Managing Permitted Clients - Huddle/huddle-apis GitHub Wiki
Taken from OAuth 2.0 Framework
client
An application making protected resource requests on behalf of the resource owner and with its authorization. The term "client" does not imply any particular implementation characteristics (e.g., whether the application executes on a server, a desktop, or other devices).
Returns a list of clients; isPermitted indicates that the company allows the client to access data belonging to that company in Huddle. For users authorized as Huddle Administrator the response includes add, permit and delete links.
GET /people/companies/:id/clients HTTP/1.1
Accept: application/vnd.huddle.data+json
Authorization: OAuth2 frootymcnooty/vonbootycherooty
HTTP/1.1 200 OK
Content-Type: application/vnd.huddle.data+json
{
"links": [{
"rel": "self",
"href": "..."
},{
"rel": "add",
"href": "..."
},{
"rel": "permit",
"href": "..."
}],
"clients": [{
"links": [{
"rel": "self",
"href": "..."
},{
"rel": "delete",
"href": "..."
}],
"name": "Huddle for Mac",
"isPermitted": true,
"isPublic": true
}, {
"links": [{
"rel": "self",
"href": "..."
},{
"rel": "delete",
"href": "..."
}],
"name": "Huddle for Office",
"isPermitted": true,
"isPublic": true
}]
}GET /people/companies/:id/clients HTTP/1.1
Accept: application/vnd.huddle.data+xml
Authorization: OAuth2 frootymcnooty/vonbootycherooty
HTTP/1.1 200 OK
Content-Type: application/vnd.huddle.data+xml
<clients>
<links>
<link rel="self" href="..." />
<link rel="add" href="..." />
<link rel="permit" href="..." />
</links>
<client>
<links>
<link rel="self" href="..." />
<link rel="delete" href="..." />
</links>
<name>Huddle for Mac</name>
<isPermitted>true</isPermitted>
<isPublic>true</isPublic>
</client>
<client>
<links>
<link rel="self" href="..." />
<link rel="delete" href="..." />
</links>
<name>Huddle for Office</name>
<isPermitted>true</isPermitted>
<isPublic>true</isPublic>
</client>
</clients>| Status Code | Reason |
|---|---|
| 401 | Invalid authorization token |
| 403 | Not a Manager of Company or Huddle Administrator |
| 404 | Company or Client Not Found |
Get the clients permitted by a company to access data belonging to that company in Huddle.
GET /people/companies/:id/clients/permitted HTTP/1.1
Accept: application/vnd.huddle.data+json
Authorization: OAuth2 frootymcnooty/vonbootycherooty
HTTP/1.1 200 OK
Content-Type: application/vnd.huddle.data+json
{
"permittedClients": [{
"rel": "client",
"href": "..."
}, {
"rel": "client",
"href": "..."
}]
}GET /people/companies/:id/clients/permitted HTTP/1.1
Accept: application/vnd.huddle.data+xml
Authorization: OAuth2 frootymcnooty/vonbootycherooty
HTTP/1.1 200 OK
Content-Type: application/vnd.huddle.data+xml
<permittedClients>
<link rel="client" href="..." />
<link rel="client" href="..." />
</permittedClients>| Status Code | Reason |
|---|---|
| 401 | Invalid authorization token |
| 403 | Not a Manager of Company or Huddle Administrator |
| 404 | Company or Client Not Found |
Replaces the current permitted client list with the clients specified in the request. These will become the only clients permitted by a company to access data belonging to that company in Huddle.
PUT /people/companies/:id/clients/permitted HTTP/1.1
Content-Type: application/vnd.huddle.data+json
Authorization: OAuth2 frootymcnooty/vonbootycherooty
{
"permittedClients": [{
"rel": "client",
"href": "..."
}, {
"rel": "client",
"href": "..."
}]
}HTTP/1.1 204 OK
PUT /people/companies/:id/clients/permitted HTTP/1.1
Content-Type: application/vnd.huddle.data+xml
Authorization: OAuth2 frootymcnooty/vonbootycherooty
<permittedClients>
<link rel="client" href="..." />
<link rel="client" href="..." />
</permittedClients>HTTP/1.1 204 OK
| Status Code | Reason |
|---|---|
| 400 | Clients were not able to be permitted |
| 401 | Invalid authorization token |
| 403 | Not a Manager of Company or Huddle Administrator |
| 404 | Company or Client Not Found |
To use these APIs the client must be authorized as a Huddle Administrator.
Makes a client available to a company with IsPermitted set to the default value of false. Once a client is made available to a company, it can be permitted using the non-administration APIs. Only one client at a time can be made available with this request. To make multiple clients available to a company, this API must be called once for each client.
POST /people/companies/:id/clients HTTP/1.1
Content-Type: application/vnd.huddle.data+json
Authorization: OAuth2 frootymcnooty/vonbootycherooty
{
"rel": "client",
"href": "http://login.huddle.local/clients/:clientId"
}HTTP/1.1 200 OK
POST /people/companies/:id/clients HTTP/1.1
Content-Type: application/vnd.huddle.data+xml
Authorization: OAuth2 frootymcnooty/vonbootycherooty
<link rel="client" href="http://login.huddle.local/clients/:clientId" />HTTP/1.1 200 OK
| Status Code | Reason |
|---|---|
| 401 | Invalid authorization token |
| 403 | Not a Huddle Administrator |
| 404 | Company or Client Not Found |
Removes a client from the list of clients available to a company, deleting any existing permitted setting for that client.
