/authentication/login/

post

Call to login. Usually called after /info/

/authentication/logout/

post

Destroys a session and potentially logs out a user

/authentication/ga-verify/

post

Solves the google authenticator challenge during the login process. Usually called after /authentication/login/

/authentication/yubikey-otp-verify/

post

Solves the Yubikey OTP challenge during the login process. Usually called after /authentication/login/

/authentication/duo-verify/

post

Solves the Duo challenge during the login process. Usually called after /authentication/login/

/authentication/activate-token/

post

Activates the token after all challenges have been solved. Usually called after /authentication/login/ or challenge solvers like for example /authentication/yubikey-otp-verify/

/authentication/sessions/

get

Lists all active sessions.

/authentication/register/

post

Register a user.

/authentication/verify-email/

post

Verifies the email address.

/user/update/

put

Updates user informations like for example a new password (means new authkey) or new public key

/user/ga/

put

Generates a Google Authenticator key

post

Activates a google authenticator by sending one token

get

Returns a list of all Google Authenticators

delete

Deletes a Google Authenticators

/user/duo/

put

Generates a Duo

post

Activates a duo by sending one code or by the user pushing the "Allow" button on the mobile

get

Returns a list of all Duos

delete

Deletes a Duo

/user/yubikey-otp/

put

Create / set a new YubiKey OTP token

post

Activates a yubikey by sending one token. (optional, as Yubikeys are by default active)

get

Returns a list of all YubiKey OTP token

delete

Deletes a YubiKey OTP token

/user/search/

post

Searches a user according to its id or username

/user/delete/

delete

Deletes the own user account

/password/

post

First step of the password reset with a recovery code

put

Second step of the recovery code password reset. Validates the code and sets the new password.

/recoverycode/

post

Creates a recovery code

/datastore/

get

Lists all datastores of the user

put

Creates a new datastore

post

Updates a specific datastore

delete

Deletes a specific datastore

/datastore/{datastore_id}/

get

Retrieve a specific datastore

/secret/

put

Creates a new secret

post

Updates a specific secret

/secret/history/{secret_id}/

get

Lists the history of a specific secret

/history/{secret_history_id}/

get

Reads a specify secret history entry

/secret/{secret_id}/

get

Retrieve a specific secret

/share/rights/{share_id}/

get

Retrieve the user's user and group rights of the share

/share/right/accept/

post

Accepts a user share right

/share/right/decline/

post

Declines a user share right

/share/right/

get

List of all share rights

put

creates a user or group share right

post

Updates a user or group share right

delete

Deletes a user or group share right

/share/right/{user_share_right_id}/

get

Reads a specific user share right

/share/

get

Returns a list of all shares with user share rights (for the user)

put

Updates a share

post

Creates a new share

/share/{share_id}/

get

Reads a specific share

/group/

get

Returns a list of all groups with group share rights (for the user)

put

Creates a group

post

Updates a group

delete

Deletes a group

/emergency-login/

put

Second step of the login with emergency code.

post

First step of the login with an emergency code

/emergencycode/

get

Returns a list of all emergency codes of the user

post

Creates a new emergency code

delete

Deletes an emergency code

/group/{group_id}/

get

Returns the specified group if the user has any rights for it

/group/rights/

get

Returns a list of all group rights affecting the current user

/group/rights/{group_id}/

get

Returns a list of all group rights (memberships) of a group

/membership/accept/

post

Accepts a membership

/membership/decline/

post

Declines a membership

/membership/

put

Creates a new group membership

post

Updates a group membership

delete

Deletes a group membership

/api-key-access/inspect/

post

Inspects an API key

/api-key-access/secret/

post

Reads a secret and (optional) decrypts it and (optional) filters it on the server

put

Writes a secret and (optional) encrypts it on the server

/api-key/secret/{api_key_id}/

get

Returns a list of all secrets of an API key

/api-key/secret/

put

Adds a secret to an api key

delete

Removes a secret from an api key

/api-key/login/

post

Login with API key to get an active session

/api-key/{api_key_id}/

get

Returns the specific api key and all its stored data

/api-key/

put

Creates a new api key

post

Updates an api key

delete

Deletes an api key

/user/status/

get

Returns the user status, e.g. unapproved shares and so on

/healthcheck/

get

Check the health of the application

/info/

get

Returns the Server's signed information. Usually the first call before logging in.