Conventions
The Jiwa REST API is based on the Data Transfer Object (DTO) pattern.
Every request accepts a DTO and almost every response is a DTO. You can, in some cases encode the request DTO as URL parameters instead, such as authentication and query requests.
The DTO classes can be obtained from the following routes:
Language | Route |
---|---|
C# | /types/csharp |
VB.NET | /types/vbnet |
F# | /types/fsharp |
Typescript | /types/typescript |
Java | /types/java |
Kitlin | /types/kotlin |
Swift | /types/swift |
Additionally, you can use your tool of choice to generate the DTO's from the Open API specification document located at /openapi
Content Negotiation
By default the Jiwa REST API is configured to accept json DTO's and return json DTO's. This default content type can be changed in the configuration, or the client can override the content type. If using the ServiceStack client, then there is no concern of the content type as it is automatically negotiated.
In addition to using the standard Accept
HTTP Header to retrieve the response a different format, you can also request an alternative Content-Type by appending ?format=ext to the query string, e.g:
- /Debtors/{DebtorID}?format=json
- /Debtors/{DebtorID}?format=xml
- /Debtors/{DebtorID}?format=csv
Or by appending the format .ext to the end of the route, e.g:
- /Debtors/{DebtorID}.json
- /Debtors/{DebtorID}.xml
- /Debtors/{DebtorID}.csv
Verbs
- GET operations are used to retrieve data
- POST operations are used to create data
- PATCH operations are used to update existing data
- DELETE operations are used to delete existing data
HTTP Response Codes
The response code returned will vary based on the type of operation and the result of the request.
200 OK
Will be returned for most GET operations - unless there was nothing to return, then a 204 No Content will be returned
201 Created
Will be returned for successful POST operations
204 No Content
Will be returned for successful DELETE operations
401 Not Authenticated
Will be returned if the operation requires the user to be authenticated, and they are not - or if they are authenticating and it failed due to bad credentials.
403 Forbidden
Will be returned if the user is authenticated, but do not have permission to perform the operation. See Setting Route Permissions for information on setting route permissions.
404 Not Found
Will be returned if the route is invalid, or the resource requested does not exist.
Authenticating
Most routes will require authentication. This is performed by invoking the /auth route and passing the username and password of a Jiwa user. A successful authentication will return an authentication response containing the SessionId. All subsequent requests will need to provide the SessionId as the value for the cookie "ss-id".
The response returned from the above request:
{"SessionId":"6w1nLX8r0sIrJHClX9Vj","UserName":"Admin","DisplayName":"","ResponseStatus":{}}
Example of calling a route
This example shows how to retrieve a debtor record for a known DebtorID.
The response returned from the above request will be a json document representing the full debtor DTO model from the business logic - see the meta data page for the DebtorGETRequest for more detail.
Stateful Interaction
While typically interactions with a REST API would be stateless, it is possible to interact in a stateful way by passing the Request header "jiwa-stateful" with the value of "true".
When stateful requests are received, the server caches the appropriate business logic and subsequent requests will interact with that in-memory object. This allows the consumer to perform actions like building a sales order without it being saved to the database until it is ready to save it.
Stateful requests will be committed to the database when a SAVE Request is received. Pending changes can also be discarded with an ABANDON Request.
Below is an example of a stateful interaction with the Debtors - the object is statefully retrieved, and updated until a SAVE Request is sent.
var client = new ServiceStack.JsonServiceClient("http://localhost"); var authResponse = client.Send<ServiceStack.AuthenticateResponse>(new ServiceStack.Authenticate() { provider = "credentials", UserName = "api", Password = "password", RememberMe = true }); // Read a debtor client.Headers.Add("jiwa-stateful", "true"); var debtorGETResponse = client.Get(new DebtorGETRequest { DebtorID = "0000000061000000001V" }); // Update debtor var debtorPATCHResponse = client.Patch(new DebtorPATCHRequest() { DebtorID = "0000000061000000001V", Name = "My new name", CreditLimit = 1000 }); // Update some more fields debtorPATCHResponse = client.Patch(new DebtorPATCHRequest() { DebtorID = "0000000061000000001V", Address1 = "SE2L10 100 Walker Street" }); // Save the changes var debtorSAVEResponse = client.Get(new DebtorSAVERequest() { DebtorID = "0000000061000000001V" }); }
When the server creates the business logic object, it is stored in a collection associated with the users session (this is actually a property of the Manager class - the ObjectDictionary). Subsequent stateful requests for the same type (eg: Debtor Maintenance operations) will retrieve any existing business logic for the same record, otherwise a new business logic instance is created.
This means two subsequent stateful operations for different debtors will result in two business logic objects created by the server, and they will remain independent of each other.
Conversely, two subsequent stateful operations for the same debtor will result only one business logic object created by the server, and the second operation will be working on the same business logic instance as the first operation.