This documentation describes API handlers and CLI commands provided by this module for others to use. It expects your application is based on the CRM skeleton provided by us.
We recommend using Composer for installation and update management.
composer require remp/crm-users-moduleAdd installed extension to your app/config/config.neon file.
extensions:
- Crm\UsersModule\DI\UsersModuleExtensionUsersModule generates an access token for every successful user authentication. This token can be used to authenticate the user in API calls.
You can log the user into the CRM automatically if you have such token thanks to the AccessTokenAuthenticator.
CRM checks if there's a cookie called n_token and extracts the value from it. If the value is valid access token (it's still present in the access_tokens table), and it doesn't belong to admin account, it logs user in automatically without requesting username or password.
This comes handy in case your login process is handled on other domain (e.g. in your CMS via CRM's API) and you want your users to get logged in only once.
All examples use http://crm.press as a base domain. Please change the host to the one you use
before executing the examples.
All examples use XXX as a default value for authorization token, please replace it with the
real tokens:
- API tokens. Standard API keys for server-server communication. It identifies the calling application as a whole.
They can be generated in CRM Admin (
/api/api-tokens-admin/) and each API key has to be whitelisted to access specific API endpoints. By default the API key has access to no endpoint. - User tokens. Generated for each user during the login process, token identify single user when communicating between
different parts of the system. The token can be read:
- From
n_tokencookie if the user was logged in via CRM. - From the response of
/api/v1/users/loginendpoint - you're free to store the response into your own cookie/local storage/session.
- From
API responses can contain following HTTP codes:
| Value | Description |
|---|---|
| 200 OK | Successful response, default value |
| 400 Bad Request | Invalid request (missing required parameters) |
| 403 Forbidden | The authorization failed (provided token was not valid) |
| 404 Not found | Referenced resource wasn't found |
If possible, the response includes application/json encoded payload with message explaining
the error further.
API call returns basic user information based on provided user token.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | User token. |
curl -v –X GET http://crm.press/api/v1/user/info \
-H "Content-Type:application/json" \
-H "Authorization: Bearer XXX"Response:
{
"status": "ok",
"user": {
"id": 1,
"email": "[email protected]",
"first_name": "Test",
"last_name": "Admin"
}
}This was a response from default UserAuthenticator. If your application use some custom implementation of authenticator
(e.g. FooAuthenticator), the authenticator can add extra parameters to the response:
{
"status": "ok",
"user": {
// ...
},
"foo": {
"external_id": "baz",
"custom_flag": true
}
}API call verifies provided credentials and returns user token.
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | User's email address. | |
| Password | String | yes | User's plain text password. |
| Source | String | no | Source of the login indicating which implementation of UserAuthenticator to verify credentials. The caller is responsible for providing source of the credentials so the handler know which implementation can handle the verification. |
| device_token | String | no | Token used for pairing mobile device to users access tokens. Can be generated by users/get-device-token. |
curl 'http://crm.press/api/v1/users/login/' \
-H 'Content-Type: application/x-www-form-urlencoded; charset=UTF-8' \
-H 'Accept: application/json' \
--data 'email=admin%40admin.sk&password=password'Success response:
{
"status": "ok",
"user": {
"id": 9,
"email": "[email protected]",
"first_name": "Test",
"last_name": "Admin",
"roles": ["redaktor", "superadmin"] // admin roles
},
"access": {
"token": "762eec3fe9f20d87cf865cb40cf6458b" // user token
}
}Invalid credentials response:
{
"status": "error",
"error": "auth_failed",
"message": "ZadanĂ© heslo sa nezhoduje s našimi záznamami. Prihláste sa, prosĂm, tak, ako na webe DennĂka N."
}API calls checks whether provided email address is valid and available to use (for possible registration).
Additionally it checks whether the provided password is valid for given email address or not. It doesn't login the user into the system and it also doesn't return any user token, it only verifies the password if it was provided.