DELETE /people/companies/:id/clients/:clientid HTTP/1.1
Content-Type: application/vnd.huddle.data+json
Authorization: OAuth2 frootymcnooty/vonbootycherooty
HTTP/1.1 200 OK
DELETE /people/companies/:id/clients/:clientid HTTP/1.1
Content-Type: application/vnd.huddle.data+xml
Authorization: OAuth2 frootymcnooty/vonbootycherooty
HTTP/1.1 200 OK
| Status Code | Reason |
|---|---|
| 401 | Invalid authorization token |
| 403 | Not a Huddle Administrator |
| 404 | Company or Client Not Found |
Makes a client available to all company with IsPermitted set to the default value of false. Once a client is made available to a company, it can be permitted using the non-administration APIs. Only one client at a time can be made available with this request. To make multiple clients available to a company, this API must be called once for each client.
A progress link is returned as both a Link header and within the body of the response. Details on monitoring progress can be found in the query progress section.
POST /people/bulk-process/clients HTTP/1.1
Content-Type: application/vnd.huddle.data+json
Authorization: OAuth2 frootymcnooty/vonbootycherooty
{
"add": {
"rel": "client",
"href": "..."
}
}
HTTP/1.1 201 Created
Content-Type: application/vnd.huddle.data+json
Link: <...>;rel="progress"
{
"link": {
"rel": "progress",
"href": "..."
},
}POST /people/bulk-process/clients HTTP/1.1
Content-Type: application/vnd.huddle.data+xml
Authorization: OAuth2 frootymcnooty/vonbootycherooty
<clients>
<add rel="client" href="..." />
</clients>
HTTP/1.1 201 Created
Content-Type: application/vnd.huddle.data+xml
Link: <...>;rel="progress"
<clients>
<link rel="progress" href="..." />
</clients>
| Status Code | Reason |
|---|---|
| 401 | Invalid authorization token |
| 403 | Not a Huddle Administrator |
| 404 | Client Not Found |
Permits a client for all companies, overwriting any existing permitted setting for a given company/client.
A progress link is returned as both a Link header and within the body of the response. Details on monitoring progress can be found in the query progress section.
POST /people/bulk-process/clients HTTP/1.1
Content-Type: application/vnd.huddle.data+json
Authorization: OAuth2 frootymcnooty/vonbootycherooty
{
"permit": {
"rel": "client",
"href": "..."
}
}
HTTP/1.1 201 Created
Content-Type: application/vnd.huddle.data+json
Link: <...>;rel="progress"
{
"link": {
"rel": "progress",
"href": "..."
},
}POST /people/bulk-process/clients HTTP/1.1
Content-Type: application/vnd.huddle.data+xml
Authorization: OAuth2 frootymcnooty/vonbootycherooty
<clients>
<permit rel="client" href="..." />
</clients>
HTTP/1.1 201 Created
Content-Type: application/vnd.huddle.data+xml
Link: <...>;rel="progress"
<clients>
<link rel="progress" href="..." />
</clients>
| Status Code | Reason |
|---|---|
| 401 | Invalid authorization token |
| 403 | Not a Huddle Administrator |
| 404 | Client Not Found |
Removes a client from the list of clients available to all companies, deleting any existing permitted setting for a given company/client.
A progress link is returned as both a Link header and within the body of the response. Details on monitoring progress can be found in the query progress section.
POST /people/bulk-process/clients HTTP/1.1
Content-Type: application/vnd.huddle.data+json
Authorization: OAuth2 frootymcnooty/vonbootycherooty
{
"remove": {
"rel": "client",
"href": "..."
}
}
HTTP/1.1 201 Created
Content-Type: application/vnd.huddle.data+json
Link: <...>;rel="progress"
{
"link": {
"rel": "progress",
"href": "..."
},
}POST /people/bulk-process/clients HTTP/1.1
Content-Type: application/vnd.huddle.data+xml
Authorization: OAuth2 frootymcnooty/vonbootycherooty
<clients>
<remove rel="client" href="..." />
</clients>
HTTP/1.1 201 Created
Content-Type: application/vnd.huddle.data+xml
Link: <...>;rel="progress"
<clients>
<link rel="progress" href="..." />
</clients>
| Status Code | Reason |
|---|---|
| 401 | Invalid authorization token |
| 403 | Not a Huddle Administrator |
| 404 | Client Not Found |
GET /people/bulk-process/clients/progress/:requestId HTTP/1.1
Content-Type: application/vnd.huddle.data+json
Authorization: OAuth2 frootymcnooty/vonbootycherooty
HTTP/1.1 200 OK
Content-Type: application/vnd.huddle.data+json
Link: <...>;rel="progress"
{
"link": {
"rel": "self",
"href": "..."
},
"status": "InProgress"
}GET /people/bulk-process/clients/progress/:requestId HTTP/1.1
Content-Type: application/vnd.huddle.data+xml
Authorization: OAuth2 frootymcnooty/vonbootycherooty
HTTP/1.1 200 OK
Content-Type: application/vnd.huddle.data+xml
Link: <...>;rel="progress"
<clients>
<link rel="self" href="..." />
<status>InProgress</status>
</clients>
| Status | Reason |
|---|---|
| InProgress | Request is currently in progress |
| Finished | Request has completed successfully |
| Error | Requested has finished in error |
| Status Code | Reason |
|---|---|
| 401 | Invalid authorization token |
| 403 | Not a Huddle Administrator |
| 404 | Request Not Found |