All the following interactions will take place between the server running RERUM and the application server. Direct connection from client script to the RERUM server is not allowed. Please note that all examples are pointing at the development version of the RERUM API, not the production version. Only point to the production version once you have tested with the development version.
If you would like to see an example of a web application leveraging the RERUM API visit the testbed at http://tinydev.rerum.io or the GitHub codebase for TinyThings.
To have simple CRUD ability from client script without using a back end proxy, you can
use our public test endpoints.
NB: Your data will be public and could be removed at any time. This is for testing only
and will not be attributed to you in any way.
Patterns | Payloads | Responses |
---|---|---|
/id/_id |
empty |
200 {JSON} |
_id
—the id of the object in RERUM.{JSON}
—The object at _id
Example: http://devstore.rerum.io/v1/id/11111
Patterns | Payloads | Responses |
---|---|---|
/history/_id |
empty |
200 [{JSON}] |
_id
—the id of the object in RERUM.[{JSON}]
—an array of the resolved objects of all parent history objectsAs objects in RERUM are altered, the previous state is retained in a history tree. Requests return ancestors of this object on its branch. The objects in the array are listed in inorder traversal but ignoring other branches.
Example: http://devstore.rerum.io/v1/history/11111
Patterns | Payloads | Responses |
---|---|---|
/since/_id |
empty |
200 [{JSON}] |
_id
—the id of the object in RERUM.[{JSON}]
—an array of the resolved objects of all child history objectsAs objects in RERUM are altered, the next state is retained in
a history tree. Requests return all descendants of this object from all branches.
The objects in the array are listed in preorder traversal.
Example: http://devstore.rerum.io/v1/since/11111
Patterns | Payloads | Responses |
---|---|---|
/accessToken.action |
{JSON} |
200 {JSON} |
{JSON}
— Auth0 requirements here{JSON}
— Containing the Auth0 /oauth/token JSON
responseRERUM works as a proxy with Auth0 to help manage tokens from registered applications. This will form the request necessary to get a response from Auth0 which contains a new access token.
Example Response:
HTTP/1.1 200 OK
{
"access_token":"eyJz93a...k4laUWw",
"token_type":"Bearer",
"expires_in":86400
}
Patterns | Payloads | Responses |
---|---|---|
/refreshToken.action |
{JSON} |
200 {JSON} |
{JSON}
— Auth0 requirements here{JSON}
— Containing the Auth0 /oauth/token JSON
responseRERUM works as a proxy with Auth0 to help manage tokens from registered applications. This will form the request necessary to get a response from Auth0 which contains a new refresh token.
Example Response:
HTTP/1.1 200 OK
{
"access_token":"eyJz93a...k4laUWw",
"refresh_token":"GEbRxBN...edjnXbL",
"id_token":"eyJ0XAi...4faeEoQ",
"token_type":"Bearer",
"expires_in":86400
}
Patterns | Payloads | Responses |
---|---|---|
/create.action |
{JSON} |
201 Location: http://devstore.rerum.io/v1/id/11111 {JSON} |
{JSON}
—The object to create{JSON}
—Containing various bits of information about the create.Add a completely new object to RERUM and receive the location URI
in response. Accepts only single JSON objects for RERUM storage.
Mints a new URI and returns the object’s Location
as a header.
If the object already contains an @id
that matches an object in RERUM,
the API will direct the user to use update instead.
Example Response:
Location: http://devstore.rerum.io/v1/id/11111
{
"code" : 201,
"new_obj_state" : {
"@id": "http://devstore.rerum.io/v1/id/11111",
...
},
"iiif_validation" : {
"warnings" : ["Array of warnings from IIIF validator"],
"error" : "Error for why this object failed validation",
"okay" : 1 // 0 or 1 as to whether or not it passed IIIF validation
}
}
Patterns | Payloads | Responses |
---|---|---|
/batchCreate.action |
[{JSON}] |
201 Location: https://devstore.rerum.io/v1/id/11111, ... [{JSON}] |
[{JSON}]
—an array of objects to create in RERUM[{JSON}]
—an array of the resolved objects from the creation processThe array of JSON objects passed in will be created in the order submitted and the response will have the URI of the new resource or an error message in the body as an array in the same order. When errors are encountered, the batch process will attempt to continue for all submitted items.