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | Email to verify | |
| Password | String | no | Password to verify |
curl -v –X GET http://crm.press/api/v1/users/email \
-H 'Content-Type: application/x-www-form-urlencoded; charset=UTF-8' \
-H 'Accept: application/json' \
--data 'email=admin%40admin.sk'Response when email is already taken:
{
"email": "[email protected]", // String; requested email
"status": "taken", // String; allowed values ["available", "taken"]
"id": 9, // Integer; ID of user if email is taken
"password": null // Boolean; set only if password was provided in request
}Response when email is available:
{
"email": "[email protected]",
"status": "available",
"id": null,
"password": null
}API for registration of user into the system. Password is generated automatically by the system and sent to user by email.
When the user is registered, he/she is automatically logged in and user token is also returned.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token |
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | - | |
| first_name | String | no | - |
| last_name | String | no | - |
| ext_id | Integer | no | User identificator from external system |
| source | String | no | Source of user registration - string label groupping users registered via the same source. |
| referer | String | no | Referer URL to indicate where user got registered. |
| note | String | no | Note visible only to administrators |
| send_email | String | no | Flag whether to send welcome email after the registration. If not provided, the system will send an email. |
| disable_email_validation | Boolean | no | Flag whether to bypass email address validation. If not provided, the system will validate email address. |
| device_token | String | no | Token used for pairing mobile device to users access tokens. Can be generated by users/get-device-token. |
curl -v –X GET http://crm.press/api/v1/users/create \
-H 'Content-Type: application/x-www-form-urlencoded; charset=UTF-8' \
-H 'Accept: application/json' \
--data 'email=user%40user.sk'Success response:
{
"status": "ok",
"user": {
"id": 101,
"email": "[email protected]",
"first_name": null,
"last_name": null,
"roles": [] // admin roles
},
"access": {
"token": "762eec3fe9f20d87cf865cb40cf6458c" // user token
}
}Adds user to the provided group. Group serves for artificial user groupping based on your arbitrary criteria.
You can list your available groups in CRM admin at /users/groups-admin/.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | Email to add to user group. | |
| group_id | Integer | yes | ID of user group to be used. |
curl -X POST http://crm.press/api/v1/users/add-to-group \
-H 'Authorization: Bearer XXX' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d 'email=user%40user.sk&group_id=1'Response:
{
"status": "ok"
}Removes the user from selected group. Group serves for artificial user groupping based on your arbitrary criteria.
You can list your available groups in CRM admin at /users/groups-admin/.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | Email to remove from group. | |
| group_id | Integer | yes | ID of user group to be removed from. |
curl -X POST http://crm.press/api/v1/users/remove-from-group \
-H 'Authorization: Bearer XXX' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d 'email=user%40user.sk&group_id=1'Response:
{
"status": "ok"
}Removes the user from selected group. Group serves for artificial user groupping based on your arbitrary criteria.
You can list your available groups in CRM admin at /users/groups-admin/.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | Email to remove from group. | |
| group_id | Integer | yes | ID of user group to be removed from. |
curl -X POST http://crm.press/api/v1/users/remove-from-group \
-H 'Authorization: Bearer XXX' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d 'email=user%40user.sk&group_id=1'Response:
{
"status": "ok"
}Lists all user addresses. User is identified by email address.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | Email to remove from group. | |
| type | String | no | Type of address - types of addresses are managed by modules (e.g. InvoiceModule adds support for invoice address type. |
curl -X GET \
'http://crm.press/api/v1/users/[email protected]' \
-H 'Authorization: Bearer XXX' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d email=user%40user.skResponse:
{
"status": "ok",
"addresses": [
{
"user_id": 10, // Integer; ID of user
"type": "print", // String; type of address
"created_at": "2019-03-08T11:37:45+01:00", // RFC3339 date; address creation date
"email": "[email protected]", // String; email address of user
"company_name": "", // String; company name
"phone_number": "0800123456", // String; phone number (not validated)
"company_id": "", // String: company ID
"tax_id": "", // String: company tax ID
"vat_id": "", // String: company vat ID
"first_name": "Test", // String: first name of address (can be different from user's first name)
"last_name": "User", // String; last name of address (can be different from user's first name)
"address": "10th street", // String: street name
"number": "368", // String; street number
"zip": "81105", // String: zip code
"city": "Bratislava", // String; city
"country": "Slovensko" // String: user-friendly country name (internally represented by reference)
}
]
}Creates new address for given user.
