User Token

Endpoints Summary

Method Path Swagger GET /user_token/ Swagger ↗ POST /user_token/ Swagger ↗ GET /user_token/{id}/ Swagger ↗ PUT /user_token/{id}/ Swagger ↗ PATCH /user_token/{id}/ Swagger ↗ DELETE /user_token/{id}/ Swagger ↗

The User Token API ~~provides~~manages ~~comprehensive~~users ~~user~~within ~~management~~the ~~functionality~~GATE ~~with~~system, ~~integrated~~including their authentication credentials, AAA (Authentication, Authorization, and Accounting) ~~profile~~profiles, ~~support.~~and time-based access controls. These endpoints allow you to create, retrieve, update, and delete ~~users~~user ~~while~~accounts ~~managing~~with ~~their~~detailed ~~authentication~~profile ~~credentials, time-based balances,~~information and ~~access~~token-based ~~profiles~~time management for ~~your~~access ~~organization's~~control systems.

Base URL: https://gate.zequenze.com/api/v1

Authentication: All endpoints require a Bearer token:

Authorization: Bearer <your-api-token>

Overview

The User Token API provides comprehensive user management functionality for the GATE system. This API category is designed for managing ~~users~~user ~~in systems~~accounts that require time-based access control, ~~quota~~typically ~~management,~~used ~~and~~in ~~organizational~~scenarios ~~segmentation.~~where ~~This~~users ~~API~~need isallocated ~~particularly~~time ~~useful~~credits ~~for:~~for services or resources.

Key Features:

~~Network~~User ~~Access Control~~~~: Managing user credentials and time quotas for network services~~

~~Service Provider~~Account Management: ~~Tracking~~Create, read, update, and delete user ~~balances and service class assignments~~ ~~Multi-tenant Organizations~~~~: Organizing users across different organizations~~accounts with ~~custom~~detailed ~~profiles~~profile ~~External System Integration~~~~: Synchronizing user data with external databases using external_id references~~

~~Key features include:~~

~~Time-based Quotas~~~~: Track user time balances in seconds for usage-based services~~information AAA Profile Integration: ~~Assign~~Associate ~~authentication,~~users ~~authorization,~~with Authentication, Authorization, and ~~accounting~~Accounting profiles ~~to users~~ ~~Expiration~~Time-Based ~~Management~~Access Control: ~~Set automatic~~Manage user ~~expiration~~time ~~dates~~allocations (in seconds) for token-based systems ~~Organizational~~Organization ~~Segmentation~~Filtering: Group and filter users by organization Balance Tracking: Monitor remaining time balances for ~~multi-tenant scenarios~~users External System ~~Sync~~Integration: Link users to external systems via external_id ~~for~~references ~~seamless~~ ~~integration~~

Common Use Cases:

Internet café or hotspot user management Time-based service access control Guest network authentication systems Subscription-based time allocation services Multi-tenant user management with organizational boundaries

The API ~~supports~~uses ~~both~~standard ~~individual~~REST ~~user~~principles ~~operations~~with JSON responses and ~~bulk~~supports ~~listing~~pagination ~~with~~for ~~advanced~~list ~~filtering~~operations. ~~capabilities,~~User time is tracked in seconds, making it suitable for ~~both~~precise ~~administrative~~time-based ~~interfaces~~billing and ~~automated~~access ~~user~~control ~~provisioning systems.~~scenarios.

Endpoints

GET /user_token/

Description: Retrieves a paginated list of all users ~~with~~in the system, including their AAA profile ~~information and optional balance data.~~information. This endpoint issupports ~~essential~~filtering ~~for~~by ~~building user management interfaces, generating reports,~~username and ~~monitoring~~organization, ~~user~~and ~~accounts~~can ~~across~~optionally ~~your~~include ~~organization.~~remaining time balance information.

