Introduction

Welcome to the official documentation for Kinesis API, a powerful all-in-one framework that transforms how you create, manage, and scale APIs.

What is Kinesis API?

Kinesis API is a comprehensive solution for API development that combines:

A custom-built, high-performance database system (Kinesis DB)
A visual editor for creating API routes with the X Engine
Integrated management tools that eliminate the need for multiple external services

Whether you're prototyping a simple API or building complex, interconnected systems, Kinesis API provides the tools to accelerate development without sacrificing quality or control.

Key Features

All-in-one Platform: API creation, database management, and execution in a single unified environment
Visual Route Builder: Create complex API logic without writing traditional code using our block-based system
Custom Database: Built-in ACID-compliant database system with multiple storage engines and strong schema management
Performance-Focused: Developed in Rust for maximum efficiency and reliability
Flexible Deployment: Deploy anywhere with our Docker images
Comprehensive Management: User authentication, role-based access control, and extensive monitoring capabilities

Getting Started

New to Kinesis API? Start here:

Installation Guide - Set up Kinesis API on your system
Initialization - Configure your instance for first use
API Tutorials - Build your first API with Kinesis API

Core Components

Dive deeper into the key technologies that power Kinesis API:

Kinesis DB - Our custom-built database system
X Engine - The visual API builder that makes complex logic accessible
API Reference - Complete reference for all available endpoints

Usage Guides

Learn how to use Kinesis API effectively:

Projects & Collections - Organize your APIs
Structures - Define your data models
Routes - Create and manage API endpoints
User Management - Configure authentication and access control

Support & Community

If you need help or want to contribute:

Check our FAQ for common questions
Join our community discussions
Submit bug reports or feature requests
Follow our tutorials for practical examples

Further Steps

Once you're familiar with the basics:

Learn about upgrading to new versions
Set up regular backups of your data
Explore the playground for testing your APIs

Thank you for choosing Kinesis API. We're excited to see what you'll build!

Kinesis DB

Kinesis DB is a custom-built, ACID-compliant embedded database system written entirely in Rust. It forms the core data storage and management component of the Kinesis API platform, eliminating dependencies on external database systems while providing significant performance advantages.

Key Features

Multiple Storage Engines

Kinesis DB offers multiple storage engines to match your application's specific needs:

In-Memory Engine: Ultra-fast, volatile storage ideal for temporary data, caching, or situations where persistence isn't required. Provides maximum performance but data is lost on shutdown.
On-Disk Engine: Durable storage with ACID guarantees for critical data. Ensures data survives system restarts and power failures through persistent storage and write-ahead logging.
Hybrid Engine: Combines the speed of in-memory operations with the durability of on-disk storage. Uses intelligent caching with persistent backing for balanced performance, making it the recommended default choice for most applications.

Schema Management

Kinesis DB provides robust schema management capabilities:

Flexible Schema Definition: Create and modify schemas at runtime, allowing your data model to evolve with your application's needs.
Strong Type System: Supports various data types with strict validation to ensure data integrity.
Comprehensive Constraints:
- Required fields (non-null constraints)
- Unique constraints to prevent duplicate values
- Default values for fields
- Pattern matching for string fields using regular expressions
- Min/max value constraints for numeric fields
- Custom validation rules
Schema Versioning: Track and manage schema changes over time.

Transaction Support

Kinesis DB is designed with full ACID compliance:

Atomicity: All operations within a transaction either complete fully or have no effect.
Consistency: Transactions bring the database from one valid state to another, maintaining all defined constraints.
Isolation: Multiple isolation levels to control how concurrent transactions interact:
- ReadUncommitted: Lowest isolation, allows dirty reads
- ReadCommitted: Prevents dirty reads
- RepeatableRead: Prevents non-repeatable reads
- Serializable: Highest isolation, ensures transactions execute as if they were sequential
Durability: Once a transaction is committed, its changes are permanent, even in the event of system failure.
Deadlock Detection and Prevention: Automatic detection and resolution of transaction deadlocks.
Write-Ahead Logging (WAL): Ensures durability and supports crash recovery.

Performance Optimizations

Kinesis DB incorporates several performance optimizations:

Efficient Buffer Pool Management: Minimizes disk I/O by caching frequently accessed data in memory.
Configurable Caching Strategies: Tune caching behavior to match your workload characteristics.
Automatic Blob Storage: Large string values are automatically managed for efficient storage and retrieval.
Asynchronous I/O Operations: Non-blocking I/O to maximize throughput.
Indexing: Supports various indexing strategies to speed up queries.
Query Optimization: Intelligent query planning and execution.

Query Interface

Kinesis DB provides an intuitive query interface:

SQL-Inspired Command Syntax: Familiar syntax for developers with SQL experience.
CRUD Operations: Comprehensive support for Create, Read, Update, and Delete operations.
Data Search Capabilities:
- Equality matching
- Range queries
- Pattern matching with regular expressions
- Full-text search capabilities
Multiple Output Formats:
- Standard output
- JSON formatting for API responses
- Table format for human-readable outputs

Configuration

Kinesis DB can be configured through environment variables:

Variable	Description	Possible Values	Default
`DB_NAME`	Name of the database (affects file names)	Any valid filename	`main_db`
`DB_STORAGE_ENGINE`	Select storage engine	`memory`, `disk`, `hybrid`	`hybrid`
`DB_ISOLATION_LEVEL`	Default transaction isolation level	`read_uncommitted`, `read_committed`, `repeatable_read`, `serializable`	`serializable`
`DB_BUFFER_POOL_SIZE`	Configure the buffer pool size	Any positive integer	`100`
`DB_AUTO_COMPACT`	Enable/disable automatic database compaction	`true`, `false`	`true`
`DB_RESTORE_POLICY`	Control how transactions are recovered after a crash	`discard`, `recover_pending`, `recover_all`	`recover_pending`

Best Practices

Performance Optimization

Choose the appropriate storage engine for your use case
Tune the buffer pool size based on your memory availability and working set size
Use indexes for frequently queried fields
Batch related operations in transactions
Consider denormalizing data for read-heavy workloads

Data Integrity

Use constraints to enforce business rules at the database level
Always use transactions for related operations
Implement proper error handling for database operations
Regularly back up your data

Schema Design

Design schemas with future growth in mind
Use appropriate data types for each field
Consider query patterns when designing your schema
Use meaningful field names and conventions

Data Management - How to manage data in Kinesis API
Structures - Working with data structures
Backups - Backing up your Kinesis DB data

Current Schema

Kinesis API Database Schema

The above diagram illustrates the current database schema used in Kinesis API. The schema represents the relationships between core components of the system, including users, configs, projects, collections, structures and data objects. This schema is implemented directly in Kinesis DB, leveraging the type system and constraints described earlier to ensure data integrity across all operations.

Conclusion

Kinesis DB provides a powerful, embedded database solution that combines performance, reliability, and ease of use. By integrating directly with Kinesis API, it eliminates the need for external database dependencies while providing all the features expected of a modern database system.

X Engine

The X Engine is the core system that powers Kinesis API's visual API development capabilities. It allows developers to design, implement, and deploy complex API routes using a block-based visual system, dramatically reducing the learning curve and development time typically associated with API creation.

Overview

At its essence, the X Engine is an execution framework that transforms visual blocks into functional API endpoints. By abstracting away much of the underlying complexity, it enables developers to focus on business logic rather than implementation details. The X Engine's modular architecture makes it both powerful for experienced developers and accessible to those with less backend expertise.

Core Components

The X Engine consists of four primary component types that work together to handle API requests:

Processors

Processors control the execution flow of your API logic:

Function: Handle the flow of execution within an API route
Examples:
- Loop: Iterate through collections of data
- If/Else: Implement conditional logic
- Try/Catch: Handle errors gracefully
- Return: Send a response back to the client
- Break: Exit from a loop
- Fail: Trigger an error state with a specific message

Processors are the backbone of API route logic, allowing you to implement complex algorithms and workflows through visual components.

Resolvers

Resolvers map requests to the appropriate data sources:

Function: Retrieve and manipulate data from various sources
Examples:
- Table: Query the Kinesis DB for records
- Request: Extract data from the incoming API request
- Auth: Access authentication information
- State: Manage state between route executions
- Config: Retrieve configuration values
- External: Connect to external APIs or services

Resolvers serve as the bridge between your API endpoints and the data they need to operate, whether from internal or external sources.

Convertors

Convertors transform data between different formats:

Function: Transform and validate data during processing
Examples:
- String: Manipulate text data
- Number: Perform mathematical operations
- Boolean: Evaluate logical conditions
- Array: Work with collections of items
- Object: Manipulate structured data
- JSON: Parse and stringify JSON data
- Date: Handle date and time operations

Convertors ensure that data is in the correct format at each stage of processing, reducing errors and simplifying data manipulation.

Definitions

Definitions specify the expected structure of data:

Function: Define the expected result format for each block
Examples:
- Schema: Define the structure of data objects
- Response: Specify the format of API responses
- Request: Describe expected request formats
- Error: Define standardized error structures

Definitions act as contracts between different parts of your API, ensuring consistency and making your API more predictable and easier to use.

How It Works

The X Engine processes API requests through the following stages:

Request Reception: When an API endpoint receives a request, the X Engine initializes the execution context.
Block Execution: The engine processes each block in sequence according to the route's configuration, with processors controlling the flow.
Data Retrieval: Resolvers fetch necessary data from appropriate sources.
Data Transformation: Convertors format and transform data as needed.
Validation: The engine validates data against definitions at various stages.
Response Generation: Finally, a response is constructed and returned to the client.

This entire process is visually designed through the Kinesis API interface, allowing you to create sophisticated API logic without writing traditional code.

Block Connections

Blocks in the X Engine are connected through a visual interface that represents the flow of data and execution:

Inputs: Each block can accept inputs from other blocks or direct values
Outputs: Blocks produce outputs that can be used by subsequent blocks
Conditions: Control blocks (like If/Else) can have multiple output paths
Variables: Named references allow data to flow between different parts of your route

The visual representation makes it easy to understand complex flows and troubleshoot issues.

Visual Editor

The X Engine is integrated with a visual editor in the Kinesis API web interface, providing:

Drag-and-drop Interface: Easily add and arrange blocks
Real-time Validation: Immediate feedback on configuration issues
Testing Tools: Test your routes directly from the editor
Version History: Track changes to your routes over time
Visual Debugging: Follow execution flow with visual indicators

The editor makes creating complex API routes accessible to developers of all skill levels.

Advanced Features

The X Engine includes several advanced features, some of which are still in active development, for complex API development:

Authentication Integration

The X Engine seamlessly integrates with Kinesis API's authentication system:

Role-based Access: Control which users can access specific routes
JWT Validation: Automatically validate authentication tokens
Permission Checking: Enforce granular permissions within routes

Custom Functions

Extend the X Engine with custom functions:

Reusable Logic: Create custom blocks for frequently used operations
Library Integration: Wrap third-party libraries in custom blocks
Complex Algorithms: Implement specialized business logic as reusable components

Middleware Support

Apply consistent processing across multiple routes:

Pre-processing: Validate requests before main processing
Post-processing: Format responses consistently
Error Handling: Implement global error management

Versioning

Manage API changes over time:

Route Versioning: Maintain multiple versions of the same endpoint
Migration Paths: Provide smooth transitions between versions
Deprecation Management: Gracefully phase out older endpoints

Best Practices

Performance Optimization

Minimize database queries by combining resolvers where possible
Use caching for frequently accessed data
Process only the data you need using selective field retrieval

Security Considerations

Always validate user input through definitions
Implement proper authentication and authorization
Use parametrized queries to prevent injection attacks
Avoid exposing sensitive data in responses

Maintainability

Name blocks clearly to document their purpose
Group related functionality into logical sections
Comment complex logic for future reference
Use consistent patterns across similar routes

Testing

Test edge cases and error conditions
Validate response formats against your definitions
Check performance under various load conditions
Test with realistic data volumes

API Reference - Complete reference for all available API endpoints
Routes - How to create and manage API routes in Kinesis API
Playground - Interactive environment for testing your APIs

Conclusion

The X Engine represents a paradigm shift in API development, combining the power and flexibility of traditional programming with the accessibility and speed of visual development. By abstracting complex implementation details while maintaining full capability, it enables developers of all skill levels to create professional-grade APIs in a fraction of the time typically required.

Whether you're prototyping a simple API or building complex, interconnected systems, the X Engine provides the tools to accelerate development without sacrificing quality or control.

API Reference

The Kinesis API provides a comprehensive set of RESTful endpoints that allow you to interact with all aspects of the platform programmatically. This reference documentation will help you understand how to authenticate, make requests, and interpret responses when working with the API.

