Portal Login

Endpoints Summary

Method Path Swagger POST /portal_login/ Swagger ↗

The ~~Portal Login~~portal_login API ~~enables~~provides functionality for managing captive portal authentication flows, allowing access points to redirect users through a centralized authentication system. This endpoint is primarily used in WiFi network environments where user authentication and session management ~~for~~are ~~captive~~required ~~portal~~before ~~networks.~~granting ~~This~~internet ~~endpoint handles user authentication flows, captures device information, and establishes network access sessions with configurable timeout parameters for WiFi hotspots and access control systems.~~access.

Base URL: https://gate.zequenze.com/api/v1

Authentication: All endpoints require a Bearer token:

Authorization: Bearer <your-api-token>

Overview

The ~~Portal Login~~portal_login API category ~~provides~~is ~~essential functionality~~designed for WiFi captive portal ~~authentication~~systems ~~systems.~~that ~~When~~need to authenticate users ~~connect~~before ~~to a WiFi~~granting network ~~with~~access. ~~a captive portal, this~~This API ~~processes~~handles ~~their~~the ~~login~~critical ~~attempts~~handoff between access points, controllers, and ~~establishes~~the ~~authenticated~~authentication ~~sessions.~~platform.

Key Concepts:

Captive Portal ~~Authentication~~Flow: ~~Intercepts network traffic until~~When users ~~authenticate~~

connect to ~~Device~~WiFi, ~~Tracking~~:they're ~~Captures~~redirected ~~MAC~~to ~~addresses~~an ~~and~~authentication IPpage ~~information~~before ~~for~~accessing ~~access~~the ~~control~~internet Session Management: ~~Establishes~~The ~~time-based~~API ~~access~~creates authenticated sessions with configurable ~~timeouts~~timeout periods ~~Network~~Multi-device Support: Tracks individual devices by MAC address and assigns IP addresses Controller Integration: Works with ~~access points and~~ network controllers to manage access point configurations

Common Integration Scenarios:

Hotel WiFi ~~login~~ systems ~~that require~~requiring room ~~credentials~~

~~Coffee shop hotspots with social media~~number authentication Corporate guest networks with ~~sponsor~~email-based ~~approval workflows~~login Public WiFi ~~systems~~hotspots with terms of service acceptance Retail ~~environments~~locations with ~~customer~~social ~~registration~~media ~~portals~~login requirements

The ~~API~~portal_login ~~handles~~endpoint serves as the ~~technical aspects of session establishment while allowing flexibility in~~ authentication ~~methods~~gateway, processing user credentials and ~~user~~device ~~experience~~information ~~design.~~to establish authorized network sessions.

Endpoints

POST /portal_login/

Description: Executes a portal login operation to authenticate a user device and establish a network ~~access~~ session. This endpoint processes authentication ~~data,~~data ~~validates~~from ~~credentials,~~captive portals and creates an authorized ~~session~~sessions with the network controller, enabling internet access for the ~~requesting~~authenticated ~~device with configurable timeout parameters.~~device.

Use Cases:

Authenticate hotel guests using room ~~number~~credentials ~~and~~before ~~last~~granting ~~name~~WiFi access
Process corporate visitor registration and create temporary network access

Handle social media login ~~credentials~~flows for public WiFi ~~access~~hotspots Validate ~~corporate guest access with sponsor approval~~ ~~Register new users for retail WiFi with email verification~~ ~~Accept~~ terms of service acceptance for ~~public~~retail ~~hotspot~~location ~~access~~WiFi

Full URL Example:

https://gate.zequenze.com/api/v1/portal_login/

Request Body Parameters:

Parameter	Type

In Required Description data string ~~body~~ Yes JSON string containing authentication and device information ~~for portal login~~

~~Request~~Data ~~Body~~Object Structure: The data parameter should contain a JSON ~~object~~string with the following authentication ~~details,~~information:

Field Type Required Description uid string Yes Unique identifier for the user (email, username, room number, etc.) ap_mac string Yes MAC address of the access point handling the connection mac string Yes MAC address of the user's device ~~information,~~ ~~and~~ ip string Yes IP address assigned to the user's device original_url string No The original URL the user was trying to access controller_address string No IP address of the network controller session_timeout integer No Maximum session ~~parameters.~~duration in seconds idle_timeout integer No Idle timeout period in seconds

cURL Example:

curl -X POST "https://gate.zequenze.com/api/v1/portal_login/" \
  -H "Authorization: Bearer YOUR_API_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "data": "{\"uid\":\"guest@hotel.com\",\"mac\ap_mac\":\"aa:bb:cc:dd:ee:ff\",\"ap_mac\mac\":\"11:22:33:44:55:66\",\"ip\":\"192.168.1.100\",\"original_url\":\"https://www.google.com\",\"controller_address\":\"192.168.1.1\",\"session_timeout\":3600,\"idle_timeout\":1800}"
  }'

Example Request Body:

{
  "data": "{\"uid\":\"room_401\",\"ap_mac\":\"aa:bb:cc:dd:ee:ff\",\"mac\":\"11:22:33:44:55:66\",\"ip\":\"192.168.1.100\",\"original_url\":\"https://www.example.com\",\"controller_address\":\"192.168.1.1\",\"session_timeout\":7200,\"idle_timeout\":1800}3600}"
}'

Example Response:

{
  "page_id": 12345,
  "original_url": "https://google.www.example.com",
  "ap_mac": "aa:bb:cc:dd:ee:ff",
  "mac": "11:22:33:44:55:66",
  "mac": "aa:bb:cc:dd:ee:ff",
  "ip": "192.168.1.100",
  "uid": "guest@hotel.com"room_401",
  "controller_address": "192.168.1.1",
  "session_timeout": 7200,
  "idle_timeout": 18003600
}

