API Conventions
There are a few conventions we follow throughout the API.
Endpoints
The Mira APIs strive to adhere to the REST specification. Suppose there is a Widget resource, then:
GET /widgets/will send back a collection ofWidgets the user has access toPOST /widgets/will create a newWidgetGET /widgets/{id}/will fetch aWidgetwith an identifer equal toid.- If the object does not exist, or a user does not have read permissions on that particular Widget, the request will send back a
404error.
- If the object does not exist, or a user does not have read permissions on that particular Widget, the request will send back a
PUT /widgets/{id}/will update a particularWidget- provided the user has write permissions on that object.DELETE /widgets/{id}/will delete a particularWidget- provided the user has delete permissions on that object.
Additionally, there a few non-REST endpoints that are provided:
GET /widgets/count/will send back the number of Widgets the user has access to.POST /widgets/search/will perform a search of the Widgets for various parameters.POST /widgets/ids/will perform aGETof Widgets matching the providedidsin the body of the request.
Responses
Successful collection
{
"success": true,
"payload": [
{
"id": 0,
"name": "string",
"description": "string"
},
...
]
}All responses have a success field. Sucessful responses have this set to true, while errors will always have this set as false. Successful responses have a payload field. When a method is returning a collection this will be a list of items (e.g. GET /widgets/).
Successful Singular
{
"success": true,
"payload": {
"id": 0,
"name": "string",
"description": "string"
}
}But in the case of a single item (e.g. GET /widgets/2/) this will be an object.
Searches
Most resources have a search endpoint that allows users to list resources sorted by relevance to the specified search parameters. The body of the request may have the following fields specified
Body parameter
{
"tags": {},
"include_core": true,
"query": "string",
"is_plain": true,
"filters": {
"property1": [
null
],
"property2": [
null
]
},
"created_after": "2020-01-28T18:34:01Z",
"created_before": "2020-01-28T18:34:01Z",
"updated_after": "2020-01-28T18:34:01Z",
"updated_before": "2020-01-28T18:34:01Z",
"page": 0,
"per_page": 0
}| Name | In | Type | Required | Description |
|---|---|---|---|---|
| body | body | SearchRequest | true | none |
| » tags | body | object | false | Limit the results to the specified tags |
| » include_core | body | boolean | false | Whether or not to include core objects in the results |
| » query | body | string | false | A text query |
| » is_plain | body | boolean | false | Whether the query is in plain format or Postgresql ts_query format. Most users should disregard |
| » filters | body | object | false | A dictionary mapping a property name to a list of acceptable values for that property |
| » created_after | body | string(date-time) | false | Resource created after a certain datetime |
| » created_before | body | string(date-time) | false | Resource created before a certain datetime |
| » updated_after | body | string(date-time) | false | Resource updated after a certain datetime |
| » updated_before | body | string(date-time) | false | Resource updated before a certain datetime |
| » page | body | integer | false | Page number for pagination |
| » per_page | body | integer | false | Number of results per page |
Note that the properties that are acceptable for filtering will vary from resource to resouce. Each resource API will specify the queryable parameters.
Errors
Error response
{
"success": false,
"error": {
"code": 404,
"message": "Resource not found",
"type": "error"
}
}Errors also follow the same standard response, but instead of a payload field, they have an error object with three fields: code, message, and type.
Here are the errors that you might receive:
| Status | Meaning | Description |
|---|---|---|
| 400 | Bad Request | Request was malformed or not validated correctly |
| 401 | Unauthorized | Could not successful authenticate credentials |
| 403 | Forbidden | Authentication was sucessful, but you are not authorized to perform that action |
| 404 | Not Found | Resource not found, or not available to your user |
| 405 | Method Not Allowed | Method not allowed for that route |
| 500 | Internal Server Error | Something broke in an unexpected way |
| 501 | Not Implemented | This method/route is not yet implemented |
Generally, 4xx errors occur because of something the client (you) can resolve; 5xx errors are something that the server (us) must resolve.
Updated about 2 months ago