Patterns | Payloads | Responses |
---|---|---|
/getByProperties.action |
{JSON} |
200 [{JSON}] |
{JSON}
—the properties in JSON format for the query[{JSON}]
—an array of the resolved objects of all objects that match the queryThis simple format will be made more complex
in the future, but should serve the basic needs as it is.
All responses are in a JSON Array, even if a single or zero
records are returned. RERUM will test for property matches,
so { "@type" : "sc:Canvas", "label" : "page 46" }
will match objects like
{
"@id": "https://devstore.rerum.io/v1/id/00000",
"otherContent": [],
"label": "page 46",
"width": 730,
"images": [],
"height": 1000,
"@type": "sc:Canvas"
}
and return each matched object in a JSON array in no particular order.
Patterns | Payloads | Responses |
---|---|---|
/patch.action |
{JSON} |
201 Location: http://devstore.rerum.io/v1/id/22222 {JSON} |
{JSON}
—The object to patch update.{JSON}
—Containing various bits of information about the patch.Some programming languages and some servers do not consider PATCH
to be a standard method.
As a result, some software is unable to make a PATCH
update request directly.
RERUM still wants these applications to fit within these standards. We support
the X-HTTP-Method-Override
header on POST
requests to make them act like PATCH
requests
in this API.
Example Method Override Request:
Method: POST
,
X-HTTP-Method-Override: PATCH
{JSON}
—An object containing the @id for update and the fields in that object to patch.This grants software that is otherwise unable to make these requests the ability to do so.
Example Response:
Location: http://devstore.rerum.io/v1/id/22222
{JSON}
{
"code" : 200,
"original_object_id" : "http://devstore.rerum.io/v1/id/11111",
"new_obj_state" : {
"@id": "http://devstore.rerum.io/v1/id/22222",
"__rerum":{
"history":{
"previous":"http://devstore.rerum.io/v1/id/11111",
...
}
...
}
...
},
"iiif_validation" : {
"warnings" : ["Array of warnings from IIIF validator"],
"error" : "Error for why this object failed validation",
"okay" : 1 // 0 or 1 as to whether or not it passed IIIF validation
}
}
NB:
__rerum
,@id
and_id
updates are ignored.Updates to deleted objects fail with an error.
Replace an existing record through reference to its internal
RERUM id. This will have the effects of update, set, and unset actions.
New keys will be created and keys not present in the request will not be present in the resulting object.
When an object is updated, the @id
will change. This results in the need to track history and
the previous version will be represented in the __rerum.history.previous
of the resulting object.
Patterns | Payloads | Responses |
---|---|---|
/update.action |
{JSON} |
200 Location: http://devstore.rerum.io/v1/id/22222 {JSON} |
{JSON}
—The requested new state for the object.{JSON}
—Containing various bits of information about the PUT update.Example Response:
Location: http://devstore.rerum.io/v1/id/22222
{
"code" : 200,
"original_object_id" : "http://devstore.rerum.io/v1/id/11111",
"new_obj_state" : {
"@id": "http://devstore.rerum.io/v1/id/22222",
"__rerum":{
"history":{
"previous":"http://devstore.rerum.io/v1/id/11111",
...
}
...
}
...
},
"iiif_validation" : {
"warnings" : ["Array of warnings from IIIF validator"],
"error" : "Error for why this object failed validation",
"okay" : 1 // 0 or 1 as to whether or not it passed IIIF validation
}
}
Patterns | Payloads | Responses |
---|---|---|
/batch_update.action |
[{JSON}] |
200 Location: http://devstore.rerum.io/v1/id/22222, ... [{JSON}] |
[{JSON}]
—an array of objects to update in RERUM. Each object MUST contain an @id
.[{JSON}]
—an array of the resolved objects in their new state from the update processThe array of JSON objects passed in will be updated in the order submitted and the response will have the URI of the resource or an error message in the body as an array in the same order.
NB:
__rerum
,@id
and_id
updates are ignored.Updates to deleted objects fail with an error.