Accessing the API Documentation

Kinesis API includes interactive OpenAPI documentation that allows you to:

Browse all available endpoints
View request and response schemas
Test API calls directly from your browser
Understand authentication requirements

You can access this documentation at:

Local installation: http://your-server-address/scalar
Official instance: https://api.kinesis.world/scalar

Authentication

Most API endpoints require authentication using one of the following methods:

Personal Access Tokens (PAT)

The recommended method for programmatic access is using Personal Access Tokens:

Generate a token in the web interface under Personal Access Tokens or PATs
Include the token in your requests using the Authorization header:

Authorization: Bearer your-token-here

Session-based Authentication

For web applications, you can use session-based authentication:

Call the /user/login endpoint with valid credentials
Store the returned token
Include the token in subsequent requests

Common Request Patterns

Standard Request Format

Most endpoints follow this pattern:

GET endpoints accept query parameters
DELETE endpoints accept query parameters
POST endpoints accept JSON data in the request body
PATCH endpoints accept JSON data in the request body
All endpoints return JSON responses

Request Example

POST /user/login HTTP/1.1
Host: api.kinesis.world
Content-Type: application/json

{
  "auth_data": "john_doe",
  "password": "Test123*"
}

Response Example

{
  "status": 200,
  "message": "Login Successful!",
  "user": {
    "id": 1,
    "first_name": "John",
    "last_name": "Doe",
    "username": "john_doe",
    "email": "john_doe@example.com",
    "password": "",
    "role": "VIEWER",
    "reset_token": "",
    "bio": "",
    "profile_picture": "",
    "is_public": false,
    "links": []
  },
  "uid": 1,
  "jwt": "eyJhbGciOiJIUzI1NiJ9.eyJzdWIiOiIxIiwiZXhwIjoxNjcyNTI2NDAwfQ.example_token"
}

Response Structure

All API responses follow a consistent structure:

{
  "status": 200,
  "message": "Operation successful",
  "data": {
    // Optional: Operation-specific data
  }
}

Status Codes

The API uses standard HTTP status codes:

2xx: Success
- 200: OK
- 201: Created
- 204: No Content
4xx: Client errors
- 400: Bad Request
- 401: Unauthorized
- 403: Forbidden
- 404: Not Found
- 422: Unprocessable Entity
5xx: Server errors
- 500: Internal Server Error

Error Handling

Error responses follow the same structure and include error details in the message field itself:

{
  "status": 400,
  "message": "Error: Invalid input data"
}

Pagination

For endpoints that return collections of items, pagination is supported:

Use offset and limit query parameters to control pagination
Responses include amount for the total amount of items

Example:

GET /config/fetch/all?uid=0&offset=2&limit=10

Using the API with the X Engine

The X Engine's visual API builder generates endpoints that follow the same patterns and conventions as the core Kinesis API. When you publish a route in the X Engine, it becomes available as a standard RESTful endpoint that can be accessed using the same authentication mechanisms.

Routes - More information on route management
Personal Access Tokens - Detailed guide on token management

Demo

Kinesis API offers a live demo instance where you can explore the platform's features without setting up your own installation. This allows you to get hands-on experience with the system and follow along with our tutorials using a ready-to-use environment.

Demo Instance

The demo instance is available at:

https://demo.kinesis.world/web/

Important Notice

⚠️ Data Erasure Warning: All data on the demo instance is automatically erased at regular intervals (typically every 24 hours at midnight UTC+4). Do not use the demo instance for storing any important information or for production purposes.

Default Credentials

You can access the demo instance using the following default credentials:

Role	Username	Password
Root	`root`	`Test123*`

What You Can Try

The demo instance is fully functional and provides access to all features of Kinesis API. Here are some activities you can explore:

Create and manage API routes using the X Engine
Define data structures and collections
Test API endpoints using the built-in playground
Upload and manage media files
Configure user settings and preferences

Following Tutorials

All tutorials in our documentation can be followed using the demo instance. When a tutorial refers to "your Kinesis API installation," you can use the demo instance instead.

Limitations

The demo instance has some limitations you should be aware of:

Some security settings (such as CORS policies) aren't properly configured, as the instance is intended for demonstration purposes only
Email functionality is disabled, preventing features like user registration and password reset from working completely
Media uploads are restricted to a maximum of 20MB per file to preserve server resources
The database may experience occasional performance throttling during periods of high user activity

Next Steps

Once you've explored the demo and are ready to set up your own instance:

Follow the Installation Guide to install Kinesis API on your system
Complete the Initialization process to set up your instance with default values
Configure your new installation using the Setup Guide to customize it for your specific needs

Feedback

We welcome feedback on your experience with the demo instance. If you encounter any issues or have suggestions for improvements, please contact us through the contact page or by emailing support@kinesis.world. We also encourage you to create a new ticket in the issue tracker.

Getting Started with Kinesis API

Welcome to the Getting Started guide for Kinesis API. This section will walk you through the process of installing, initializing, and setting up your first Kinesis API instance.

Prefer video tutorials? You can follow along with our YouTube walkthrough of this same project.

What You'll Learn

In this section, you'll learn how to:

Install Kinesis API using Docker or Rust
Initialize your installation with default settings
Secure your instance with proper credentials
Understand the key components created during initialization
Configure your system for production use

Quick Start Overview

Getting Kinesis API up and running involves two main steps:

Installation: Set up the Kinesis API software on your system
Initialization: Configure the system with initial data and settings

If you're eager to start right away, follow these quick steps:

# Create necessary directories
mkdir -p data/ public/

# Create configuration file
echo "TMP_PASSWORD=yourSecurePassword" > .env
echo "API_URL=http://your-domain-or-ip:8080" >> .env

# Run the Docker container
docker run --name kinesis-api \
  -v $(pwd)/.env:/app/.env \
  -v $(pwd)/data:/app/data \
  -v $(pwd)/public:/app/public \
  -p 8080:8080 -d \
  --restart unless-stopped \
  edgeking8100/kinesis-api:latest

# Initialize the system
curl "http://your-domain-or-ip:8080/init?code=code"

Then access the web interface at http://your-domain-or-ip:8080/web and log in with:

Username: root
Password: Test123*

Remember to change the default password immediately!

Detailed Guides

For more detailed instructions, refer to these guides:

Installation Guide - Comprehensive instructions for setting up Kinesis API
Initialization Guide - Detailed steps for initializing your installation

System Requirements

Before you begin, ensure your system meets these minimum requirements:

Memory: 128MB RAM minimum (512MB+ recommended for production)
CPU: 1 core minimum (2+ cores recommended)
Storage: 100MB for installation + additional space for your data
Operating System: Any OS that can run Docker or Rust
Network: Outbound internet access for installation

Next Steps After Installation

Once you've completed the installation and initialization process, you'll want to:

Let's get started with the Installation Guide.

Installation

This guide covers how to install and set up Kinesis API on your system. We offer two installation methods: Docker (recommended for most users) and direct Rust installation (useful for developers contributing to the project).

System Requirements

Before installing Kinesis API, ensure your system meets these minimum requirements:

Memory: 128MB RAM minimum (512MB+ recommended for production use)
CPU: 1 core minimum (2+ cores recommended for production)
Storage: 100MB for installation + additional space for your data
Operating System: Any OS that can run Docker or Rust (Linux, macOS, Windows)
Network: Outbound internet access for installation

Configuration Options

Before installing Kinesis API, you should decide on your configuration settings. These can be set through environment variables.

Essential Environment Variables

Variable	Description	Example
`TMP_PASSWORD`	Temporary password for setup	`StrongPassword123!`
`API_URL`	URL where Kinesis API will be accessed	`http://localhost:8080`

Database Configuration

You can configure the database system through additional environment variables:

Variable	Description	Possible Values	Default
`DB_NAME`	Database filename	Any valid filename	`main_db`
`DB_STORAGE_ENGINE`	Storage engine type	`memory`, `disk`, `hybrid`	`hybrid`
`DB_ISOLATION_LEVEL`	Transaction isolation level	`read_uncommitted`, `read_committed`, `repeatable_read`, `serializable`	`serializable`
`DB_BUFFER_POOL_SIZE`	Buffer pool size	Any positive integer	`100`
`DB_AUTO_COMPACT`	Automatic compaction	`true`, `false`	`true`
`DB_RESTORE_POLICY`	Recovery policy	`discard`, `recover_pending`, `recover_all`	`recover_pending`

Important: Changing database-related environment variables after your initial setup may cause data access issues or corruption. It's best to decide on these settings before your first initialization and maintain them throughout the lifecycle of your installation.

Docker Installation (Recommended)

Using Docker is the simplest and most reliable way to deploy Kinesis API.

Prerequisites

Install Docker on your system
Ensure you have permissions to create and manage Docker containers

Installation Steps

Create necessary directories for persistent storage:

mkdir -p data/ public/

Create a .env file with your configuration:

echo "TMP_PASSWORD=yourSecurePassword" > .env
echo "API_URL=http://your-domain-or-ip:8080" >> .env

Replace yourSecurePassword with a strong password and your-domain-or-ip with your server's domain or IP address.

Add any additional configuration options from the Configuration Options section above to your .env file.
Run the Docker container:

docker run --name kinesis-api \
  -v $(pwd)/.env:/app/.env \
  -v $(pwd)/data:/app/data \
  -v $(pwd)/public:/app/public \
  -p 8080:8080 -d \
  --restart unless-stopped \
  edgeking8100/kinesis-api:latest

This command:

Names the container kinesis-api
Mounts your local .env file and data/public directories
Exposes port 8080
Runs in detached mode (-d)
Configures automatic restart
Uses the latest Kinesis API image

Using a Specific Version

If you need a specific version of Kinesis API, replace latest with a version number:

docker run --name kinesis-api \
  -v $(pwd)/.env:/app/.env \
  -v $(pwd)/data:/app/data \
  -v $(pwd)/public:/app/public \
  -p 8080:8080 -d \
  --restart unless-stopped \
  edgeking8100/kinesis-api:0.25.0

Available Registries

Kinesis API images are available from multiple registries:

Registry	Image
Docker Hub	`docker.io/edgeking8100/kinesis-api:latest`
Docker Hub	`docker.io/edgeking8100/kinesis-api:<version>`
Gitea Registry	`gitea.konnect.dev/rust/kinesis-api:latest`
Gitea Registry	`gitea.konnect.dev/rust/kinesis-api:<version>`

Rust Installation (For Development)

If you're a developer who wants to build from source or contribute to Kinesis API, you can install using Rust.

Prerequisites

Install Rust (version 1.86 or newer)
Install development tools for your platform:
- Linux: build-essential package or equivalent
- macOS: Xcode Command Line Tools
- Windows: Microsoft Visual C++ Build Tools

Installation Steps

Clone the repository:

git clone https://gitea.konnect.dev/rust/kinesis-api.git
cd kinesis-api/

Create and configure the environment file:

cp .env.template .env

Edit the .env file to set at minimum:
- TMP_PASSWORD with a secure value
- API_URL with your server address (e.g., "http://localhost:8080")
Build and run the application:

cargo run --bin kinesis-api

For a production build:

cargo build --release --bin kinesis-api
./target/release/kinesis-api

Post-Installation Steps

After installation, you need to initialize Kinesis API:

Access the initialization endpoint:
- Make a GET request to <your-api-url>/init?code=code, or
- Navigate to the web interface at <your-api-url>/web
This creates a root user with:
- Username: root
- Password: Test123*
Important: Change the default password immediately after first login

For more details on initialization, see the Initialization Guide.

Verifying the Installation

To confirm Kinesis API is running correctly:

Open your browser and navigate to <your-api-url>/web
You should see the Kinesis API login page
Try logging in with the default credentials
Check that you can access the API documentation at <your-api-url>/scalar

Troubleshooting

Common Issues

Container won't start:
- Check Docker logs: docker logs kinesis-api
- Ensure ports aren't already in use
- Verify directory permissions
Can't access the web interface:
- Confirm the container is running: docker ps
- Check your firewall settings
- Verify the URL and port configuration
Database connection errors:
- Check the data directory permissions
- Verify your DB configuration variables

Getting Help

If you encounter issues not covered here:

Check our FAQ page
Contact support at support@kinesis.world
Submit a detailed bug report through our issue tracker

Next Steps

After installation, proceed to:

Initialization

After installing Kinesis API, you need to initialize the system before you can start using it. This one-time process creates the necessary database structures, default user, and configuration settings.

Initialization Methods

You can initialize Kinesis API using one of two methods:

Method 1: Using the Web Interface (Recommended)

Open your web browser and navigate to your Kinesis API installation:
```
http://your-domain-or-ip:8080/web
```
You'll be presented with an initialization screen if the system hasn't been set up yet.
Click the "Initialize" button to begin the process.

Initialize Button

The system will create the necessary database structures and a default root user.
Once initialization is complete, you'll be redirected to the login page.

Method 2: Using a REST API Request

If you prefer to initialize the system programmatically or via command line, you can use a REST API request:

curl "http://your-domain-or-ip:8080/init?code=code"

Or using any HTTP client like wget:

wget -qO - "http://your-domain-or-ip:8080/init?code=code"

A successful initialization will return a JSON response indicating that the system has been set up.

Default Root User

After initialization, a default root user is created with the following credentials:

Username: root
Password: Test123*

⚠️ IMPORTANT SECURITY NOTICE: You should change the default password immediately after your first login to prevent unauthorized access to your system.

What Gets Initialized

During initialization, Kinesis API sets up:

Database tables and their structures
Encryption key for securing sensitive data
System constraints for data validation
Default root user account
Core configuration settings
Initial projects structure
Collection templates
Media storage system

These components form the foundation of your Kinesis API installation, creating the necessary structure for you to start building your APIs.

Verifying Initialization

To verify that your system has been properly initialized:

Try logging in with the default credentials.
Check that you can access the dashboard.
Navigate to the Users section to confirm the root user exists.
Ensure the API documentation is accessible at /scalar.

Reinitializing the System

In most cases, you should never need to reinitialize your system after the initial setup. Reinitializing will erase all data and reset the system to its default state.

If you absolutely must reinitialize (for example, during development or testing):

Stop the Kinesis API service:
```
docker stop kinesis-api
```
Remove the data directory:
```
rm -rf data/
```
Create a fresh data directory:
```
mkdir -p data/
```
Restart the service:
```
docker start kinesis-api
```
Follow the initialization steps again.