Use Cases:

~~Building administrative dashboards showing~~Display all users in an administrative dashboard
~~Filtering~~Filter users by ~~organization~~specific organizations for multi-tenant ~~management~~systems
~~Monitoring user balances for usage-based billing~~

~~Searching~~Search for specific users by username ~~Generating~~Monitor user ~~reports~~balances ~~with~~across ~~pagination~~the ~~support~~system

Full URL Example:

https://gate.zequenze.com/api/v1/user_token/?username=john_doe&organization=5acme_corp&balance=true&limit=2520&offset=0

Parameters:

Parameter	Type	In	Required	Description
username	string	query	No	Filter users by exact username match
organization	string	query	No	Filter users ~~belonging to specific~~by organization IDidentifier
limit	integer	query	No	Number of results per page (default: 20)
offset	integer	query	No	Starting index for pagination (default: 0)
balance	boolean	query	No	Include remaining time balance in seconds ~~in response~~

cURL Example:

curl -X GET "https://gate.zequenze.com/api/v1/user_token/?organization=5&balance=true&limit=10" \
  -H "Authorization: Bearer YOUR_API_TOKEN" \
  -H "Content-Type: application/json"

Example Response:

{
  "count": 157,150,
  "next": "https://gate.zequenze.com/api/v1/user_token/?limit=10&offset=10&organization=5&balance=true"10",
  "previous": null,
  "results": [
    {
      "id": 123,1,
      "username": "john.doe"john_doe",
      "external_id": "EXT_USER_789"EXT-USER-001",
      "klass": "premium_user",
      "password": "****"premium",
      "is_active": true,
      "organization": 5,1,
      "description": "Premium customeruser - Network Access"account",
      "date_joined": "2024-01-15T09:15T10:30:00Z",
      "last_login": "2024-03-10T14:22:01-20T14:25:00Z",
      "expiration": "2024-12-31T23:59:59Z",
      "profile": ["vpn_access"internet_access", "high_bandwidth"wifi_premium"],
      "user_time": 864003600
    },
    {
      "id": 2,
      "username": "jane_smith",
      "external_id": "EXT-USER-002",
      "klass": "standard",
      "is_active": true,
      "organization": 1,
      "description": "Standard user account",
      "date_joined": "2024-01-16T09:15:00Z",
      "last_login": "2024-01-19T16:45:00Z",
      "expiration": null,
      "profile": ["internet_access"],
      "user_time": 1800
    }
  ]
}

Response Codes:

Status	Description
200	Success - Returns paginated user list
401	Unauthorized - Invalid or missing ~~Bearer~~API token
403	Forbidden - Insufficient permissions ~~to access users~~

POST /user_token/

Description: Creates a new user account with AAA profile ~~configuration.~~information. This endpoint ~~handles~~allows you to set up complete user ~~provisioning~~profiles ~~with~~including ~~optional~~authentication ~~external~~credentials, ~~system integration, time quota~~organizational assignment, and ~~organizational~~initial ~~membership~~time ~~setup.~~allocations.

Use Cases:

~~Provisioning~~Register new users ~~from~~in ~~external~~the ~~systems~~

~~Creating users with specific service class assignments~~ ~~Setting up users with predefined time quotas~~system Bulk user creation ~~through~~for ~~automated scripts~~organizations ~~Onboarding~~Set up guest accounts with specific time limits Create users with ~~specific~~predefined AAA profiles

Full URL Example:

https://gate.zequenze.com/api/v1/user_token/

Request Body ~~Example:~~Parameters:

~~"username"~~ Parameter Type Required Description username string Yes Unique username (150 chars max, letters/digits/@/./+/-/:/ ~~"jane.smith"~~ password string No User password for authentication email string No User email address first_name string No User's first name last_name string No User's last name external_id string No Reference ID for external systems klass string No Service class reference (e.g., "~~password": "SecurePass123!"~~premium", "~~email":~~standard") ~~"jane.smith@company.com",~~ ~~"first_name":"Jane",~~is_active ~~"last_name":~~boolean ~~"Smith",~~No ~~"external_id":~~Whether ~~"HR_EMP_4567",~~user ~~"klass":~~account ~~"standard_user",~~is ~~"organization":~~active 5,(default: ~~"description":~~true) ~~"Standard~~ ~~employee~~-organization ITinteger ~~Department",~~No ~~"expiration":~~Organization ~~"2024-12-31T23:59:59Z",~~ID ~~"is_active":~~to ~~true,~~associate ~~"profile":~~user ~~["basic_network",~~with ~~"email_access"],~~ ~~"avatar_url":"https://company.com/avatars/jane.smith.jpg"~~description }string No Descriptive text about the user expiration string No ISO 8601 date-time when user expires avatar_url string No URL to user's avatar image profile array No Array of AAA profile short-names