Patterns | Payloads | Responses |
---|---|---|
/patch.action |
{JSON} |
200 Location: http://devstore.rerum.io/v1/id/22222 {JSON} |
{JSON}
—The requested new state for the object. MUST contain an @id
{JSON}
—Containing various bits of information about the PATCH update.A single object is updated by altering the set or subset of properties in the JSON
payload. This method only updates existing keys. If a new property is submitted in the payload
an error will be returned to the user as this is not a legal PATCH. If {"key":null}
is submitted,
the value will be set to null
. Properties not mentioned in the payload object remain
unaltered in the resulting object. This results in the need to track history and
the previous version will be represented in the __rerum.history.previous
of the resulting object.
Example Response:
Location: http://devstore.rerum.io/v1/id/22222
{
"code" : 200,
"original_object_id" : "http://devstore.rerum.io/v1/id/11111",
"new_obj_state" : {
"@id": "http://devstore.rerum.io/v1/id/22222",
"__rerum":{
"history":{
"previous":"http://devstore.rerum.io/v1/id/11111",
...
}
...
}
...
},
"iiif_validation" : {
"warnings" : ["Array of warnings from IIIF validator"],
"error" : "Error for why this object failed validation",
"okay" : 1 // 0 or 1 as to whether or not it passed IIIF validation
}
}
Patterns | Payloads | Responses |
---|---|---|
/set.action |
{JSON} |
200 Location: http://devstore.rerum.io/v1/id/22222 {JSON} |
{JSON}
—The requested new state for the object MUST contain an @id
{JSON}
—Containing various bits of information about the PATCH update. (see PUT Update for example)A single object is updated by adding all properties in the JSON payload. If a property already exists, a warning is returned to the user. This is a specialized PATCH update with the same request, response, and history behavior.
Patterns | Payloads | Responses |
---|---|---|
/unset.action |
{JSON} |
202 Location: http://devstore.rerum.io/v1/id/22222 {JSON} |
{JSON}
—The requested new state for the object. Must contain an @id
.{JSON}
—Containing various bits of information about the PATCH update. (see PUT Update for example)A single object is updated by dropping all properties
in the JSON payload list like {key:null}
. Keys must match
to be dropped otherwise a warning is returned to the user. This
is a specialized PATCH update with the same request, response, and history behavior.
Patterns | Payloads | Responses |
---|---|---|
/release.action |
String @id or {JSON} |
200 Location: http://devstore.rerum.io/v1/id/11111 {JSON} |
String @id
—The @id
of the version to be released.{JSON}
—The object. Must contain @id
.RERUM allows for the Generator of a version of an object to assign a released
state.
Objects in released states are locked such that further changes are refused.
Calling any overwrite or delete action on a released object will result in an error response.
The release action will alter the __rerum.isReleased
of the version identified
and alter __rerum.releases
properties throughout the object’s history without making a
new history state for the resulting object (the @id
does not change). Any version of an object
with an oa:Motivation
containing rr:releasing
will be released as soon as it is saved.
Example Response:
{
"code" : 200,
"previously_released_id" : "http://devstore.rerum.io/v1/id/00001",
"next_releases_ids" : ["http://devstore.rerum.io/v1/id/11112", ...],
"new_obj_state" : {
"@id": "http://devstore.rerum.io/v1/id/11111",
"__rerum":{
"isReleased":Date.now(),
"releases"{
...
}
...
}
...
},
"iiif_validation" : {
"warnings" : ["Array of warnings from IIIF validator"],
"error" : "Error for why this object failed validation",
"okay" : 1 // 0 or 1 as to whether or not it passed IIIF validation
}
}
RERUM allows the Generator of an object to delete that object.
Requests can be made by the string @id
or a JSON object containing the @id
.
RERUM DELETE does not remove anything from the server. Deleted objects are only marked as deleted.
Objects marked as deleted do not return in query results and may only be directly retrieved by @id
.
Patterns | Payloads | Responses |
---|---|---|
/delete.action |
String @id or {JSON} |
204 |
String @id
—The @id of the object.{JSON}
—The object to delete. Must contain @id
.There is no batch DELETE
planned.
A deleted object is easily recognized by __deleted
{
"@id" : "http://devstore.rerum.io/v1/id/11111",
"__deleted" : {
"object" : {
"@id" : "http://devstore.rerum.io/v1/id/11111",
"@type": "sc:Canvas",
"label": "page 46",
"width": 730,
"images": [],
"height": 1000,
"__rerum": {...}
},
"deletor" : GENERATOR,
"time" : 1516213216852
}
}
NB: The
__deleted.object
contains a snapshot of this version of the object when it was deleted, including its place in the history.