Next Steps

After successfully initializing your Kinesis API instance:

Setup

After initializing your Kinesis API instance and logging in for the first time, you will be presented with a setup screen where you can configure various system settings. This page explains each configuration option to help you make informed decisions.

The Setup Process

The setup process is a one-time configuration wizard that appears after the first login with your root account. It allows you to customize essential system settings before you start using Kinesis API.

Setup Screen

Note: All settings configured during this initial setup can be modified later from the Configs page accessible at /web/configs. If you're unsure about any setting, it's generally safer to keep the default value.

Configuration Options

Environment

Default value: dev

The environment context in which this platform is being used. Typically corresponds to development stages such as:

dev (Development)
staging (Staging/Testing)
prod (Production)

This setting has minimal impact on system behavior but helps to identify the instance's purpose.

Project Name

Default value: Kinesis API

The name by which this platform will be identified. This appears in the user interface, email templates, and other user-facing areas. You can customize this to match your organization or project name.

API URL

Default value: Detected from your installation

The base URL where your API endpoints are accessible. This should include the protocol (http/https) and domain name or IP address.

Example: https://api.example.com

If your Kinesis API instance is running behind a reverse proxy, this should be the publicly accessible URL, not the internal address.

API Prefix (API PRE)

Default value: Empty

An optional prefix for all API routes. When set, all API endpoints will be prefixed with this value.

Example: Setting this to /api/v1 would change endpoint paths from:

/user/login to /api/v1/user/login

Leave this empty unless you have a specific need for URL path prefixing, such as API versioning or integration with other systems.

Front URL

Default value: [API_URL]/web

The URL where users will access the web interface. If you're using the default web interface, this should be your API URL followed by /web.

Example: https://api.example.com/web

If you're using a custom frontend or have deployed the web interface separately, specify its URL here.

Init Code

Default value: code

The security code required when calling the /init endpoint to initialize the system. Changing this provides a small layer of security against unauthorized initialization.

Recommendation: Change this from the default value to something unique, especially in production environments.

JWT Expire

Default value: 3600 (1 hour)

The lifetime of JWT authentication tokens in seconds. After this period, users will need to log in again.

Common values:

3600 (1 hour)
86400 (24 hours)
604800 (1 week)

Shorter times enhance security but require more frequent logins. Longer times improve user convenience but may increase security risks if tokens are compromised.

Upload Size

Default value: 2048 (2 MB)

The maximum allowed size for file uploads in kilobytes. Adjust based on your expected usage and server capacity.

Examples:

1024 (1 MB)
5120 (5 MB)
10240 (10 MB)

Setting this too high could lead to server resource issues if users upload very large files.

CORS Whitelist

Default value: Empty

A comma-separated list of domains that are allowed to make cross-origin requests to your API.

Examples:

example.com,api.example.com (Allow specific domains)
* (Allow all domains - not recommended for production)

For security reasons, only whitelist domains that legitimately need to access your API.

SMTP Settings

These settings configure the email sending capabilities of Kinesis API, which are required for features like user registration and password reset.

SMTP Username

Default value: Empty

The username for authenticating with your SMTP server. This is typically your email address.

Example: notifications@example.com

SMTP From Username

Default value: Same as SMTP Username

The email address that will appear in the "From" field of emails sent by the system. If left empty, the SMTP Username will be used.

Example: no-reply@example.com

SMTP Password

Default value: Empty

The password for authenticating with your SMTP server.

SMTP Host

Default value: Empty

The hostname or IP address of your SMTP server.

Examples:

smtp.gmail.com (for Gmail)
smtp.office365.com (for Office 365)
smtp.mailgun.org (for Mailgun)

SMTP Port

Default value: 587

The port number used to connect to your SMTP server.

Common values:

25 (Standard SMTP - often blocked by ISPs)
465 (SMTP over SSL)
587 (SMTP with STARTTLS - recommended)

Default value: PLAIN

The authentication mechanism used when connecting to the SMTP server.

Options:

PLAIN (Standard plain text authentication)
LOGIN (Alternative plain text authentication)
XOAUTH2 (OAuth 2.0-based authentication)

Most SMTP servers use PLAIN authentication. Only change this if your email provider specifically requires a different mechanism.

SMTP StartTLS

Default value: true (Checked)

Whether to use STARTTLS when connecting to the SMTP server. This upgrades an insecure connection to a secure one.

Most modern SMTP servers require this to be enabled for security reasons.

Testing SMTP Settings

Before completing the setup, you can test your SMTP configuration by clicking the "Check SMTP Credentials" button. This will attempt to connect to your SMTP server and verify that your credentials are correct.

Completing Setup

After configuring all settings, review your choices carefully before clicking "Complete Setup". The system will save your configuration and redirect you to the login page.

Important: It's recommended to restart your Kinesis API instance after completing the setup to ensure all settings take effect properly.

Skipping Setup

While it's possible to skip the setup process, this is not recommended as it may leave your system with incomplete or incorrect configuration. Only skip setup if you're an advanced user who plans to configure the system manually.

Modifying Settings Later

All settings configured during initial setup can be modified later from the Configs page at /web/configs. This allows you to make adjustments as your needs change without having to reinstall the system.

Configs Page

Changing the Default Password

To change the default password:

Log in to the web interface using the default credentials.
Navigate to User Settings (click on your username in the bottom-right corner then "Edit profile").

Go to edit profile

Select "Change Password".

Change password

Enter your new secure password twice.

Change Password Popup

Click "Save" to confirm updating the password.

Next Steps

After completing the setup, you'll be ready to start using Kinesis API. Consider exploring these areas next:

Core Components

Kinesis API is built around a set of core components that work together to provide a complete API development and management solution. Understanding these components is essential for effectively using the platform.

Architecture Overview

At a high level, Kinesis API's architecture consists of:

User Management System - Controls access and permissions
Projects & Collections - Organizes your API resources
Data Management - Stores and manipulates your application data
API Routes - Exposes functionality through RESTful endpoints
Supporting Systems - Provides additional functionality like events, media handling, and more

These components interact through the custom Kinesis DB database system and are exposed via both the web interface and API endpoints.

Key Components

Configs

The configuration system allows you to control how Kinesis API operates. This includes settings for:

Environment variables
SMTP settings for email
Security parameters
API endpoint behavior

Configs can be set during initial setup and modified later through the admin interface.

Constraints

Constraints define rules and validations that maintain data integrity across your API. They enforce:

Data type validations
Required fields
Value ranges and patterns
Relationship integrity
Business rules

Proper constraint management ensures your API behaves predictably and data remains valid.

Users

The user management system controls access to your Kinesis API instance. It includes:

User accounts with varying permission levels
Role-based access control (ROOT, ADMIN, AUTHOR, VIEWER)
Personal Access Tokens for API authentication
User profiles with customizable information

User management is critical for security and collaboration in multi-user environments.

Projects

Projects are the top-level organizational units in Kinesis API. They allow you to:

Group related APIs and resources
Separate concerns between different applications
Manage permissions at a high level
Create logical boundaries between different parts of your system

Each project can contain multiple collections, structures, and routes.

Collections

Collections are containers for data records of a specific type. They:

Organize your data into logical groups
Provide CRUD operations for data manipulation
Apply structure definitions to ensure data consistency
Enable efficient data retrieval and manipulation

Collections are the primary way you'll interact with data in Kinesis API.

Structures

Structures define the schema for your data. They:

Specify fields and their data types
Apply validation rules through constraints
Support nested and complex data models
Allow for custom structures with specialized behavior

Structures ensure your data follows a consistent format and meets your application's requirements.

Data

The data component provides interfaces for working with your stored information:

Creating, reading, updating, and deleting records
Querying and filtering data
Importing and exporting datasets
Managing relationships between records

Efficient data management is essential for building performant APIs.

Routes

Routes are the endpoints that expose your API functionality:

Created through the visual X Engine or programmatically
Define how requests are processed and responses are formed
Support various HTTP methods (GET, POST, PUT, DELETE, etc.)
Include the Playground for testing API behavior

Routes are the primary way external applications interact with your Kinesis API.

Events

The event system tracks important activities and changes:

Records system actions and user operations
Provides an audit trail for security and debugging

Events give you visibility into what's happening within your API.

Media

The media component handles file uploads and management:

Stores images, documents, and other file types
Offers integration with API responses

Media management allows your API to work with files and binary data.

REPL

The Read-Eval-Print Loop provides a command-line interface to interact with your API:

Execute commands directly against your database
Test operations without using the web interface
Perform advanced data manipulations

The REPL is a powerful tool for developers and administrators.

How Components Work Together

A typical workflow in Kinesis API might look like:

Setup: Configure the system with appropriate settings
Organization: Create projects to organize your work
Data Modeling: Define structures and custom structures
Storage: Create collections to group your data
API Creation: Build routes to expose functionality
Testing: Use the playground to verify behavior
Deployment: Make your API available to users
Monitoring: Track events and system performance

Understanding how these components interact is key to making the most of Kinesis API's capabilities.

Next Steps

To dive deeper into each component, follow the links to their dedicated documentation pages. A good starting point is understanding Users and Projects, as these form the foundation for most other operations in the system.

Configs

The configuration system in Kinesis API allows you to control and customize various aspects of the platform. These settings determine how the system behaves, what features are available, and how components interact with each other.

Accessing Configs

You can access and modify configuration settings from the Configs page in the web interface:

Log in to your Kinesis API instance
Navigate to /web/configs in your browser
You'll see a list of all available configuration options

Configs Page

Configuration Categories

Configuration items in Kinesis API are grouped into several categories for the purpose of this documentation:

Environment Settings: Control the overall environment context
System Identifiers: Determine how the system identifies itself
URL Configuration: Define endpoints and access points
Security Settings: Control authentication and security parameters
SMTP Configuration: Settings for email functionality
Resource Limits: Define system resource boundaries
Feature Toggles: Enable or disable specific features

Core Configuration Options

Environment Settings

ENV

Default: dev
Description: The environment context in which the platform is being used.
Possible Values: dev (Development), staging (Staging/Testing), prod (Production)
Impact: Primarily used for identification and logging; has minimal impact on system behavior.

System Identifiers

PROJECT_NAME

Default: Kinesis API
Description: The name by which the platform is identified in the UI and emails.
Impact: Appears in the user interface, email templates, and other user-facing areas.

URL Configuration

API_URL

Default: Determined during installation
Description: The base URL where API endpoints are accessible.
Example: https://api.example.com
Impact: Used as the base for all API communication and for generating links.

API_PRE

Default: Empty
Description: A prefix for all API routes.
Example: Setting this to /api/v1 would change endpoint paths from /user/login to /api/v1/user/login
Impact: Affects how all API endpoints are accessed.

FRONT_URL

Default: [API_URL]/web
Description: The URL where users access the web interface.
Example: https://api.example.com/web
Impact: Used for redirects and generating links to the web interface.

Security Settings

INIT_CODE

Default: code
Description: The security code required when calling the /init endpoint.
Impact: Protects against unauthorized initialization of the system.

JWT_EXPIRE

Default: 3600 (1 hour)
Description: The lifetime of JWT authentication tokens in seconds.
Common Values:
- 3600 (1 hour)
- 86400 (24 hours)
- 604800 (1 week)
Impact: Determines how frequently users need to reauthenticate.

CORS_WHITELIST

Default: Empty
Description: A comma-separated list of domains allowed to make cross-origin requests.
Example: example.com,api.example.com or * (allow all)
Impact: Critical for security; controls which external domains can access your API.

TOKEN_KEY

Default: Automatically generated during initialization
Description: The encryption key used for generating and validating JWT tokens.
Impact: Critical for security; changing this will invalidate all existing JWT tokens, forcing all users to log in again.

SMTP Configuration

These settings are required for user registration, password reset, and other email functionality.

SMTP_USERNAME

Default: Empty
Description: The username for SMTP server authentication.
Impact: Required for sending emails from the system.

SMTP_FROM_USERNAME

Default: Same as SMTP_USERNAME
Description: The email address that appears in the "From" field.
Impact: Affects how email recipients see the sender.

SMTP_PASSWORD

Default: Empty
Description: The password for SMTP server authentication.
Impact: Required for sending emails from the system.

SMTP_HOST

Default: Empty
Description: The hostname or IP address of the SMTP server.
Examples: smtp.gmail.com, smtp.office365.com
Impact: Determines which email server handles outgoing mail.

SMTP_PORT

Default: 587
Description: The port used to connect to the SMTP server.
Common Values: 25, 465, 587
Impact: Must match the requirements of your SMTP server.

SMTP_MECHANISM

Default: PLAIN
Description: The authentication mechanism for the SMTP server.
Options: PLAIN, LOGIN, XOAUTH2
Impact: Must match the authentication method supported by your SMTP server.

SMTP_STARTTLS

Default: true
Description: Whether to use STARTTLS when connecting to the SMTP server.
Impact: Security feature for encrypted email transmission.

SUPPORT_EMAIL

Default: support@kinesis.world
Description: The email address where contact form submissions are sent.
Impact: Determines where user inquiries are directed.

SMTP_FAKE_RECIPIENT

Default: hello@kinesis.world
Description: The email address used for testing SMTP configurations.
Impact: Used when testing email delivery; emails sent during testing will be addressed to this recipient.