Current implementation doesn't allow specification of country and the default application country is being implicitely used.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | Email to remove from group. | |
| type | String | yes | Type of address - types of addresses are managed by modules (e.g. InvoiceModule adds support for invoice address type. |
| first_name | String | no | First name. |
| last_name | String | no | Last name. |
| address | String | no | Street name. |
| number | String | no | Street number. |
| zip | String | no | ZIP code. |
| city | String | no | City. |
| company_name | String | no | Name of the company (if it's corporate address) |
| company_id | String | no | ID of company (if it's corporate address) |
| tax_id | String | no | Tax ID of company (if it's corporate address) |
| vat_id | String | no | VAT ID of company (if it's corporate address) |
| phone_number | String | no | Phone number. |
curl -X POST \
http://crm.press/api/v1/users/addresses \
-H 'Authorization: Bearer XXX' \
-H 'Cache-Control: no-cache' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d 'email=user%40user.sk&type=invoice&first_name=AdrName&last_name=AdrLastName&address=11th%20str.&number=112&zip=81105&city=Bratislava'Response:
{
"status": "ok",
"address": {
"id": 26929 // Integer; address ID
}
}Creates new address change request for given type of address and user. Change request might still need to be approved.
You should check if the address with given type exists before calling this - if not, create the address first
via users/address API call.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | Email to remove from group. | |
| type | String | yes | Type of address - types of addresses are managed by modules (e.g. InvoiceModule adds support for invoice address type. |
| first_name | String | no | First name. |
| company_name | String | no | Name of the company (if it's corporate address) |
| last_name | String | no | Last name. |
| address | String | no | Street name. |
| number | String | no | Street number. |
| zip | String | no | ZIP code. |
| city | String | no | City. |
| country_id | String | no | Internal CRM of country. Default country is used if not provided. |
| phone_number | String | no | Phone number. |
| company_id | String | no | ID of company (if it's corporate address) |
| company_tax_id | String | no | Tax ID of company (if it's corporate address) |
| company_vat_id | String | no | VAT ID of company (if it's corporate address) |
curl -X POST \
http://crm.press/api/v1/users/change-address-request \
-H 'Authorization: Bearer XXX' \
-H 'Cache-Control: no-cache' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d 'email=user%40user.sk&type=print&first_name=AdrName&last_name=AdrLastName&address=11th%20str.&number=112&zip=81105&city=Bratislava'Response:
{
"status": "ok",
"address": {
"id": 26929 // Integer; address ID
}
}If the address with given type doesn't exist yet, HTTP 400 is returned with following message:
{
"status": "errror",
"message": "Parent address not found"
}Lists information of requested users (identified by user IDs). Endpoint requires pagination parameter to be included and paginates the result by 1000 users in one response.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| user_ids | String | yes | JSON-encoded array of requested user IDs. |
| page | Integer | yes | Page number to retrieve (starting with 1). |
curl -X POST \
http://crm.press/api/v1/users/list \
-H 'Authorization: Bearer XXX' \
-H 'Cache-Control: no-cache' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d 'user_ids=%5B9%2C10%5D&page=1'Response:
{
"status": "ok",
"page": 1, // Integer; requested page number
"totalPages": 1, // Integer; total page count
"totalCount": 2, // Integer; total record count
"users": { // Object; map of users keyed by userId with value object containing user data
"9": {
"id": 9, // Integer; ID of user
"email": "[email protected]" // String; email of user
},
"10": {
"id": 10,
"email": "[email protected]"
}
}
}Lists information of requested users (identified by user IDs). Endpoint requires pagination parameter to be included and paginates the result by 1000 users in one response.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| String | yes | Email of user to confirm. Unconfirmed users might be deleted in the future or won't get the emails. |
curl -X POST \
http://crm.press/api/v1/users/confirm \
-H 'Authorization: Bearer XXX' \
-H 'Cache-Control: no-cache' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d email=admin%40admin.skResponse:
{
"status": "ok"
}The concept of meta user's information is to provide the way how to store user related data without need of the database structure changes.
Meta information for user is stored as a pair key - value and respect two rules:
- One value for one key
- More unique keys for one user
Public property (is_public) defines the availability of meta information for the visual components of CRM administration and the availability for other modules by data providers.