cURL Example:

curl -X POST "https://gate.zequenze.com/api/v1/user_token/" \
  -H "Authorization: Bearer YOUR_API_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "username": "jane.smith"new_user",
    "password": "SecurePass123!"secure_password123",
    "email": "jane.smith@company.newuser@example.com",
    "first_name": "New",
    "last_name": "User",
    "external_id": "EXT-USER-003",
    "klass": "premium",
    "is_active": true,
    "organization": 5,1,
    "description": "Newly created premium user",
    "expiration": "2024-12-31T23:59:59Z",
    "profile": ["basic_network"internet_access", "wifi_premium", "email_access"],
    "is_active": true
  }'

Example Response:

{
  "id": 124,3,
  "username": "jane.smith"new_user",
  "external_id": "HR_EMP_4567"EXT-USER-003",
  "klass": "standard_user",
  "password": "****"premium",
  "email": "jane.smith@company.newuser@example.com",
  "first_name": "Jane"New",
  "last_name": "Smith"User",
  "is_active": true,
  "organization": 5,1,
  "description": "StandardNewly employeecreated -premium IT Department"user",
  "date_joined": "2024-03-11T10:15:01-21T11:30:00Z",
  "first_login": null,
  "last_login": null,
  "expiration": "2024-12-31T23:59:59Z",
  "avatar_url": "https://company.com/avatars/jane.smith.jpg",null,
  "profile": ["basic_network"internet_access", "wifi_premium", "email_access"]
}

Response Codes:

Status	Description
201	Created - User successfully created
400	Bad Request - Invalid data or duplicate username ~~already exists~~
401	Unauthorized - Invalid or missing ~~Bearer~~API token
403	Forbidden - Insufficient permissions ~~to create users~~

GET /user_token/{id}/

Description: Retrieves detailed information for a specific user by their ID, including AAA profile ~~data~~information and ~~optional~~optionally ~~balance~~their ~~information.~~remaining ~~This~~time ~~endpoint is perfect for user detail views, account management interfaces, and integration with external systems.~~balance.

Use Cases:

~~Displaying~~Display user profile ~~information~~ in ~~admin~~administrative ~~interfaces~~interface
~~Checking~~Check user ~~balance~~details ~~and~~before ~~quota~~granting ~~information~~access
~~Retrieving~~Retrieve user ~~data~~information for ~~external~~authentication ~~system synchronization~~systems
~~Building user account management features~~

~~Monitoring~~Monitor individual user ~~status~~time ~~and activity~~balances

Full URL Example:

https://gate.zequenze.com/api/v1/user_token/123/?balance=true

Parameters:

Parameter	Type	In	Required	Description
id	integer	path	Yes	Unique identifier of the user ~~ID to retrieve~~
balance	boolean	query	No	Include remaining time balance in seconds

cURL Example:

curl -X GET "https://gate.zequenze.com/api/v1/user_token/123/1/?balance=true" \
  -H "Authorization: Bearer YOUR_API_TOKEN" \
  -H "Content-Type: application/json"

Example Response:

{
  "id": 123,1,
  "username": "john.doe"john_doe",
  "external_id": "EXT_USER_789"EXT-USER-001",
  "klass": "premium_user",
  "password": "****"premium",
  "is_active": true,
  "organization": 5,1,
  "description": "Premium customeruser - Network Access"account",
  "date_joined": "2024-01-15T09:15T10:30:00Z",
  "last_login": "2024-03-10T14:22:01-20T14:25:00Z",
  "expiration": "2024-12-31T23:59:59Z",
  "profile": ["vpn_access"internet_access", "high_bandwidth"wifi_premium", "priority_support"email_access"],
  "user_time": 2592003600
}