Resource Limits

UPLOAD_SIZE

Default: 2048 (2 MB)
Description: Maximum allowed size for file uploads in kilobytes.
Impact: Affects media uploads and other file-related operations.

Feature Toggles

INITIAL_SETUP_DONE

Default: false (before setup), true (after setup)
Description: Indicates whether the initial setup process has been completed.
Impact: Controls whether the setup wizard appears on login.

Custom Configuration Items

In addition to the built-in configuration options, Kinesis API allows you to create and manage your own custom configuration settings:

Adding Custom Configs

On the Configs page, click the "Add Config" button
Enter a unique key name (use uppercase and underscores for consistency, e.g., MY_CUSTOM_CONFIG)
Enter the value for your configuration
Click "Save" to create the new configuration

Important Disclaimers

⚠️ Caution: Modifying or deleting configuration items can have serious consequences for your Kinesis API instance. Incorrect changes may lead to system instability, security vulnerabilities, or complete system failure. Be particularly careful when modifying:

Security-related settings like TOKEN_KEY

URL configurations like API_URL or API_PRE

SMTP settings that enable email functionality

Always test changes in a non-production environment first, and ensure you understand the purpose and impact of each configuration item before modifying it.

Managing Configuration Items

Modifying Configs

To modify a configuration:

Find the config you want to change in the list
Click the edit button (pencil icon) next to it
Enter the new value in the input field
Click "Save" to apply the change

Most configuration changes take effect immediately, but some may require a system restart.

Deleting Configs

You can delete configuration items that are no longer needed:

Find the config you want to delete in the list
Click the delete button (trash icon) next to it
Confirm the deletion when prompted

Configuration History

Kinesis API maintains a history of configuration changes, including:

What was changed
When it was changed
Who made the change

This audit trail is valuable for troubleshooting and compliance purposes.

Best Practices

Environment-Specific Settings: Use different configuration items for development, staging, and production environments
Security Configs: Regularly rotate sensitive settings like INIT_CODE
SMTP Testing: Always test email settings after changes using the "Test SMTP" function
Documentation: Keep a record of non-default configuration items and why they were changed
Review Regularly: Periodically review configuration items to ensure they remain appropriate

Constraints

Constraints in Kinesis API are system-level validation rules that enforce data integrity across different components of the system. They organize into a hierarchical structure that provides comprehensive validation for various system elements.

Understanding the Constraint System

The constraint system in Kinesis API has two primary levels:

Constraints: Top-level categories that apply to a group of related items (e.g., "config", "user", "project")
Constraint Properties: Specific validation rules within each constraint (e.g., "name" and "value" for configs)

This hierarchical approach ensures consistent validation across all aspects of the system while maintaining flexibility for different data types.

Constraint Structure

Constraints

Constraints are the top-level categories that group related validation rules. Examples include:

CONFIG: Applies to configuration settings
USER: Applies to user account data
PROJECT: Applies to project details
COLLECTION: Applies to collection information

Each constraint contains one or more constraint properties.

Constraint Properties

Constraint properties are the specific elements within a constraint that have defined validation rules. For example, the CONFIG constraint includes properties like:

name: Validates the configuration key name
value: Validates the configuration value

Each constraint property has its own set of validation rules:

Character Type:
- Alphabetical: Only letters (a-z, A-Z) are allowed
- Numerical: Only numbers (0-9) are allowed
- Alphanumerical: Both letters and numbers are allowed
Character Restrictions:
- Allow List: Specific characters that are permitted
- Deny List: Specific characters that are forbidden
Length Restrictions:
- Min Length: Minimum number of characters required
- Max Length: Maximum number of characters allowed

Viewing Constraints

Users with appropriate permissions can view the constraints system:

Log in to your Kinesis API instance
Navigate to /web/constraints in your browser
You'll see a list of all system constraints

Constraints Page

Each constraint can be expanded to show its associated constraint properties.

Viewing Constraint Properties

To view the properties of a specific constraint:

On the Constraints page, click on a constraint name
You'll see a list of properties associated with that constraint
Each property displays its:
- Character type (alphabetical, numerical, alphanumerical)
- Allow/deny lists
- Current min/max length settings

Modifying Constraints

⚠️ Important: End users can only modify the minimum and maximum length settings of constraint properties. The character types, allow/deny lists, and other fundamental aspects are locked to preserve system integrity.

Modifying Min/Max Values

To modify the min/max settings of a constraint property:

Navigate to the Constraints page (/web/constraints)
Click on a constraint to view its properties
Find the constraint property you want to modify
For the minimum value:
- Click the edit (pencil) icon next to the Min value
- Enter the new minimum value
- Click "Save" to apply the change
For the maximum value:
- Click the edit (pencil) icon next to the Max value
- Enter the new maximum value
- Click "Save" to apply the change

Best Practices

When modifying constraint property length settings:

Maintain Balance: Set minimum lengths to ensure data quality while setting maximum lengths to prevent excessive data
Consider Real-World Usage: Adjust length limits based on realistic use cases
Test After Changes: After modifying constraints, test affected components to ensure proper functionality
Document Changes: Keep a record of any constraint modifications for future reference
Preserve Relationships: Ensure related constraint properties have compatible settings

Users

The Users page in Kinesis API provides comprehensive user management capabilities for administrators. This interface allows root users to view, add, modify, and delete user accounts across the platform.

Access Control

Important: The Users management page is only accessible to users with the ROOT role. Other users attempting to access this page will be redirected to the dashboard.

Accessing the Users Page

To access the Users management page:

Log in with a ROOT user account
Navigate to /web/users in your browser or use the navigation menu

User Interface Overview

Users Management Page

The Users management interface includes:

A searchable list of all users in the system
Pagination controls for navigating through large user lists
Actions for adding new users, changing roles, and deleting accounts
User details including ID, username, name, email, and role

Viewing and Filtering Users

User List

The main section of the page displays a table of users with the following information:

ID: The unique identifier for each user
Username: The login name (links to user profile)
Name: The user's full name (first and last name)
Email: The user's email address
Role: The user's permission level (ROOT, ADMIN, AUTHOR, or VIEWER)
Actions: Buttons for available actions on each user

Filtering Users

To find specific users:

Use the search box at the top of the user list
Type any part of the username, name, email, or role
The list will automatically filter to show matching users

Pagination

For systems with many users:

Navigate between pages using the pagination controls
The page displays up to 15 users at a time

User Roles

Kinesis API implements a role-based access control system with four permission levels:

Role	Description
ROOT	Full system access, including user management and critical system settings
ADMIN	Administrative access to most features, but cannot manage users and configs
AUTHOR	Can create and modify content but has limited administrative access
VIEWER	Read-only access to most parts of the system

Adding New Users

Prerequisite: SMTP settings must be properly configured for the user registration process to work. See Configs for details on setting up email.

To add a new user:

Click the "Add a New User" button at the top of the page
Fill in the required information:
- First Name
- Last Name
- Username
- Email Address
Select the appropriate role for the user
Click "Create"

Behind the Scenes

When you create a new user:

The system generates a secure random password
An email is sent to the new user with their:
- Username
- Generated password
- Login instructions
The password is hashed before storage and cannot be retrieved later

Add User Modal

Changing User Roles

To change a user's role:

Find the user in the list
Click the role change button (star icon)
Select the new role from the available options
Confirm the change

Note that:

You cannot change the role of ROOT users
You cannot downgrade your own ROOT account

Change Role Modal

Deleting Users

To delete a user account:

Find the user in the list
Click the delete button (trash icon)
Confirm the deletion in the modal that appears

Important considerations:

User deletion is permanent and cannot be undone
All user data and associated content will be removed
ROOT users cannot be deleted through this interface
You cannot delete your own account

Delete User Modal

Password Management

The Kinesis API user management system handles passwords securely:

Passwords for new users are automatically generated with strong entropy
Passwords must contain lowercase letters, uppercase letters, numbers, and special characters
Passwords are never stored in plain text—only secure hashes are saved
Users can reset their passwords via the "Forgot Password" functionality
Admin users cannot see or reset passwords directly, only trigger the password reset process

User Profiles - Information about user profiles and settings
Personal Access Tokens - Managing API access tokens
Configs - System configuration including email settings

Personal Access Tokens

Personal Access Tokens (PATs) provide a secure way to authenticate with the Kinesis API programmatically. They allow you to interact with the API without using your username and password, making them ideal for automated scripts, external applications, and CI/CD pipelines.

Understanding Personal Access Tokens

PATs function similarly to passwords but have several advantages:

Fine-grained Permissions: Limit tokens to specific actions and resources
Limited Lifespan: Set expiration dates to reduce security risks
Independent Revocation: Revoke individual tokens without affecting other access methods
Traceability: Track which token is used for which operations

Accessing the PAT Management Page

To manage your Personal Access Tokens:

Log in to your Kinesis API account
Navigate to /web/pats in your browser or use the sidebar navigation

PAT Management Page

Creating a New Token

To create a new Personal Access Token:

Click the "Create a New Personal Access Token" button
Fill in the required information:
- Name: A descriptive name to identify the token's purpose
- Valid From: The date and time when the token becomes active
- Valid To: The expiration date and time for the token
- Permissions: Select the specific actions this token can perform
Click "Create" to generate the token

Create PAT Modal

Token Display - Important Notice

⚠️ Critical Security Information: When a token is first created, the actual token value is displayed only once. Copy this token immediately and store it securely. For security reasons, Kinesis API only stores a hashed version of the token and cannot display it again after you leave the page.

Managing Existing Tokens

The PAT management page displays all your existing tokens with their details:

Name: The descriptive name you assigned
ID: The unique identifier for the token
Valid From: The start date of the token's validity period
Valid Until: The expiration date of the token
Rights: The permissions assigned to the token

Updating Token Details

You can modify several aspects of an existing token:

Name: Click the pencil icon next to the token name
Valid From: Click the pencil icon next to the start date
Valid Until: Click the pencil icon next to the expiration date
Rights: Click the star icon to modify permissions

Note: For security reasons, you cannot view or modify the actual token value after creation. If you need a new token value, you must create a new token and delete the old one.

Deleting Tokens

To revoke access for a token:

Click the trash icon next to the token you want to delete
Confirm the deletion in the modal that appears

Once deleted, a token cannot be recovered, and any applications using it will lose access immediately.

Token Permissions

Kinesis API uses a granular permission system for PATs. When creating or editing a token, you can select specific permissions that control what actions the token can perform:

Permission Category	Examples
User Management	USER_FETCH, USER_CREATE, USER_UPDATE, USER_DELETE
Config Management	CONFIG_FETCH, CONFIG_CREATE, CONFIG_UPDATE
Project Management	PROJECT_FETCH, PROJECT_CREATE, PROJECT_UPDATE
Data Operations	DATA_FETCH, DATA_CREATE, DATA_UPDATE, DATA_DELETE
Media Management	MEDIA_FETCH, MEDIA_CREATE, MEDIA_UPDATE
Route Management	ROUTING_FETCH, ROUTING_CREATE_UPDATE

The available permissions depend on your user role. For example, ROOT users have access to all permissions, while other roles have a more limited set.

Using Personal Access Tokens

To use a PAT in API requests:

GET /user/fetch HTTP/1.1
Host: api.example.com
Authorization: Bearer your-token-here

Include the token in the Authorization header with the Bearer prefix for all authenticated requests.

Best Practices

Use Descriptive Names: Give each token a name that identifies its purpose or the application using it
Set Appropriate Expirations: Use shorter lifespans for tokens with broader permissions
Limit Permissions: Grant only the specific permissions needed for each use case
Rotate Regularly: Create new tokens and delete old ones periodically
Secure Storage: Store tokens securely, treating them with the same care as passwords
Monitor Usage: Regularly review your active tokens and delete any that are no longer needed

Token Security

Personal Access Tokens are equivalent to your password for the granted permissions. To keep your account and data secure:

Never share tokens in public repositories, client-side code, or insecure communications
Use environment variables or secure secret management systems to store tokens
Set expiration dates appropriate to the use case (shorter is better)
Delete tokens immediately if they might be compromised

API Reference - Learn how to use tokens with API endpoints
Users - Overview of user management
Security - Additional security considerations

Profile

User profiles in Kinesis API provide a way for users to personalize their identity within the platform and share information with others. This page explains how to view, edit, and manage user profiles.

Understanding User Profiles

Each user in Kinesis API has a profile that includes:

Basic Information: Name, username, and email address
Profile Picture: A visual representation of the user
Bio: A free-form text area for users to describe themselves
Links: Customizable links to external sites (social media, portfolio, etc.)
Visibility Settings: Controls who can view the profile

Profiles help users identify each other within the platform and provide context about their roles and expertise.

Viewing Profiles

Accessing Your Own Profile

To view your own profile:

Click your username in the navigation bar
Select "View Profile" from the dropdown menu

Alternatively, navigate directly to /web/user?id=your_username.

Viewing Other Users' Profiles

To view another user's profile:

Click on their username anywhere it appears in the interface
Navigate directly to /web/user?id=their_username

Note that you can only view profiles of other users if:

Their profile is set to public, or
You are logged in and have appropriate permissions

Profile Content

A typical user profile displays:

User Profile

Profile Picture: Either an uploaded image or initials if no image is provided
Full Name: The user's first and last name
Username: Prefixed with @ (e.g., @john_doe)
Email Address: Clickable to send an email
Bio: The user's self-description
Links: Icons linking to external sites

Profile Visibility

Profiles can be set to either:

Public: Visible to anyone, even unauthenticated visitors
Private: Only visible to authenticated users of the platform

This setting can be changed in the user settings page.