Response Fields:

Field	Type	~~Required~~

Description page_id integer ~~Yes~~ Unique identifier for this portal session ~~page~~ original_url string No The URL the user was originally trying to access ~~when redirected to the portal~~ ap_mac string ~~Yes~~ MAC address of the access point ~~handling this connection~~ mac string ~~Yes~~ MAC address of the ~~user's~~authenticated device ip string ~~Yes~~ IP address assigned to the ~~user's~~ device uid string ~~Yes~~ User identifier ~~(email,~~used ~~username,~~for ~~or other reference)~~authentication controller_address string NoNetwork controller IP address ~~of the network controller managing the session~~ session_timeout integer No Maximum session duration in seconds ~~(e.g., 7200 = 2 hours)~~ idle_timeout integer No Idle timeout duration in seconds ~~before session expires (e.g., 1800 = 30 minutes)~~

Response Codes:

Status	Description
201	Success - Portal login completed ~~and session established~~successfully
400	Bad Request - Invalid data format or missing required fields
401	Unauthorized - Invalid or missing API token
422	Unprocessable Entity - Authentication failed or ~~device~~invalid ~~blocked~~user credentials
500	Internal Server Error - ~~Portal~~Server-side ~~system~~processing ~~unavailable~~error

Common Use Cases

Use Case 1: Hotel Guest WiFi Authentication

~~Process~~Authenticate hotel ~~guest login~~guests using their room number and last ~~name,~~name. ~~establishing~~The portal captures the guest's device information and creates a ~~24-hour~~ session ~~with~~that ~~30-minute~~expires ~~idle~~at ~~timeout~~checkout ~~for~~time.

Implementation: Use the ~~guest~~guest's ~~network.~~room number as the uid and set session_timeout based on their stay duration.

Use Case 2: CoffeeCorporate ShopGuest Social LoginNetwork

~~Authenticate~~Process ~~customers~~visitor ~~through~~registration ~~social~~where ~~media~~guests ~~credentials,~~provide ~~creating~~their aemail ~~2-hour~~address ~~session~~and ~~that~~accept ~~automatically~~terms ~~expires~~of ~~when~~service ~~inactive~~before ~~for~~accessing 15the ~~minutes.~~corporate guest WiFi.

Implementation: Use the guest's email as the uid and include the original destination URL to redirect them after authentication.

Use Case 3: CorporatePublic GuestWiFi Accesswith Social Login

~~Validate~~Handle ~~guest~~authentication ~~credentials~~flows ~~with~~where ~~sponsor~~users ~~approval,~~log ~~setting~~in upthrough ~~restricted~~social ~~network~~media platforms (Facebook, Google) to access ~~with~~free ~~custom~~WiFi in retail locations.

Implementation: Use the social media user ID as the uid and set appropriate session ~~duration~~timeouts ~~based~~for onfair ~~approval~~usage ~~level.~~policies.

Use Case 4: PublicEvent HotspotWiFi Terms AcceptanceManagement

~~Process~~Manage ~~terms~~WiFi access for conference attendees using registration codes or badge scan data, with sessions that expire at the end of ~~service~~each ~~acceptance~~day.

Implementation: Use attendee registration codes as the uid with daily session timeouts and controller integration for ~~public~~bandwidth ~~WiFi, establishing basic internet access with standard timeout policies.~~

Use Case 5: Retail Customer Registration

~~Handle new customer registration with email verification, creating personalized sessions with loyalty program integration.~~management.

Best Practices

~~Authentication~~ Data ~~Security:~~Format:

Always ~~transmit~~ensure ~~authentication~~the data ~~over~~parameter ~~HTTPS~~contains properly escaped JSON strings
Validate ~~and~~MAC ~~sanitize~~addresses ~~all~~are ~~user~~in ~~inputs~~the correct format (aa:bb:cc:dd:ee:ff) before ~~processing~~sending
~~Implement~~Include ~~rate~~session ~~limiting~~timeouts to prevent ~~brute force attacks~~

~~Store sensitive credentials securely and follow data protection regulations~~

~~Session Management:~~

~~Set appropriate session timeouts based on your use case (hotels may need 24 hours, coffee shops may need 2-4 hours)~~ ~~Configure idle timeouts to free up~~indefinite network ~~resources (typically 15-30 minutes)~~ ~~Monitor active sessions to prevent abuse and ensure fair usage~~

~~Device Tracking:~~

~~Use MAC addresses for device identification but be aware of MAC randomization on modern devices~~ ~~Combine MAC addresses with other identifiers for more reliable tracking~~ ~~Implement device limits per user account to prevent sharing abuse~~access

Error Handling:

~~Provide clear error messages for authentication failures without revealing system details~~

Implement retry logic ~~with exponential backoff~~ for temporary network failures (5xx errors) Validate user credentials before calling the API to minimize 422 responses Log ~~failed~~authentication attempts for security monitoring and troubleshooting

~~Network~~Security ~~Integration:~~Considerations:

~~Ensure~~Never ~~your~~log ~~portal~~or ~~system~~expose ~~can~~the ~~communicate~~full API token in client-side code

Use HTTPS for all API communications to protect authentication data Implement rate limiting to prevent abuse of the authentication endpoint

Performance Tips:

Cache successful authentication responses to avoid duplicate API calls Set appropriate session timeouts to balance user experience with ~~network~~resource ~~controllers~~ ~~Test timeout configurations with your specific network hardware~~usage Monitor ~~session~~API ~~establishment~~response ~~success rates~~times and ~~adjust~~implement ~~parameters~~timeout ashandling ~~needed~~in your application

Session Management:

Store the returned page_id for session tracking and potential logout operations Respect the configured timeout values and handle session expiration gracefully Consider implementing session renewal for long-term users