers: []
Supported content types are:
application/jsonSuccess
{
"status": "success",
"user_path": "somepath",
"user_token": "sometoken"
}Headers: []
Supported content types are:
text/plain;charset=utf-8empty
Headers: []
Supported content types are:
text/plain;charset=utf-8empty
Headers: []
Supported content types are:
text/plain;charset=utf-8empty
Headers: []
Supported content types are:
text/plain;charset=utf-8empty
Headers: []
Supported content types are:
text/plain;charset=utf-8empty
Headers: []
Supported content types are:
text/plain;charset=utf-8empty
Headers: []
No response body
Supported content types are:
application/jsonExample: application/json
{
"name": "alice",
"password": "secret"
}Headers: []
Supported content types are:
application/jsonSuccess
{
"status": "success",
"user_path": "somepath",
"user_token": "sometoken"
}Supported content types are:
application/jsonExample: application/json
{
"name": "alice",
"password": "secret"
}Headers: []
Supported content types are:
application/jsonSuccess
{
"status": "success",
"user_path": "somepath",
"user_token": "sometoken"
}Supported content types are:
application/jsonExample: application/json
{
"password": "secret",
"path": "/proposals/environment"
}Headers: []
Supported content types are:
application/jsonSuccess
{
"status": "success",
"user_path": "somepath",
"user_token": "sometoken"
}When the user-creation form is filled out with login name, email, and password, this end-point is used to post the form content and trigger the email confirmation procedure.
Supported content types are:
application/jsonExample: application/json
{
"content_type": "adhocracy_core.resources.principal.IUser",
"data": {
"adhocracy_core.sheets.principal.IPasswordAuthentication": {
"password": "secret"
},
"adhocracy_core.sheets.principal.IUserBasic": {
"name": "alice"
},
"adhocracy_core.sheets.principal.IUserExtended": {
"email": "alice@example.com"
}
}
}Headers: []
Supported content types are:
application/json{
"content_type": "adhocracy_core.resources.principal.IUser",
"path": "/proposals/environment",
"updated_resources": {
"changed_descendants": [],
"created": [],
"modified": [],
"removed": []
}
}{
"content_type": "adhocracy_core.resources.principal.IUser",
"path": "/proposals/environment",
"updated_resources": {
"changed_descendants": [],
"created": [],
"modified": [],
"removed": [
"/proposals/environment"
]
}
}