Editing Your Profile

To edit your profile:

Click your username in the navigation bar
Select "Edit Profile" from the dropdown menu
The settings page opens with the Profile tab active

Profile Settings

The profile settings page allows you to edit:

Profile Settings

Profile Picture

Upload: Click "Upload" to select an image from your device
Remove: Click "Remove" to delete your current profile picture and revert to initials

Profile pictures are automatically resized and optimized for display.

Basic Information

You can edit the following fields:

First Name: Your given name
Last Name: Your family name
Username: Your unique identifier on the platform (must be unique)
Email Address: Your contact email (must be unique)

Bio

The bio field supports plain text where you can describe yourself, your role, or any information you wish to share. Line breaks are preserved in the display.

Account Settings

The Account tab provides additional options:

ID: Your unique numeric identifier (non-editable)
Role: Your assigned role in the system (non-editable)
Account Type: Toggle between public and private profile visibility
Change Password: Update your login password
Log Out: End your current session

Two-Factor Authentication (2FA)

The 2FA tab allows you to add an additional security layer to your account. Two-factor authentication requires both your password and a time-based verification code when logging in.

2FA Settings

Setting Up 2FA

Navigate to the 2FA tab in Settings
Click the "Setup 2FA" button
A QR code and secret key will appear
Scan the QR code with an authenticator app (such as Google Authenticator, Authy, or Microsoft Authenticator)
Click "Verify 2FA" and enter the 6-digit code displayed in your authenticator app
After successful verification, your 2FA is active

Recovery Codes

When setting up 2FA, you'll receive a set of recovery codes. These one-time use codes allow you to access your account if you lose your authenticator device.

Click "Download Recovery Codes" to save these codes
Store them securely in a password manager or other safe location
Each code can be used only once

Disabling 2FA

If you need to disable 2FA:

Navigate to the 2FA tab in Settings
Click the "Disable 2FA" button
Confirm your decision when prompted

Security Best Practices

Never share your 2FA secret key or QR code with anyone
Store recovery codes securely and separately from your password
If you get a new device, set up 2FA again before disposing of your old device
Consider using a password manager that supports TOTP (Time-based One-Time Password) as a backup

Appearance

The Appearance tab lets you customize the interface:

Theme: Select from various color themes
Sidebar: Choose which items appear in your navigation sidebar

Profile Usage Best Practices

Complete Your Profile: A complete profile helps others identify and contact you
Appropriate Content: Keep profile information professional and relevant
Regular Updates: Keep your information current, especially contact details
Consider Visibility: Set appropriate visibility based on your role and preferences

Users - Overview of user management
Personal Access Tokens - Managing API access tokens

Projects

Projects in Kinesis API serve as the primary organizational units that group related collections, structures, and routes. They provide logical separation between different API initiatives and help maintain clear boundaries for access control and resource management.

Accessing Projects

The Projects page can be accessed by navigating to /web/projects in your browser after logging in.

Projects Page

Projects Visibility

The visibility of projects depends on your user role:

ROOT Users: Can see all projects created within the Kinesis API instance
All Other Users: Can only see projects they are members of

This role-based visibility ensures that users only have access to projects relevant to their work.

Project List Interface

The Projects interface includes:

A filterable, paginated list of projects
Project cards showing key information
Action buttons for various operations
A creation button for ROOT and ADMIN users

Each project card displays:

Project name
Project ID
Description
API path
Number of members

Creating a New Project

ROOT and ADMIN users can create new projects:

Click the "Create a new project" button
Fill in the required information:
- Name: A human-readable name for the project
- ID: A unique identifier (used in URLs and API paths)
- Description: A brief explanation of the project's purpose
- API Path: The base path for all API routes in this project

Create Project Modal

Project ID Requirements

Project IDs must:

Be unique across the Kinesis API instance
Contain only lowercase letters, numbers, and underscores
Start with a letter
Be between 3 and 50 characters long

API Path Conventions

API paths should:

Start with a forward slash (/)
Follow RESTful conventions
Be unique across all projects
Reflect the project's purpose

Example: /api/v1/inventory for an inventory management project

Project Member Management

Projects use member-based access control. Only users who are members of a project can access its resources.

Viewing Project Members

To view the members of a project:

Click the "View Members" button (user icon) on the project card
A modal will display all users who have access to the project

Adding Project Members

ROOT and ADMIN users can add members to a project:

Click the "Add Member" button (plus user icon)
Select users from the list to add them to the project
Click the add icon next to each user you want to add

Removing Project Members

ROOT and ADMIN users can remove members from a project:

Click the "Remove Member" button (user with x icon)
Select users from the list to remove them from the project
Click the remove icon next to each user you want to remove

Accessing a Project

To view or manage a specific project:

Click on the project name or use the "View Project" button
You'll be taken to the project detail page (/web/project?id=[project_id])

Project Page

The project detail page provides access to all collections within that project. Most operations described above (such as managing members and deleting the project) can also be performed directly from this page.

Project Page Capabilities

From the project detail page, you can:

View and edit the project's information (name, description, API path)
Manage project members (add or remove users)
Delete the project entirely
View and interact with all collections belonging to the project
Create new collections directly from this interface
Access collections to manage their data and structures

The centralized project interface makes it convenient to perform all project-related operations without returning to the main projects list, streamlining your workflow when working within a specific project context.

Deleting Projects

ROOT and ADMIN users can delete projects:

Click the "Delete Project" button (trash icon) on the project card
Confirm the deletion in the modal that appears

⚠️ Warning: Deleting a project permanently removes all collections, structures, data, and routes associated with it. This action cannot be undone.

Filtering Projects

To find specific projects:

Use the filter input at the top of the project list
Type any part of the project name, ID, description, or API path
The list will automatically filter to show matching projects

Pagination

For systems with many projects:

Navigate between pages using the pagination controls
The page displays up to 8 projects at a time

Project Lifecycle

Projects typically follow this lifecycle:

Creation: A ROOT or ADMIN user creates the project
Configuration: Collections and structures are defined
Development: API routes are created using the X Engine
Maintenance: The project evolves with new features and updates
Retirement: When no longer needed, the project is deleted

Collections - Manage data collections within projects
Structures - Define data structures for collections
Data - Work with data stored in collections
Routes - Create API endpoints for project resources

Collections

Collections in Kinesis API are containers for related data within a project. They serve as the primary way to organize, structure, and access your API's data resources.

Understanding Collections

Collections in Kinesis API work similarly to tables in a traditional database or collections in document databases. Each collection:

Belongs to a specific project
Contains data records that conform to defined structures
Can be accessed via API endpoints

Collections are the building blocks for storing and organizing your application data in a logical, accessible manner.

Accessing Collections

Collections can be accessed in two ways:

Via the Web Interface: Navigate to /web/project?id=[project_id] and view the collections listed for that project
Via the API: Use the collections endpoints with appropriate authentication

Collection Management Interface

Project Page

The collection management interface within a project includes:

A list of all collections in the project
Tools for creating new collections
Access to individual collection settings and structures

Creating a Collection

To create a new collection:

Navigate to a project page
Click the "Create a New Collection" button
Fill in the required information:
- Name: A human-readable name for the collection
- ID: A unique identifier (used in API paths and queries)
- Description: An optional description of the collection's purpose
Click "Create" to save the collection

Create Collection Modal

Collection ID Requirements

Collection IDs must:

Be unique within a project
Contain only lowercase letters, numbers, and underscores
Start with a letter
Be between 3 and 50 characters

Collection Details Page

Clicking on a collection name takes you to the collection details page, where you can:

View and edit collection information
Manage structures within the collection
Manage custom structures
Delete the collection if needed

Collection Page

Updating Collection Information

You can update a collection's information by:

Clicking the appropriate edit button next to the collection detail
Modifying the information in the modal that appears
Saving your changes

Available updates include:

Changing the collection name
Modifying the collection description

Note that the collection ID cannot be changed after creation as it would break existing data references.

Managing Structures

Each collection contains structures that define the fields of data it can store. From the collection details page, you can:

Create new structures using the "Create New" button in the Structures section
Edit existing structures by clicking the edit icon
Delete structures when they're no longer needed

See the Structures documentation for more details on creating and managing structures.

Managing Custom Structures

Custom structures allow you to create complex, reusable data templates. From the collection details page, you can:

Create new custom structures
Navigate to existing custom structures to edit their components
Delete custom structures when they're no longer needed

See the Custom Structures documentation for more information.

Deleting a Collection

To delete a collection:

Navigate to the collection details page
Click the "Delete Collection" button
Confirm the deletion in the modal that appears

⚠️ Warning: Deleting a collection permanently removes all its structures and associated data. This action cannot be undone.

Data Operations

Once you've set up a collection with appropriate structures, you can perform various operations on its data:

Create new records
Retrieve records through queries
Update existing records
Delete records

See the Data documentation for details on working with collection data.

Best Practices

For optimal collection management:

Logical Organization: Group related data into collections
Clear Naming: Use descriptive names and IDs that reflect the collection's purpose
Documentation: Add thorough descriptions to help team members understand the collection's use
Structure Planning: Design your structures carefully before adding significant amounts of data
Regular Maintenance: Periodically review collections to ensure they remain relevant and well-organized

Projects - Information about project management
Structures - Defining data structures for collections
Custom Structures - Creating complex, reusable structures
Data - Working with collection data

Structures

Structures in Kinesis API define individual fields within collections. Unlike traditional database systems where you might define an entire schema at once, Kinesis API uses structures to represent each individual field in your data model. This granular approach offers greater flexibility and reusability.

Understanding Structures

Each structure represents a single field that can be used within collections. Key characteristics of structures include:

Each structure defines exactly one field with its data type and validation rules
Structures can be reused across multiple collections
They establish specific validation rules for individual data elements
They support both simple and complex data types

Database Analogy: If a collection is like a database table, a structure is like a single column in that table.

Managing Structures from Collections

Structures are created, edited, and deleted from within the collection interface. To access and manage structures:

Navigate to a project page
Click on a collection to view its details
Locate the "Structures" section on the collection details page

Collection Page

Creating a Structure

To create a new structure:

From the collection details page, click the "Create New" button in the Structures section
Fill in the required information:
- Name: A unique identifier for the structure (field name)
- Description: Optional explanation of the structure's purpose
In the same modal, define the properties for this field:
- Select the appropriate data type
- Configure validation rules
- Set default values if needed
Click "Create" to save the structure

Create Structure Modal

Structure Properties

When creating or editing a structure, you configure properties for that specific field:

Type: The type of data to be represented (Text, Email, Password, Markdown, Integer, etc.)
Required: Whether this field must be present in all records
Unique: Whether values must be unique across all records
Default: An optional default value
Min/Max: Constraints for strings (length) or numbers (value)
Pattern: A regular expression pattern for validation (strings only)

Field Types

Structures support various field types to model different kinds of data:

Type	Description	Example
TEXT	Basic text data for names, descriptions, etc.	`"Hello World"`
EMAIL	Email addresses with validation	`"user@example.com"`
PASSWORD	Securely stored password strings	`"********"`
MARKDOWN	Rich text with markdown formatting	`"# Heading\n\nParagraph with bold text"`
INTEGER	Whole number values	`42`, `-7`
FLOAT	Decimal number values	`3.14159`, `-2.5`
ENUM	Value from a predefined list of options	`"pending"` (from ["pending", "approved", "rejected"])
DATE	Calendar date values	`"2023-04-15"`
DATETIME	Date and time values with timezone	`"2023-04-15T14:30:00Z"`
MEDIA	References to uploaded media files	`"uploads/image-123.jpg"`
BOOLEAN	True/false values	`true`, `false`
UID	System-generated unique identifier	`"5f8d43e1b4ff..."`
JSON	Arbitrary JSON data structures	`{"name": "John", "tags": ["important", "new"]}`

Note on List/Array Types: Kinesis API supports array/list structures through the "array" flag. When enabled for a structure, it allows storing multiple values of the same type. Each element in the array must conform to the structure's validation rules (e.g., min/max values). In the interface, array elements are split by commas. This approach maintains type validation while providing flexibility for storing multiple related values within a single field. Arrays are useful for simple collections of values; for more complex relationships, consider using separate collections with UID references (similar to foreign keys in traditional databases).

Editing Structures

To modify an existing structure:

From the collection details page, find the structure in the list
Click the edit icon (pencil) next to the structure
Make your changes in the structure editor
Save your changes

Note: Modifying structures may affect existing data. Be cautious when changing field types or removing fields that contain data.

Deleting Structures

To remove a structure:

From the collection details page, find the structure in the list
Click the delete icon (trash) next to the structure
Confirm the deletion when prompted

⚠️ Warning: Deleting a structure will affect any data that uses it. Ensure that no critical data depends on the structure before deleting.

Best Practices

When designing structures:

Use Clear Naming: Choose descriptive, consistent names for structures and fields
Start Simple: Begin with minimal structures and evolve them as needed
Consider Validation: Use constraints to ensure data quality
Think About Relationships: Plan how structures will relate to each other
Document Your Design: Add clear descriptions to structures and fields
Versioning Strategy: Consider how to handle structure changes over time

Collections - Managing collections that contain structures
Custom Structures - Creating reusable structure templates
Data - Working with data based on structures

Custom Structures

Custom structures in Kinesis API provide a way to create reusable, complex data templates that can be referenced across multiple collections. They function as user-defined object types that encapsulate related fields, enabling more sophisticated data modeling than is possible with basic structures alone.

