Authentication | PortSIP Knowledge Base

Retrieve metadata.

get

Retrieve system metadata information. If the optional domain query parameter is specified, the relevant tenant metadata information will be returned together. System metadata:

web_domain
private_ipv4
public_ipv4
enable_ipv6
private_ipv6
public_ipv6
primary_dns_server
secondary_dns_server
enable_dataflow Tenant metadata:
name
domain
website
avatar_url
enable_ms365_integration
ms365_authorization_endpoint

Query parameters

domainstringOptional

Use the domain query parameter to retrieve just a subset of a collection.

Responses

200

OK

application/json

4XX

Error

get

/info

GET /api/info HTTP/1.1
Host: HOSTNAME:8887
Accept: */*

{
  "web_domain": "example.com",
  "private_ipv4": "127.0.0.1",
  "public_ipv4": "127.0.0.1",
  "enable_ipv6": false,
  "private_ipv6": "::1",
  "public_ipv6": "::1",
  "primary_dns_server": "127.0.0.1",
  "secondary_dns_server": "127.0.0.1",
  "name": "example",
  "domain": "example.com",
  "website": "example.com",
  "avatar_url": "avatar.com/avatar",
  "enable_ms365_integration": false,
  "ms365_authorization_endpoint": "/ms365",
  "enable_dataflow": true
}

Sign in with credentials

post

Sign in with credentials

Query parameters

qrbooleanOptionalDefault: false

Body

usernamestring · min: 1 · max: 64Required

The user's account name.
Only letters, numbers, and the following special characters can be added: underscore, dash, single quote, and period (_, -, ', and .).
Username cannot start or end with period (.).
admin, system, administrator, and root are reserved names for system admin only with case ignored.

passwordstringRequired

The password of user.

domainstring · min: 1 · max: 280Optional

The SIP domain of tenant.
It is usually a fully qualified domain name (FQDN). If there is no FQDN, you can also use the IP address of the PBX server as the SIP domain. The SIP domain name is only used for SIP message authentication and does not require analysis.

Responses

200

OK

application/json

4XX

Error

post

/auth/sign_in

POST /api/auth/sign_in HTTP/1.1
Host: HOSTNAME:8887
Content-Type: application/json
Accept: */*
Content-Length: 47

{
  "username": null,
  "password": null,
  "domain": null
}

{
  "access_token": "xxxxxxxxxxx",
  "refresh_token": "xxxxxxxxxxxxx",
  "token_type": "Bearer",
  "expires_in": 1800
}

Sign in with social account

post

Sign in with social account

Path parameters

providerstringRequired

The name of IdP provider. Currently only supports microsoft.

Body

domainstring · min: 1 · max: 280Required

The SIP domain of tenant.
It is usually a fully qualified domain name (FQDN). If there is no FQDN, you can also use the IP address of the PBX server as the SIP domain. The SIP domain name is only used for SIP message authentication and does not require analysis.

callback_urlstringRequired

The callback url for authentication flow.

Responses

200

OK

application/json

4XX

Error

post

/auth/sign_in/{provider}

POST /api/auth/sign_in/{provider} HTTP/1.1
Host: HOSTNAME:8887
Content-Type: application/json
Accept: */*
Content-Length: 35

{
  "domain": null,
  "callback_url": null
}

{
  "url": null
}

Sign out from system.

post

Sign out from system.

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Responses

200

OK

4XX

Error

post

/auth/sign_out

POST /api/auth/sign_out HTTP/1.1
Host: HOSTNAME:8887
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

No content

Send OTP to email.

post

Request to send OTP to email.

Body

tokenstringRequired

The session token in authentication flow.

Responses

200

OK

4XX

Error

post

/auth/send_otp

POST /api/auth/send_otp HTTP/1.1
Host: HOSTNAME:8887
Content-Type: application/json
Accept: */*
Content-Length: 14

{
  "token": null
}

No content

Verify OTP from email.

post

Request to verify OTP from email.

Body

tokenstringRequired

The session token in authentication flow.

codestringRequired

The OTP code in authentication flow.

Responses

200

OK

4XX

Error

post

/auth/verify_otp

POST /api/auth/verify_otp HTTP/1.1
Host: HOSTNAME:8887
Content-Type: application/json
Accept: */*
Content-Length: 26

{
  "token": null,
  "code": null
}

No content

Initiate authentication forget password flow

post

Initiate authentication forget password flow.

Body

domainstring · min: 1 · max: 280Required

The SIP domain of tenant.
It is usually a fully qualified domain name (FQDN). If there is no FQDN, you can also use the IP address of the PBX server as the SIP domain. The SIP domain name is only used for SIP message authentication and does not require analysis.

usernamestring · min: 1 · max: 64Required

The user's account name.
Only letters, numbers, and the following special characters can be added: underscore, dash, single quote, and period (_, -, ', and .).
Username cannot start or end with period (.).
admin, system, administrator, and root are reserved names for system admin only with case ignored.

callback_urlstringRequired

The callback url for authentication flow.