Response Codes:

Status	Description
200	Success - Returns user details
401	Unauthorized - Invalid or missing ~~Bearer~~API token

403 Forbidden - Insufficient permissions 404 Not Found - User with specified ID does not exist ~~403~~ ~~Forbidden - Insufficient permissions to access user~~

PUT /user_token/{id}/

Description: Completely updates aan ~~user's~~existing ~~information,~~user account, replacing all modifiable ~~fields with new values.~~fields. This ~~endpoint~~is a full update operation that requires ~~sending~~ all ~~user~~fields ~~data,~~you ~~even~~want ~~unchanged~~to ~~fields,~~preserve ~~making~~to itbe ~~suitable~~included ~~for~~in ~~full~~the ~~profile updates and bulk user data synchronization.~~request.

Use Cases:

~~Synchronizing complete~~Complete user ~~records from external systems~~

~~Performing full~~ profile updates ~~in admin interfaces~~ ~~Updating~~Bulk ~~users~~user ~~after organizational~~information changes Resetting user configurations Migrating user data between systems ~~Bulk updating user profiles with complete data sets~~

Full URL Example:

https://gate.zequenze.com/api/v1/user_token/123/

~~Request Body Example:~~

{
  "username": "john.doe.updated",
  "external_id": "EXT_USER_789_NEW",
  "klass": "enterprise_user",
  "password": "NewSecurePass456!",
  "is_active": true,
  "organization": 7,
  "description": "Enterprise customer - Updated profile",
  "expiration": "2025-06-30T23:59:59Z",
  "profile": ["vpn_access", "high_bandwidth", "priority_support", "admin_tools"],
  "user_time": 172800
}

cURL Example:

curl -X PUT "https://gate.zequenze.com/api/v1/user_token/123/1/" \
  -H "Authorization: Bearer YOUR_API_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "username": "john.doe.updated"john_doe_updated",
    "external_id": "EXT-USER-001-UPDATED",
    "klass": "enterprise_user"enterprise",
    "is_active": true,
    "organization": 7,2,
    "description": "Updated to enterprise user",
    "expiration": "2025-12-31T23:59:59Z",
    "profile": ["vpn_access"internet_access", "high_bandwidth"wifi_premium", "priority_support"email_access", "vpn_access"],
    "user_time": 7200
  }'

Example Response:

{
  "id": 123,1,
  "username": "john.doe.updated"john_doe_updated",
  "external_id": "EXT_USER_789_NEW"EXT-USER-001-UPDATED",
  "klass": "enterprise_user",
  "password": "****"enterprise",
  "is_active": true,
  "organization": 7,2,
  "description": "Enterprise customer - Updated profile"to enterprise user",
  "date_joined": "2024-01-15T09:15T10:30:00Z",
  "last_login": "2024-03-10T14:22:01-20T14:25:00Z",
  "expiration": "2025-06-30T23:12-31T23:59:59Z",
  "profile": ["vpn_access"internet_access", "high_bandwidth"wifi_premium", "priority_support"email_access", "admin_tools"vpn_access"],
  "user_time": 1728007200
}

Response Codes:

Status	Description
200	Success - User ~~completely~~updated ~~updated~~successfully
400	Bad Request - Invalid data ~~or validation errors~~provided
401	Unauthorized - Invalid or missing ~~Bearer~~API token

403 Forbidden - Insufficient permissions 404 Not Found - User with specified ID does not exist ~~403~~ ~~Forbidden - Insufficient permissions to update user~~

PATCH /user_token/{id}/

Description: Partially updates ~~specific~~a user account, allowing you to modify only specific fields without affecting ~~unchanged~~other user data. This ~~endpoint~~ is ideal for making ~~targeted~~incremental ~~updates~~changes ~~like changing~~to user ~~status, adding time balance, or modifying specific profile settings while preserving existing user information.~~accounts.