Understanding Custom Structures

While regular structures define individual fields within a collection, custom structures allow you to define composite data types with multiple fields grouped together. Think of them as objects or complex data types that:

Act as templates for complex data
Can be reused across multiple collections
Encapsulate related fields
Support nested data models
Enable modular data design

Accessing Custom Structures

Custom structures are managed through the collection interface but have their own dedicated pages:

Navigate to a project page
Select a collection
Find the "Custom Structures" section
Click on a custom structure name to access its dedicated page

Collection Page

Creating a Custom Structure

To create a new custom structure:

From a collection page, find the "Custom Structures" section
Click the "Create New" button
Fill in the required information:
- Name: A descriptive name for the custom structure
- ID: A unique identifier used in API references
- Description: An explanation of the custom structure's purpose
Click "Create" to save the custom structure

Create Custom Structure Modal

Custom Structure Detail Page

After creating a custom structure, you can access its detail page by clicking on its name. The custom structure page allows you to:

View and edit the custom structure's information
Add structures (fields) to the custom structure
Manage existing structures
Delete the custom structure

Custom Structure Page

Managing Custom Structure Information

From the custom structure page, you can modify various aspects:

Updating Custom Structure ID

Click the "Update Custom Structure ID" button
Enter the new ID in the modal
Click "Submit" to save the changes

Updating Custom Structure Name

Click the "Update Custom Structure Name" button
Enter the new name in the modal
Click "Submit" to save the changes

Updating Custom Structure Description

Click the "Update Custom Structure Description" button
Enter the new description in the modal
Click "Submit" to save the changes

Adding Structures to a Custom Structure

To add a field to a custom structure:

From the custom structure page, click the "Create New" button in the Structures section
Fill in the field details:
- Name: Field name
- ID: Field identifier
- Description: Field description
- Type: Data type selection
- Additional properties like min/max values, default value, etc.
Click "Create" to add the field

The process for adding fields to a custom structure is identical to adding structures to a collection. See the Structures documentation for more details on field types and properties.

Example Use Cases

Custom structures are particularly useful for:

Address Information

Create an "Address" custom structure with fields like:

Street
City
State/Province
Postal Code
Country

This can then be used in "Customer", "Shipping", "Billing" and other collections.

Contact Details

Build a "Contact Info" custom structure containing:

Email
Phone
Website
Social Media Profiles

Product Specifications

Define "Product Specs" with varying attributes based on product type:

Dimensions
Weight
Material
Technical Specifications

Modifying Custom Structures

When you modify a custom structure by adding, changing, or removing fields, these changes affect all places where the custom structure is used. This provides a powerful way to update data models across your entire API without making changes in multiple locations.

However, be aware that:

Removing fields from a custom structure could impact existing data
Changing field types might require data migration
Adding required fields to an existing custom structure could cause validation errors

Deleting Custom Structures

To delete a custom structure:

From the custom structure page, click the "Delete Custom Structure" button
Confirm the deletion in the modal that appears

⚠️ Warning: Deleting a custom structure will affect all places where it's used. Ensure it's not referenced by any other structures before deletion.

Best Practices

When working with custom structures:

Descriptive Naming: Use clear, descriptive names that indicate the custom structure's purpose
Logical Grouping: Group related fields that naturally belong together
Appropriate Granularity: Create custom structures at the right level of detail
Reusability: Design custom structures to be reusable across multiple collections
Documentation: Add thorough descriptions to help team members understand the purpose and usage of each custom structure
Versioning Strategy: Consider how to handle changes to custom structures over time

Collections - Managing collections that contain custom structures
Structures - Understanding basic structures and field types
Data - Working with data based on complex structures

Data

Data objects in Kinesis API represent the actual content stored within your collections. Each data object is associated with a specific collection and contains values for the structures (fields) defined within that collection. This page explains how to create, view, edit, and manage your data.

Understanding Data in Kinesis API

In Kinesis API, data is organized as follows:

Projects contain Collections
Collections define Structures (fields)
Data Objects store values for these structures
Each data object contains Data Pairs (structure-value associations)

A data pair links a specific structure (field) with its corresponding value. For example, if you have a "title" structure, a data pair might associate it with the value "My First Article".

🔒 Security Note: All data pairs in Kinesis API are encrypted by design by default. This ensures your data remains secure both at rest and during transmission, providing built-in protection for sensitive information without requiring additional configuration.

Accessing Data Management

To access data management in Kinesis API using the web UI:

Navigate to /web/data in your browser or click "Data" in the main navigation menu
You'll see a list of all projects you have access to
Click on a project to go to /web/data/project?id=project_id and view its collections
Click on a collection to go to /web/data/collection?project_id=project_id&id=collection_id and view its data objects

This hierarchical navigation allows you to drill down from projects to collections to individual data objects.

Data Page

Browsing Projects and Collections

The data management interface follows a logical structure that mirrors your data organization:

Projects Level

At /web/data, you'll see all projects you have access to:

Each project is displayed as a card with its name and description
You can filter projects using the search box at the top of the page
Click on any project to navigate to its collections

Collections Level

At /web/data/project?id=project_id, you'll see all collections within the selected project:

Each collection is displayed with its name and description
Click on any collection to view its data objects

Viewing Data Objects

From a collection page, you can see all data objects within that collection:

Data Page

Each data object card displays:

The object's nickname (if set) or ID
Number of structures and custom structures
Action buttons for various operations

Data Object Details

To view the details of a data object:

Click the view button (open link icon) or its title on a data object card
You'll be taken to a page displaying all structure values
Regular structures are displayed at the top
Custom structures are displayed below, grouped by their custom structure type

View Data

Creating Data Objects

Users with ROOT, ADMIN, or AUTHOR roles can create new data objects:

From a collection page, click the "Create New" button
Enter an optional nickname for the data object
Fill in values for each structure (field)
For custom structures, fill in values for their component fields
Click "Create" to save the data object

Create Data

Structure Value Types

When creating or editing data objects, different structure types accept different kinds of input:

Structure Type	Input Method	Notes
TEXT	Text field	Regular text input
EMAIL	Email field	Validates email format
PASSWORD	Password field	Masked input with show/hide option
MARKDOWN	Markdown editor	With formatting toolbar
INTEGER	Number input	Whole numbers only
FLOAT	Number input	Decimal values allowed
ENUM	Dropdown	Select from predefined options
DATE	Date picker	Calendar interface
DATETIME	Date-time picker	Date and time selection
MEDIA	File upload	Upload images
BOOLEAN	Checkbox	True/false toggle
UID	Text field	Valid ID
JSON	Text area	Raw JSON input

Editing Data Objects

Users with ROOT, ADMIN, or AUTHOR roles can edit existing data objects:

From the data object view page, click "Edit Data"
Modify the values for any structures
Click "Update" to save your changes

Edit Data

Deleting Data Objects

Users with ROOT, ADMIN, or AUTHOR roles can delete data objects:

From the data object view or edit page, click "Delete Data"
Confirm the deletion in the modal that appears

⚠️ Warning: Deleting a data object permanently removes it from the system. This action cannot be undone.

User Permissions

Access to data objects is controlled by user roles:

Role	View	Create	Edit	Delete
ROOT	✓	✓	✓	✓
ADMIN	✓	✓	✓	✓
AUTHOR	✓	✓	✓	✓
VIEWER	✓	✗	✗	✗

Additionally, users can only access data within projects they are members of.

Working with Custom Structures

When a collection includes custom structures, data objects for that collection will include sections for each custom structure type:

Each custom structure is displayed in its own card
The card contains fields for all structures within the custom structure
Values are entered and displayed just like regular structures

Custom structures allow for more complex, nested data models within your collections.

Filtering and Pagination

When viewing data objects in a collection:

Use the filter box to search for objects by nickname or ID
Use pagination controls to navigate through large collections
Adjust the page size if needed

Best Practices

For effective data management:

Use Descriptive Nicknames: Give data objects clear, meaningful nicknames to make them easier to identify
Regular Backups: Back up your data regularly, especially before making major changes
Consider Relationships: Design your data structure to reflect relationships between different objects

Collections - Managing collections that contain data
Structures - Understanding field types and data validation
Custom Structures - Working with complex data structures

Routes

Routes in Kinesis API are the endpoints that expose your API functionality to the outside world. They define how your API responds to HTTP requests, what logic executes when an endpoint is called, and what data is returned to clients. Kinesis API provides a powerful visual route builder called the Flow Editor to create complex API routes without having to write traditional code.

Understanding Routes

Each route in Kinesis API has:

Route ID: A unique identifier for the route within the project
Path: The URL path through which the route is accessed
HTTP Method: The HTTP method the route responds to (GET, POST, PUT, PATCH, DELETE, etc.)
Authentication Settings: Optional JWT authentication requirements
Parameters: URL parameters the route can accept
Body: JSON body structure the route expects (for POST, PUT, PATCH)
Flow: The visual logic flow that defines the route's behavior

Routes belong to projects and are managed at the project level, allowing you to organize related functionality in a logical way.

Accessing Routes Management

To access the routes management interface:

Log in to your Kinesis API account
Navigate to /web/routes in your browser or click "Routes" in the main navigation menu
You'll see a list of all projects you have access to
Click on a project to view and manage its routes at /web/routes/project?id=project_id

Routes Page

Browsing Projects and Routes

Projects Level

At /web/routes, you'll see all projects you have access to:

Each project card displays the project's name, ID, description, and API path
You can filter projects using the search box
View the number of members in each project
Click the eye icon to view project members
Click on any project to navigate to its routes

Routes Level

At /web/routes/project?id=project_id, you'll see all routes within the selected project:

Each route card shows the route's ID and path
You can filter routes using the search box
View, edit, or delete routes using the action buttons
Create new routes using the "Create New" button (ADMIN and ROOT users only)

Routes Page

Route API Path Construction

The complete API path that clients will use to access your route is constructed from multiple components:

Base URL: The root URL of your Kinesis API instance (e.g., https://api.kinesis.world)
API Prefix: The global prefix for all routes in your instance (e.g., /api/v1)
Project Path: The API path segment for the project the route belongs to (e.g., /my_project)
Route Path: The path defined for the route (e.g., /users/fetch/all)

The final API path is a concatenation of these components, forming a URL like https://api.kinesis.world/api/v1/x/my_project/users/fetch/all (notice the /x/).

HTTP Methods

When creating a route, you must select which HTTP method it will respond to. Each method has a specific purpose:

Method	Description	Body Support	Typical Use
GET	Retrieve data without modifying resources	No	Fetching data, searching, filtering
POST	Create new resources or submit data	Yes	Creating new records, submitting forms
PUT	Replace an entire resource with new data	Yes	Complete resource updates
PATCH	Apply partial updates to a resource	Yes	Partial resource updates
DELETE	Remove a resource	No*	Deleting records
OPTIONS	Describe communication options for the resource	No	CORS preflight requests, API discovery
HEAD	Like GET but returns only headers, no body	No	Checking resource existence/metadata

*Note: While DELETE technically can have a body according to HTTP specifications, it's uncommon and not supported in all clients.

JWT Authentication

Routes can be configured to require JSON Web Token (JWT) authentication. To implement JWT authentication in your API:

Create a collection to store user data with at least:
- A unique identifier field (e.g., uid or username)
- Password field (should be stored securely)
- Any additional user information
Create two essential routes:
- Login/Token Creation: Validates credentials and issues a JWT
- Token Validation: Verifies the JWT and extracts user information

JWT Authentication Flow

User sends credentials to the login route
Route validates credentials against the user collection
If valid, a JWT containing the user's identifier is created and returned
For subsequent requests to protected routes, the client includes this token
Protected routes verify the token before processing the request

Note: For a detailed implementation guide, see the JWT Authentication Tutorial.

URL Parameters

URL parameters allow clients to pass data to your API through the URL. When configuring a route, you can define:

Parameter Delimiter: The character that separates parameters in the URL
- Typically ? for the first parameter and & for subsequent ones
- Example: /users/search?name=John&age=30
Parameter Definitions: For each parameter, you define:
- Name: The parameter identifier
- Type: Data type (String, Number, Boolean, etc.)

Kinesis API automatically validates incoming parameter values against these definitions, rejecting requests with invalid parameters.

Request Body

For routes using HTTP methods that support a request body (POST, PUT, PATCH), you can define the expected structure of that body. Define each field in the body with:

Name: The field identifier
Type: Data type expected (Integer, Float, String, Boolean, Array, Other)

Kinesis API validates incoming request bodies against this defined structure, ensuring data integrity before your route logic executes.

⚠️ Important Note: For comprehensive understanding of routes, authentication flows, and advanced API features, please refer to the Tutorials Section. These tutorials provide step-by-step guides and real-world examples that demonstrate how to effectively use Kinesis API's routing capabilities.