Create or update the meta information for given user.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| user_id | Integer | yes | ID of user to add/update meta information. |
| key | String | yes | Meta information key to set. |
| value | String | yes | Meta information value to set. |
| is_public | Boolean | no | Meta information property public to set. |
curl -X POST \
http://crm.press/api/v1/user-meta/upsert \
-H 'Authorization: Bearer XXX' \
-H 'Cache-Control: no-cache' \
-H 'Content-Type: application/json' \
-d '{
"user_id": 12345,
"key": "foo",
"value": "bar",
"is_public": false
}'Response:
{
"key": "foo",
"value": "bar",
"is_public": false
}Return all the meta information of specified user. You can specify meta information by using the meta information key.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| user_id | Integer | yes | The ID of user. |
| key | String | no | The meta information key of user to filter by. |
curl -X POST \
http://crm.press/api/v1/user-meta/list \
-H 'Authorization: Bearer XXX' \
-H 'Cache-Control: no-cache' \
-H 'Content-Type: application/json' \
-d '{
"user_id": 12345
}'Response:
[
{
"key" : "foo",
"value" : "bar",
"is_public" : false
},
{
"key" : "fooz",
"value" : "1",
"is_public" : true
}
]Return all users with specified meta information key and value.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| key | String | yes | The meta key information of user to filter by. |
| value | String | no | The meta value information of user to filter by. |
curl -X POST \
http://crm.press/api/v1/user-meta/key-users \
-H 'Authorization: Bearer XXX' \
-H 'Cache-Control: no-cache' \
-H 'Content-Type: application/json' \
-d '{
"key": "foo"
}'Response:
[
{
"user_id" : 1,
"value" : "bar"
},
{
"user_id" : 2,
"value" : "friend"
}
]Delete the meta information of user by key. You can delete the meta information of user also only with specific value.
| Name | Value | Required | Description |
|---|---|---|---|
| Authorization | Bearer String | yes | API token. |
| Name | Value | Required | Description |
|---|---|---|---|
| user_id | Integer | yes | The ID of user. |
| key | String | yes | The meta information key to delete by. |
| value | String | no | The meta information value to delete by. |
curl -X POST \
http://crm.press/api/v1/user-meta/delete \
-H 'Authorization: Bearer XXX' \
-H 'Cache-Control: no-cache' \
-H 'Content-Type: application/json' \
-d '{
"user_id": 12345,
"key": "gdpr"
}'API call verifies provided autologin token and returns user identity and token.
| Name | Value | Required | Description |
|---|---|---|---|
| autologin_token | String | yes | User's autologin token. |
curl --location --request GET 'http://crm.press/api/v1/users/autologin-token-login?autologin_token=f8fb5c8d41e454852c0049cfe1031ac1'Success response:
{
"status": "ok",
"user": {
"id": 9,
"email": "[email protected]",
"public_name": "[email protected]",
"first_name": "Test",
"last_name": "User"
},
"access": {
"token": "762eec3fe9f20d87cf865cb40cf6458b" // user token
}
}Invalid token response:
{
"status": "error",
"message": "Invalid token"
}API call generates and returns new device token based on sent device_id.
| Name | Value | Required | Description |
|---|---|---|---|
| device_id | String | yes | User's device id. |
curl --location --request POST 'http://crm.press:8080/api/v1/users/get-device-token' --form 'device_id=cosijak2'Success response:
{
"device_token": "bfc6191c1837ec3600c23036edf35590"
}AddressWidget
Admin user detail address widget.
AutologinTokens
Admin user detail tokens widget.
MonthToDateUsersStatWidget
Admin dashboard single stat widget.
MonthUsersSmallBarGraphWidget
Admin users header widget.
MonthUsersStatWidget
Admin dashboard single stat widget.
ActiveRegisteredUsersStatWidget
Admin dashboard single stat widget.
TodayUsersStatWidget
Admin dashboard single stat widget.
UserActionsLog
Admin user detail listing component.
UserLoginAttempts
Admin user detail listing component.
UserMeta
Admin user detail listing component.
UserPasswordChanges
Admin user detail listing component.
UserSourceAccesses
Admin user detail listing component.
UserTokens
Admin user detail listing component.
DetailWidget
Admin user detail meta widget.