Use Cases:

~~Updating~~Update user ~~active/inactive~~time ~~status~~balance without changing other details
~~Adding~~Modify user status (active/inactive)

Add or ~~removing~~remove specific AAA profiles ~~Extending user~~Update expiration dates ~~Adjusting~~or ~~time~~organizational ~~quotas and balances~~ ~~Making incremental changes to user accounts~~assignments

Full URL Example:

https://gate.zequenze.com/api/v1/user_token/123/

~~Request Body Example:~~

{
  "is_active": false,
  "description": "Account suspended - Payment overdue",
  "user_time": 0,
  "profile": ["basic_access"]
}

cURL Example:

curl -X PATCH "https://gate.zequenze.com/api/v1/user_token/123/1/" \
  -H "Authorization: Bearer YOUR_API_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "is_active": false,
    "user_time": 05400,
    "description": "Time balance updated",
    "profile": ["internet_access", "wifi_premium"]
  }'

Example Response:

{
  "id": 123,1,
  "username": "john.doe"john_doe",
  "external_id": "EXT_USER_789"EXT-USER-001",
  "klass": "premium_user",
  "password": "****"premium",
  "is_active": false,true,
  "organization": 5,1,
  "description": "AccountTime suspendedbalance - Payment overdue"updated",
  "date_joined": "2024-01-15T09:15T10:30:00Z",
  "last_login": "2024-03-10T14:22:01-20T14:25:00Z",
  "expiration": "2024-12-31T23:59:59Z",
  "profile": ["basic_access"internet_access", "wifi_premium"],
  "user_time": 05400
}

Response Codes:

Status	Description
200	Success - User ~~partially~~updated ~~updated~~successfully
400	Bad Request - Invalid ~~field~~data ~~values~~provided
401	Unauthorized - Invalid or missing ~~Bearer~~API token

403 Forbidden - Insufficient permissions 404 Not Found - User with specified ID does not exist ~~403~~ ~~Forbidden - Insufficient permissions to modify user~~

DELETE /user_token/{id}/

Description: Permanently removes a user account from the system. This action iscannot ~~irreversible~~be undone and will delete all associated user ~~data, tokens,~~data and ~~associated records. Use with caution and consider deactivating users instead of deletion for audit trail purposes.~~tokens.

Use Cases:

~~Removing test accounts from production systems~~

~~Cleaning up duplicate or invalid user accounts~~ ~~Complying with data deletion requirements (GDPR)~~ ~~Deprovisioning users who permanently leave organization~~ ~~Bulk cleanup of~~Remove expired or unused accounts Clean up test or temporary users Comply with data retention policies Decommission user accounts

Full URL Example:

https://gate.zequenze.com/api/v1/user_token/123/

~~Parameters:~~

~~Parameter~~ ~~Type~~ In ~~Required~~ ~~Description~~ id ~~integer~~ ~~path~~ ~~Yes~~ ~~Unique user ID to delete~~

cURL Example:

curl -X DELETE "https://gate.zequenze.com/api/v1/user_token/123/1/" \
  -H "Authorization: Bearer YOUR_API_TOKEN"

Response Codes:

Status	Description
204	No Content - User successfully deleted
401	Unauthorized - Invalid or missing ~~Bearer~~API token

403 Forbidden - Insufficient permissions 404 Not Found - User with specified ID does not exist ~~403~~ ~~Forbidden - Insufficient permissions to delete user~~ ~~409~~ ~~Conflict - User cannot be deleted due to existing dependencies~~

Common Use Cases

Use Case 1: ISPInternet CustomerCafé User Management

~~Manage~~Create time-based user accounts for internet ~~service provider~~café customers with ~~time-based~~specific ~~quotas~~time ~~and service tiers.~~allocations. Use ~~GET /user_token/~~POST to ~~list~~create users with user_time values, then use PATCH to update remaining time as customers byuse ~~organization,~~the ~~POST /user_token/ to provision new customers, and PATCH /user_token/{id}/ to adjust quotas and service classes.~~service.

Use Case 2: CorporateGuest Network Access Control

~~Control~~Set ~~employee~~up ~~network~~temporary ~~access~~guest accounts with expiration dates and limited AAA profiles. ~~Create~~Use ~~users~~the ~~with~~expiration field to automatically invalidate accounts and the profile array to restrict access to specific ~~network profiles, monitor login activity, and automatically disable accounts when employees leave the organization.~~services.