Flow Editor: Visual Route Builder

The Flow Editor is a powerful visual programming tool that allows you to create complex API logic without writing traditional code. When creating or editing a route, you'll use the Flow Editor to define the route's behavior:

The left panel contains draggable blocks representing different operations
Drag blocks onto the canvas to build your route's logic flow
Connect blocks to define the execution path
Configure each block's properties by clicking on it

Available blocks include:

Block Type	Purpose
FETCH	Retrieve data from collections
ASSIGNMENT	Assign values to variables
TEMPLATE	Create response templates
CONDITION	Add conditional logic (if/else)
LOOP	Iterate over data sets
END_LOOP	Mark the end of a loop
FILTER	Filter data based on conditions
PROPERTY	Access object properties
FUNCTION	Execute predefined functions
OBJECT	Create object literals
UPDATE	Update existing data
CREATE	Create new data
RETURN	Return a response and end execution

Creating Routes

Users with ROOT or ADMIN roles can create new routes:

From a project's routes page, click the "Create New" button
Fill in the route configuration details:
- Route ID: Unique identifier for the route (e.g., fetch_users)
- Route Path: The URL path (e.g., /users/fetch/all)
- HTTP Method: Select GET, POST, PUT, PATCH, DELETE, etc.
Configure optional JWT authentication requirements
Define URL parameters and their delimiter (typically & or ;)
Define the expected request body structure (for POST, PUT, PATCH)
Build your route logic using the visual X Engine flow editor
Click "Create" to save the route

Create Route

Viewing Routes

To view a route's details:

From a project's routes page, click the view button (open link icon) on a route card
You'll see the route's configuration details:
- Basic information (ID, path, method)
- Authentication settings
- Parameter definitions
- Body structure
- Visual representation of the route's logic flow

From the route view page, you can:

Test the route using the Playground
Edit the route (if you have appropriate permissions)
Delete the route (if you have appropriate permissions)

View Route

Editing Routes

Users with ROOT or ADMIN roles can edit existing routes:

From a project's routes page, click the edit button (pencil icon) on a route card
Modify any aspect of the route:
- Update the route path
- Change the HTTP method
- Modify authentication settings
- Add or remove parameters
- Change body structure
- Redesign the logic flow using the X Engine
Click "Update" to save your changes

Edit Route

Deleting Routes

Users with ROOT or ADMIN roles can delete routes:

From a project's routes page, click the delete button (trash icon) on a route card
Alternatively, click "Delete Route" on the route view or edit page
Confirm the deletion in the modal that appears

⚠️ Warning: Deleting a route permanently removes it from the system. Any applications or services relying on this route will no longer be able to access it.

User Permissions

Access to routes management is controlled by user roles:

Role	View Routes	Create Routes	Edit Routes	Delete Routes
ROOT	✓	✓	✓	✓
ADMIN	✓	✓	✓	✓
AUTHOR	✓	✗	✗	✗
VIEWER	✓	✗	✗	✗

Additionally, users can only access routes within projects they are members of.

Testing Routes

After creating or modifying a route, you should test it to ensure it behaves as expected:

Use the Playground to send test requests to your route
Verify that the response matches your expectations
Test different parameter values and edge cases
Check error handling by sending invalid requests

Route Security Best Practices

Authentication: Use JWT authentication for routes that access sensitive data or perform modifications
Input Validation: Validate all incoming data using appropriate blocks in your flow
Error Handling: Add proper error handling to provide meaningful feedback on failures
Rate Limiting: Consider implementing rate limiting for public-facing routes
Minimal Exposure: Only expose the minimum data necessary in responses
Testing: Thoroughly test routes before making them available to clients

X Engine - Detailed information about the X Engine
Playground - Testing your API routes

Blocks

Blocks are the building components of Kinesis API's X Routing system. Each block represents a specific operation that can be connected together to form a complete route logic. This guide explains how to use each block type and its configuration options.

Overview

The X Routing system uses a visual flow-based approach where you connect different blocks to process requests, manipulate data, and return responses. Each block has specific inputs, outputs, and configuration options.

Common Block Properties

All blocks share some common properties:

Connections: Each block (except START) has an input connector and an output connector
Expansion: Click the header to expand/collapse a block's configuration panel
Deletion: Click the X button to delete a block (not available for START block)

Block Types

START Block

The START block is the entry point of every route flow. It is automatically created and cannot be deleted.

Purpose: Indicates where the request processing begins
Configuration: None required
Connections: Can only connect to one block via its output

FETCH Block

Fetch Block

The FETCH block retrieves data from a collection and stores it in a local variable.

Purpose: Retrieve data from collections
Configuration:
- Local Name: Variable name to store the fetched data
- Reference Collection: Name of the collection to fetch data from
Usage: Use FETCH to retrieve data that you'll need later in your route processing
Example: Fetching user data to validate permissions

{
  "local_name": "users",
  "ref_col": "users_collection"
}

ASSIGNMENT Block

Assignment Block

The ASSIGNMENT block assigns a value to a variable based on conditions and operations.

Purpose: Create or modify variables
Configuration:
- Local Name: Variable name to store the result
- Conditions: Optional conditions to evaluate
- Operations: Operations to perform if conditions are met
Usage: Use for variable creation, data transformation, or conditional assignments
Example: Creating a status variable based on user role

{
  "local_name": "isAdmin",
  "conditions": [
    {
      "operands": [
        {
          "ref_var": true,
          "rtype": "STRING",
          "data": "role"
        },
        {
          "ref_var": false,
          "rtype": "STRING",
          "data": "admin"
        }
      ],
      "condition_type": "EQUAL_TO",
      "not": false,
      "next": "NONE"
    }
  ],
  "operations": [
    {
      "operands": [
        {
          "ref_var": false,
          "rtype": "BOOLEAN",
          "data": "true"
        }
      ],
      "operation_type": "NONE",
      "not": false,
      "next": "NONE"
    }
  ]
}

TEMPLATE Block

Template Block

The TEMPLATE block creates a string using a template with variable substitution.

Purpose: Create dynamic strings by combining static text and variable values
Configuration:
- Local Name: Variable name to store the templated string
- Template: The template string with placeholders
- Data: Variables to use in the template
- Conditions: Optional conditions for template processing
Usage: Use for creating dynamic messages, formatted content, or SQL queries
Example: Creating a personalized greeting

{
  "local_name": "greeting",
  "template": "Hello, {}! Welcome to {}.",
  "data": [
    {
      "ref_var": true,
      "rtype": "STRING",
      "data": "user.name"
    },
    {
      "ref_var": false,
      "rtype": "STRING",
      "data": "Kinesis API"
    }
  ],
  "conditions": []
}

CONDITION Block

Condition Block

The CONDITION block evaluates logical conditions and controls flow based on the result.

Purpose: Implement conditional logic and flow control
Configuration:
- Conditions: Set of conditions to evaluate
- Action: What to do if conditions are met (CONTINUE, BREAK, FAIL)
- Fail Object: Status and message to return if action is FAIL
Usage: Use for validation, permission checks, or branching logic
Example: Validating user permissions

{
  "conditions": [
    {
      "operands": [
        {
          "ref_var": true,
          "rtype": "STRING",
          "data": "user.role"
        },
        {
          "ref_var": false,
          "rtype": "STRING",
          "data": "admin"
        }
      ],
      "condition_type": "NOT_EQUAL_TO",
      "not": false,
      "next": "NONE"
    }
  ],
  "action": "FAIL",
  "fail": {
    "status": 403,
    "message": "Unauthorized: Insufficient permissions"
  }
}

LOOP Block

Loop Block

The LOOP block iterates over a range of values or an array.

Purpose: Process multiple items or iterate a specific number of times
Configuration:
- Local Name: Variable name for the current loop value
- Start: Starting value for the loop
- End: Ending value for the loop
- Step: Optional increment value (defaults to 1)
- Include Last: Whether to include the end value in the iteration
Usage: Use for batch processing, pagination, or iterative operations
Example: Processing a list of items

{
  "local_name": "index",
  "start": {
    "ref_var": false,
    "rtype": "INTEGER",
    "data": "0"
  },
  "end": {
    "ref_var": true,
    "rtype": "INTEGER",
    "data": "items.length"
  },
  "step": null,
  "include_last": false
}

END_LOOP Block

End Loop Block

The END_LOOP block marks the end of a loop section.

Purpose: Indicates where a loop section ends
Configuration:
- Local Name: Must match the corresponding LOOP block's local name
Usage: Must be paired with a LOOP block
Example: Closing a loop that processes items

{
  "local_name": "index"
}

Filter Block

The FILTER block filters items in an array based on specified criteria.

Purpose: Reduce an array to only items that match criteria
Configuration:
- Local Name: Variable name to store the filtered results
- Reference Variable: Variable containing the array to filter
- Reference Property: Optional property to filter by
- Filters: Filtering criteria
Usage: Use to find matching items or remove unwanted elements
Example: Filtering active users

{
  "local_name": "activeUsers",
  "ref_var": "users",
  "ref_property": "status",
  "filters": [
    {
      "operand": {
        "ref_var": false,
        "rtype": "STRING",
        "data": "active"
      },
      "operation_type": "EQUAL_TO",
      "not": false,
      "next": "NONE"
    }
  ]
}

PROPERTY Block

Property Block

The PROPERTY block accesses or manipulates properties of objects or arrays.

Purpose: Extract values from objects/arrays or perform operations on them
Configuration:
- Local Name: Variable name to store the result
- Data: The object or array to operate on
- Apply: Operation to apply (GET_PROPERTY, LENGTH, GET_FIRST, GET_LAST, GET_INDEX)
- Additional: Additional information for the operation (e.g., property name, index)
Usage: Use to extract specific data or compute properties of collections
Example: Getting an object's property

{
  "local_name": "userName",
  "property": {
    "data": {
      "ref_var": true,
      "rtype": "OTHER",
      "data": "user"
    },
    "apply": "GET_PROPERTY",
    "additional": "name"
  }
}

FUNCTION Block

Function Block

The FUNCTION block executes predefined functions.

Purpose: Perform common operations using built-in functions
Configuration:
- Local Name: Variable name to store the function result
- Function ID: The function to execute (e.g., V4, GENERATE_TIMESTAMP, GENERATE_JWT_TOKEN, PAGINATE)
- Parameters: Function parameters
Usage: Use for utility operations like generating IDs or formatting dates
Example: Generating a UUID

{
  "local_name": "newId",
  "func": {
    "id": "V4",
    "params": []
  }
}

OBJECT Block

Object Block

The OBJECT block creates a new object with specified key-value pairs.

Purpose: Construct custom objects
Configuration:
- Local Name: Variable name to store the created object
- Pairs: Key-value pairs for the object
Usage: Use to create response objects or structured data
Example: Creating a user profile object

{
  "local_name": "profile",
  "pairs": [
    {
      "id": "name",
      "data": {
        "ref_var": true,
        "rtype": "STRING",
        "data": "user.name"
      }
    },
    {
      "id": "email",
      "data": {
        "ref_var": true,
        "rtype": "STRING",
        "data": "user.email"
      }
    }
  ]
}

UPDATE Block

Update Block

The UPDATE block modifies existing data in a collection based on specified criteria and rules.

Purpose: Perform targeted updates to collection data
Configuration:
- Reference Collection: Collection containing the data to update
- Reference Property: Property path used to identify or navigate the data structure (can be empty or in the form 'field' or 'custom_structure.field')
- Add: Optional value to add (used for arrays or numeric additions)
- Set: Optional value to set (used for direct replacement of values)
- Filter: Used when the property is an array to filter which elements of the array should be updated
- Targets: Specifies which data objects to update by doing checks against the fields within them
- Save: Boolean indicating whether to persist changes immediately
- Conditions: Optional conditions that must be met for the update to proceed
Usage: Use for complex data updates, especially when you need to update specific fields conditionally or work with arrays
Example: Updating specific fields of user records that match certain criteria

{
  "ref_col": "users",
  "ref_property": "profile.settings",
  "add": null,
  "set": {
    "ref_var": true,
    "rtype": "OTHER",
    "data": "newSettings"
  },
  "filter": {
    "operand": {
      "ref_var": false,
      "rtype": "STRING",
      "data": "darkMode"
    },
    "operation_type": "EQUAL_TO",
    "not": false,
    "next": "NONE"
  },
  "targets": [
    {
      "field": "userId",
      "conditions": [
        {
          "operands": [
            {
              "ref_var": false,
              "rtype": "STRING",
              "data": "123"
            }
          ],
          "condition_type": "EQUAL_TO",
          "not": false,
          "next": "NONE"
        }
      ]
    }
  ],
  "save": true,
  "conditions": []
}

How the UPDATE Block Works:

Initial Conditions Check: The block first evaluates any conditions to determine if the update should proceed.
Target Selection:
- The block evaluates the targets to determine which data objects should be updated
- Each target specifies a field and conditions for selecting data objects
- For example, in the above JSON, it will select data objects where userId equals "123"
Property Navigation:
- The ref_property specifies which property path to update within the selected objects
- If empty, the entire object is considered for update
Filter Application:
- If the property is an array, filter determines which array elements to update
- For example, it might update only array elements where a certain property equals a certain value
Value Modification:
- set: Directly replaces the value of the specified property
- add: For arrays, adds elements; for numbers, performs addition operation
Persistence:
- If save is true, changes are immediately persisted to the database
- If false, changes remain in memory for further processing

CREATE Block

Create Block

The CREATE block creates new data in a collection.

Purpose: Insert new records into collections
Configuration:
- Reference Collection: Collection where data will be created
- Reference Object: Object containing the data to create
- Save: Whether to save immediately
- Conditions: Optional conditions for creation
Usage: Use to insert new records based on request data
Example: Creating a new user

{
  "ref_col": "users",
  "ref_object": "newUser",
  "save": true,
  "conditions": []
}

RETURN Block

Return Block

The RETURN block ends processing and returns a response to the client.