Responses

200

OK

4XX

Error

post

/auth/forget_password

POST /api/auth/forget_password HTTP/1.1
Host: HOSTNAME:8887
Content-Type: application/json
Accept: */*
Content-Length: 67

{
  "domain": null,
  "username": null,
  "callback_url": null,
  "required": null
}

No content

Reset password with session token.

post

Reset password with session token.

Body

tokenstringRequired

The session token in authentication flow.

new_passwordstringRequired

The password of user.

Responses

200

OK

4XX

Error

post

/auth/reset_password

POST /api/auth/reset_password HTTP/1.1
Host: HOSTNAME:8887
Content-Type: application/json
Accept: */*
Content-Length: 34

{
  "token": null,
  "new_password": null
}

No content

Refresh the access token.

post

Refresh the access token.

Body

refresh_tokenstringRequired

The refresh token.

Responses

200

OK

application/json

4XX

Error

post

/auth/refresh_token

POST /api/auth/refresh_token HTTP/1.1
Host: HOSTNAME:8887
Content-Type: application/json
Accept: */*
Content-Length: 22

{
  "refresh_token": null
}

{
  "token_type": "text",
  "access_token": "text",
  "refresh_token": "text",
  "expires_in": 1
}

Get the authentication information of the logged-in user.

get

Get the authentication information of the logged-in user.

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Responses

200

OK

application/json

401

Unauthorized

get

/auth/user

GET /api/auth/user HTTP/1.1
Host: HOSTNAME:8887
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "domain": null,
  "role_id": null,
  "role_name": null,
  "capabilities": null,
  "password_verified": null,
  "password_force_reset": null
}

get

Get login status of current session.

Responses

200

OK

application/json

401

Unauthorized

get

/login

GET /api/login HTTP/1.1
Host: HOSTNAME:8887
Accept: */*

{
  "access_token": null,
  "expires_at": null,
  "expires_in": null,
  "role": null
}

post

Login with username and password.

Body

usernamestring · min: 1 · max: 64Required

The user's account name.
Only letters, numbers, and the following special characters can be added: underscore, dash, single quote, and period (_, -, ', and .).
Username cannot start or end with period (.).
admin, system, administrator, and root are reserved names for system admin only with case ignored.

passwordstringRequired

The password of user.

domainstring · min: 1 · max: 280Optional

The SIP domain of tenant.
It is usually a fully qualified domain name (FQDN). If there is no FQDN, you can also use the IP address of the PBX server as the SIP domain. The SIP domain name is only used for SIP message authentication and does not require analysis.

Responses

200

OK

4XX

Error

post

/login

POST /api/login HTTP/1.1
Host: HOSTNAME:8887
Content-Type: application/json
Accept: */*
Content-Length: 47

{
  "username": null,
  "password": null,
  "domain": null
}

No content

post

login with Microsoft Identity Provider by Authorization Code Flow.

Body

domainstring · min: 1 · max: 280Required

The SIP domain of tenant.
It is usually a fully qualified domain name (FQDN). If there is no FQDN, you can also use the IP address of the PBX server as the SIP domain. The SIP domain name is only used for SIP message authentication and does not require analysis.

Responses

200

OK

302

Found

4XX

Error

post

/login/by_microsoft

POST /api/login/by_microsoft HTTP/1.1
Host: HOSTNAME:8887
Content-Type: application/x-www-form-urlencoded
Accept: */*
Content-Length: 15

"domain=null"

No content

Log out from system

post

Logs out current session.

Responses

204

No Content

4XX

Error

post

/logout

POST /api/logout HTTP/1.1
Host: HOSTNAME:8887
Accept: */*

No content

hashtagRetrieve metadata.

hashtagSign in with credentials

hashtagSign in with social account

hashtagSign out from system.

hashtagSend OTP to email.

hashtagVerify OTP from email.

hashtagInitiate authentication forget password flow

hashtagReset password with session token.

hashtagRefresh the access token.

hashtagGet the authentication information of the logged-in user.

hashtagGet login status of current session

hashtagLogin into system

hashtaglogin with Microsoft Identity Provider by Authorization Code Flow

hashtagLog out from system

Retrieve metadata.

Sign in with credentials

Sign in with social account

Sign out from system.

Send OTP to email.

Verify OTP from email.

Initiate authentication forget password flow

Reset password with session token.

Refresh the access token.

Get the authentication information of the logged-in user.

Get login status of current session

Login into system

login with Microsoft Identity Provider by Authorization Code Flow

Log out from system