Use Case 3: Multi-tenantTenant SaaS UserOrganization Management

~~Manage~~Filter and manage users across ~~multiple client~~different organizations using the organization parameter. Use GET with ~~different~~organization ~~service~~filtering ~~levels.~~to ~~Filter~~display users byper ~~organization, assign appropriate AAA profiles based on subscription tiers,~~tenant, and ~~track~~ensure ~~usage~~proper ~~through~~isolation ~~time~~between ~~balances.~~organizations.

Use Case 4: Subscription Service Time Tracking

Monitor user time balances across your subscriber base using the balance=true parameter with GET requests. Use PATCH operations to add time when users purchase additional credits.

Use Case 5: External System Integration

Synchronize ~~user data between your primary system and GATE API using external_id fields. Create and update users based on HR system changes, maintaining referential integrity across platforms.~~

Use Case 5: Prepaid Service Management

~~Implement prepaid internet or network services by managing user time balances. Create~~ users with ~~initial~~external ~~time~~databases ~~quotas,~~or ~~monitor~~CRM ~~remaining~~systems ~~balances,~~using ~~and~~the ~~automatically~~external_id ~~deactivate~~field ~~users~~to ~~when~~maintain ~~time~~references ~~expires.~~between systems while managing authentication through GATE.

Best Practices

~~Use~~Time ~~Pagination Effectively~~Management: Always ~~implement~~specify ~~pagination~~time values in seconds for ~~user~~consistency. ~~lists~~Consider ~~using~~implementing ~~limit~~automatic ~~and~~time ~~offset~~deduction ~~parameters~~mechanisms tothat ~~avoid performance issues~~integrate with ~~large~~these ~~datasets~~API endpoints.
~~Implement~~Pagination: ~~Proper~~When ~~Filtering~~retrieving large user lists, use appropriate limit and offset values to prevent timeouts and improve performance. Start with limit=50 and adjust based on your needs.

Balance Monitoring: Use ~~organization~~the ~~and~~balance=true ~~username~~parameter ~~filters~~judiciously toas ~~reduce~~it ~~API~~adds ~~response~~computational ~~sizes~~overhead. ~~and~~Only ~~improve~~include ~~application~~it ~~performance~~when you specifically need current balance information.

~~Handle~~Security ~~Time Balances Carefully~~~~: When working with user_time values, always specify the balance=true parameter to get accurate remaining quotas~~

~~Secure Password Handling~~Considerations: Never store passwords in plain text. The API handles password hashing automatically, but ensure your client applications don't log or expose password ~~fields;~~data. ~~they're automatically masked in responses for security~~

~~Use~~Error ~~PATCH~~Handling: Implement retry logic for ~~Targeted~~network ~~Updates: Prefer PATCH over PUT for single field updates to reduce bandwidth~~failures and ~~avoid~~handle ~~accidentally~~404 ~~clearing~~errors ~~fields~~gracefully when users might have been deleted by other processes.

~~Implement~~Bulk ~~Soft Deletion~~Operations: ~~Consider~~For ~~setting~~creating ~~is_active=false~~or ~~instead~~updating ofmultiple ~~using~~users, ~~DELETE~~implement ~~for~~batching ~~better~~with ~~audit~~appropriate ~~trails~~delays ~~and~~to ~~data~~avoid ~~recovery~~overwhelming ~~options~~the API server.

~~Monitor~~Profile ~~Expiration Dates~~Management: ~~Regularly~~Maintain ~~check~~a ~~user~~reference ~~expiration~~list ~~dates~~of ~~and~~available ~~implement~~AAA ~~automated~~profiles ~~processes~~in your application to ~~handle expired accounts~~

~~Validate External IDs~~~~: When using external_id for system integration,~~ ensure ~~uniqueness~~you're ~~and~~assigning ~~implement~~valid ~~proper~~profiles ~~error~~to ~~handling~~users. ~~for synchronization failures~~