NB: The
__deleted.deletor
is the URI of the agent that marked this object as deleted.
*Proposed development
Each object carries a protected property called __rerum
containing a metadata
object about the version retrieved.
Property | Type | Description |
---|---|---|
@context | String | The RERUM context file http://store.rerum.io/v1/context.json. |
alpha | Boolean | An Internal flag for RERUM API version control. |
APIversion | String | Specific RERUM API release version for this data node, currently 1.0.0. |
history.prime | String | The URI of the object initializing this history. |
history.next | [String] | An array of URIs for the immediate derivatives of this version. A length > 1 indicates a branch. |
history.previous | String | The URI of the immediately previous version. |
generatedBy | String | Reference to the authenticated application which committed this version. |
createdAt | timestamp | Though the object may also assert this about itself, RERUM controls this value. |
isOverwritten | timestamp | Written when the overwrite endpoint is used. Exposes the date and time of the change. |
isReleased | timestamp | Written when the release endpoint is used. Exposes the date and time this node was released. |
releases.previous | String | URI of the most recent released version from which this version is derived. |
releases.next | [String] | Array of URIs for the first released decendant in the downstream branches. |
releases.replaces | String | URI of the previous release this node is motivated to replace. This is only present on released versions and will always match the value of releases.previous . |
NB: In the future, this may be encoded as an annotation on the object, using existing vocabularies, but for now the applications accessing RERUM will need to interpret this data if it is relevant.
History is stored through pointers that create a B-Tree. All nodes in the B-tree know the root node, the previous node, and the next node(s).
You can ask for all descendants or all ancestors from any given node so long as you know the node’s @id
and the node has not been deleted. See history parents and history children for more details about this process.
Deleted objects are not present in any B-Tree, but do exist as separate nodes that can be requested by the URI directly. A snapshot of their position at the time of deletion persists in these deleted nodes.
RERUM associates a foaf:Agent
with each action performed on an item in __rerum.generatedBy
which is referred to as the “Generator”. An API key authenticated application requesting an overwrite, release, or delete action can only do so if they are the Generator of the object the action is performed on. If an unauthorized application attempts one of these actions a 401 Unauthorized
response is returned with an explanation on how to branch versions instead.
Applications are strongly encouraged to record their own assertions within the objects, as consuming applications may reliably use a combination of the authoritative generatedBy
property and an intrinsic creator
to establish a reliable attribution.
RERUM creates an Agent
for each successful registration. This Agent
is in JSON-LD format and stored publicly. Authentication is managed by Auth0.
When RERUM creates an Agent
, Auth0 generates a refresh token and an access token. Applications are responsible for providing their access tokens via a Authentication
Header in their CRUD requests. Get requests do not require this header. As access tokens expire every hour, the applications are responsible for requesting and keeping track of valid access tokens. For an example on how to do this, see this example from TinyThings.
The API key at Auth0 persists for each application, which may manage its own sessions. Expired (unauthorized) sessions receive a 401 Unauthorized
response with instructions to refresh the session or to register the application.
Objects in RERUM should be JSON-LD, which means they should have an @context
provided when they are created. However, ordinary JSON documents are allowed in the store. These JSON documents can be interpreted as JSON-LD by referencing a JSON-LD context document in an HTTP Link Header. RERUM provides this @context
in the Link
header and also provides an @context
for the __rerum
terms mentioned above.
http://store.rerum.io/v1/context.json
RERUM fully supports IIIF standards and makes third party calls to the IIIF validation API. A piece of the RERUM response is the validation response of this API so the user knows whether or not their data conforms to this standard. Objects that fail IIIF validation are still saved.
RERUM follows the W3C Annotation protocol. To learn more about Web Annotation see https://www.w3.org/TR/annotation-protocol/
The intention of the API is to follow RESTful practices. These practices drive what requests we accept and what responses we have to the various scenarios around those requests. What it means to be RESTful varies wildly, but our efforts follow the guidelines at http://www.restapitutorial.com/resources.html
RERUM follows REST, IIIF and Web Annotation standards to form its responses to users. For more information about why RERUM chose a certain HTTP status code see the graph below.
If you are confused as to what type of requests give what reponse, review the Web Annotation and RESTful standards.
*Listing of responses is undergoing development at this time.