Purpose: Generate and send the API response
Configuration:
- Pairs: Key-value pairs for the response object
- Conditions: Optional conditions for the response
Usage: Use to complete the request and send data back to the client
Example: Returning a success response with data

{
  "pairs": [
    {
      "id": "status",
      "data": {
        "ref_var": false,
        "rtype": "INTEGER",
        "data": "200"
      }
    },
    {
      "id": "data",
      "data": {
        "ref_var": true,
        "rtype": "OTHER",
        "data": "result"
      }
    }
  ],
  "conditions": []
}

Best Practices

Start Simple: Begin with basic flows and add complexity as needed
Use Descriptive Names: Choose clear variable names for readability
Handle Errors: Include appropriate condition blocks to validate inputs and handle errors
Test Thoroughly: Test your routes with various inputs to ensure they work as expected
Document Your Logic: Add comments to your flows to explain complex logic

Routes - Managing routes in Kinesis API
Collections - Working with data collections
Data - Working with data in Kinesis API

Playground

The Playground is an interactive testing environment built into Kinesis API that allows you to explore, test, and debug your API endpoints. It provides a convenient way to experiment with your API routes without needing external tools.

Overview

The Playground consists of three main components:

Main Playground Page: Lists projects and previously saved requests
Routes Page: Shows all routes within a selected project
Request Page: Allows you to test individual routes with custom parameters and bodies

All requests and responses are saved locally in your browser, allowing you to replay them later.

Note: The Playground is designed for testing and development purposes. While powerful for quick testing, it isn't intended to replace specialized API testing tools for comprehensive testing scenarios.

Main Playground Page

To access the Playground:

Log in to your Kinesis API account
Navigate to /web/playground in your browser or select "Playground" from the navigation menu

Playground Page

The main page displays:

Projects Section

This section shows all projects you are a member of. For each project, you'll see:

Project name
API path
Member count
View buttons for routes and members

Use the filter input to quickly find specific projects.

Replay Previous Requests Section

This section displays requests you've previously made using the Playground:

Request date/time
API endpoint URL
Options to view or delete the saved request

These requests are stored locally in your browser and are not visible to other users.

Project Routes Page

When you click on a project in the main Playground, you'll be taken to the routes page for that project:

/web/playground/routes?id=[project_id]

Playground Project Routes Page

This page displays:

Project information (name, ID, description, API path)
A list of all routes in the project
Each route shows its ID and API path
A button to test each route

Use the filter input to quickly find specific routes.

Request Testing Page

This is where you actually test API routes. Access this page by:

Clicking on a route in the Project Routes page
Clicking on a saved request in the Replay section of the main Playground
Creating a new request via the "New Request" button on the main Playground

URL pattern: /web/playground/request?project_id=[project_id]&id=[route_id]

Request Testing Page

The request testing interface includes:

HTTP Method and URL

The top section shows:

HTTP method selector (GET, POST, PUT, etc.)
URL input field showing the full API path
Send button to execute the request

Authorization

Add JWT tokens or Personal Access Tokens (PATs) for authenticated requests:

Input field for token value
Show/hide toggle for security
Automatically populates for routes requiring authentication

URL Parameters

For routes with URL parameters:

Add parameter button to include additional parameters
Key-value pairs for each parameter
Parameters are automatically added to the URL
Parameter changes update the URL field in real-time

Request Body

For POST, PUT, and PATCH requests:

JSON editor for the request body
Syntax highlighting and validation
Auto-populated with the expected structure based on route configuration

Response

After sending a request:

Response is displayed in a JSON editor
Syntax highlighting for easy reading
Status code and timing information

Saving and Replaying Requests

The Playground automatically saves your requests locally in your browser. When you send a request:

The request method, URL, authentication token, parameters, and body are saved
The response is also saved
A unique identifier is generated for the request

To replay a saved request:

Go to the main Playground page
Find your request in the Replay section
Click the view button to load the request
Optionally modify any parameters
Click "Send" to execute the request again

Security Considerations

Authentication tokens are stored locally in your browser
Tokens are never sent to other users or systems beyond the API itself
Consider using test accounts or temporary tokens when testing in shared environments
Clear your browser data regularly to remove sensitive information

Using Playground in Development Workflow

The Playground can be particularly helpful in these scenarios:

Initial API Testing: Quickly verify a new route works as expected
Debugging Issues: Isolate and test problematic API calls
Exploring APIs: Learn how existing endpoints work and what they return
Sharing Examples: Create sample requests that can be recreated by team members
Iterative Development: Test changes to routes as you develop them

For more comprehensive examples of using the Playground in real-world scenarios, refer to our tutorials:

Building a Simple Counter App - Uses the Playground to test API endpoints
Implementing JWT Authentication - Demonstrates authentication testing

Events

The Events page in Kinesis API provides a comprehensive audit trail of all significant actions that occur within your system. This powerful monitoring tool helps administrators track changes, troubleshoot issues, and maintain accountability across the platform.

Access Control

Important: The Events page is only accessible to users with ROOT or ADMIN roles. Other users attempting to access this page will be redirected to the dashboard.

Accessing the Events Page

To access the Events page:

Log in with a ROOT or ADMIN account
Navigate to /web/events in your browser or use the navigation menu

Understanding Events

Events in Kinesis API represent significant actions that have occurred within the system. Each event captures:

Event Type: The category and specific action (e.g., user_create, data_update)
Timestamp: When the action occurred
Description: Details about what happened, often including references to specific users, projects, or collections
Redirect Link: A direct link to the relevant page in the system

Events serve as an audit trail, allowing administrators to track who made changes, what was changed, and when those changes occurred.

Events Interface

Events Page

The Events interface includes:

A filterable, paginated list of events
Events displayed in reverse chronological order (newest first)
Visual icons representing different event types
Links to related pages for further investigation

Types of Events Tracked

Kinesis API tracks events across all major system components:

User Events

Account creation and registration
Role changes
Account deletion
Password reset requests

Configuration Events

Configuration creation
Configuration updates
Configuration deletion

Project Events

Project creation
Project updates (name, description, API path)
Project deletion
Member addition/removal

Collection & Structure Events

Collection creation/deletion
Structure creation/deletion
Custom structure operations

Data Events

Data creation
Data updates
Data deletion
Publishing status changes

API Routes Events

Route creation
Route modifications
Route deletion

System Events

Constraint modifications
Personal Access Token management
Redirects management
Code snippet management

Filtering and Navigating Events

Event Filtering

To find specific events:

Use the search box at the top of the events list
Type any part of the event description, event type, or redirect path
The list will automatically filter to show matching events

Pagination

For systems with many events:

Navigate between pages using the pagination controls
The page displays up to 42 events at a time

Understanding Event Information

Each event entry contains several key pieces of information:

Event Type Icon: Visual representation of the event category
Event Type: The specific action that occurred
Timestamp: When the action took place
Description: Details about the event, including:
- User references (highlighted with username)
- Project references (highlighted with project ID)
- Collection references (highlighted with collection ID)
Navigation Link: Button to go directly to the relevant page

Event Retention

Events are stored permanently in the system database to maintain a complete audit history. The events page implements pagination to handle large numbers of events efficiently.

Common Use Cases

The Events page is particularly useful for:

Security Monitoring: Track user creation, role changes, and password resets
Troubleshooting: Identify when and how changes were made that might have caused issues
User Activity Tracking: Monitor which users are making changes to the system
Audit Compliance: Maintain records of all system changes for compliance requirements
Change Management: Verify that planned changes were implemented correctly

Media

The Media management system in Kinesis API provides a centralized location to upload, manage, and utilize media files across your API and web interface. This page explains how to use the Media functionality to handle images.

Accessing Media Management

To access the Media management interface:

Log in to your Kinesis API account
Navigate to /web/media in your browser or click "Media" in the navigation menu

Media Page

Media Interface Overview

The Media management interface includes:

A searchable list of all media files in the system
Pagination controls for navigating through large media collections
Tools for uploading new media
Preview functionality for existing media
Copy link buttons for easy sharing
Delete options for administrators

Uploading Media

All authenticated users can upload media files:

Click the "Upload Media" button at the top of the page
A modal will appear prompting you to select a file
Choose a file from your device
The file will be uploaded and added to your media library

Supported File Types

Kinesis API supports various image file types including:

JPG
PNG
GIF
WebP
SVG

The maximum file size is determined by your system configuration (default: 2MB).

Viewing Media

The main page displays a list of all media files with:

A thumbnail preview
The media ID
The filename
Action buttons

Previewing Media

To preview a media file:

Click on the file thumbnail or name
A modal will open showing a larger preview of the image
Click outside the modal or the X button to close it

Managing Media Files

Filtering Media

To find specific media files:

Use the filter box at the top of the media list
Type any part of the filename or ID
The list will automatically filter to show matching files

Pagination

For systems with many media files:

Navigate between pages using the pagination controls
The page displays up to 10 media files at a time

Deleting Media

Users with ROOT or ADMIN roles can delete media files:

Click the delete button (trash icon) next to the media file
A confirmation modal will appear showing a preview of the file
Confirm the deletion

⚠️ Warning: Deleting a media file is permanent and will remove it from all places where it's being used. Ensure the file is no longer needed before deletion.

Access Control

Media management follows these permission rules:

Role	View Media	Upload Media	Delete Media
ROOT	✓	✓	✓
ADMIN	✓	✓	✓
AUTHOR	✓	✓	✗
VIEWER	✓	✓	✗

Public Access to Media

Media files uploaded to Kinesis API are publicly accessible via their direct URLs. This allows you to:

Use media in public-facing API responses
Embed images in web pages
Link to downloadable files

Keep this in mind when uploading sensitive content—if a file shouldn't be publicly accessible, consider encrypting it or storing it elsewhere.

Best Practices

Use Descriptive Filenames: Clear filenames make media easier to find and manage
Optimize Before Upload: Compress images and optimize files before uploading to save space
Regular Cleanup: Periodically remove unused media to keep your library organized
Secure Sensitive Content: Remember that uploaded media is publicly accessible
Backup Important Files: Keep backups of critical media files outside the system

REPL

The REPL (Read-Eval-Print Loop) is a powerful interface that allows ROOT users to interact directly with the underlying database system in Kinesis API. This advanced feature provides a command-line style interface for executing database operations, testing queries, and managing data structures without leaving the web interface.

Access Control

⚠️ Important: The REPL interface is only accessible to users with the ROOT role. This restriction is in place because the REPL provides direct access to the database, bypassing the standard API permissions and validations.

Accessing the REPL

To access the REPL interface:

Log in with a ROOT user account
Navigate to /web/repl in your browser or select "REPL" from the navigation menu

REPL Interface

The REPL interface consists of:

Command Input Area: A textarea where you can enter database commands
Output Format Selector: Choose between Table, JSON, and Standard output formats
Execute Button: Run the entered command
Output Display: Shows the results of executed commands

Available Commands

The REPL supports a comprehensive set of commands for interacting with the database:

Table Management

Command	Description	Example
CREATE_TABLE	Create a new table with optional schema	`CREATE_TABLE users name STRING --required age INTEGER`
DROP_TABLE	Delete a table	`DROP_TABLE users`
GET_TABLE	Show table schema	`GET_TABLE users`
GET_TABLES	List all tables	`GET_TABLES`
UPDATE_SCHEMA	Update table schema	`UPDATE_SCHEMA users --version=2 active BOOLEAN`

Record Management

Command	Description	Example
INSERT	Insert a new record	`INSERT INTO users ID 1 SET name = "John" age = 30`
UPDATE	Update an existing record	`UPDATE users ID 1 SET age = 31`
DELETE	Delete a record	`DELETE FROM users 1`
GET_RECORD	Retrieve a single record	`GET_RECORD FROM users 1`
GET_RECORDS	Retrieve all records from a table	`GET_RECORDS FROM users`
SEARCH_RECORDS	Search for records	`SEARCH_RECORDS FROM users MATCH "John"`

Help

Command	Description	Example
HELP	Show general help	`HELP`
HELP [command]	Show help for a specific command	`HELP CREATE_TABLE`

Output Formats

The REPL supports three output formats:

Table: Formats results as ASCII tables for easy reading
JSON: Returns results in JSON format for programmatic analysis
Standard: Simple text output with minimal formatting

Using the REPL

Basic Usage

Enter a command in the input area
Select your preferred output format
Click "Execute" to run the command
View the results in the output display

Schema Definition

When creating or updating tables, you can define schema fields with various constraints:

CREATE_TABLE users
  name STRING --required --min=2 --max=50
  email STRING --required --unique --pattern="^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$"
  age INTEGER --min=0 --max=120

Available field types:

STRING: Text data
INTEGER: Whole numbers
FLOAT: Decimal numbers
BOOLEAN: True/false values

Available field constraints:

--required: Field must have a value
--unique: Field values must be unique within the table
--min=<value>: Minimum value (for numbers) or length (for strings)
--max=<value>: Maximum value (for numbers) or length (for strings)
--pattern=<regex>: Regular expression pattern for string validation
--default=<value>: Default value if none is provided

Security Considerations

The REPL provides direct access to the database, which comes with significant power and responsibility:

Limited Access: Only ROOT users can access the REPL
Audit Trail: All REPL commands are logged in the system events
No Undo: Most operations cannot be undone, especially schema changes and deletions
Performance Impact: Complex queries on large tables may impact system performance

Best Practices

Test in Development: Use the REPL in development environments before running commands in production
Back Up First: Create backups before making significant schema changes
Use Transactions: For complex operations, consider using transactions to ensure data integrity
Document Changes: Keep records of schema changes made through the REPL
Prefer API: For routine operations, use the standard API endpoints rather than direct REPL access

Example Use Cases

The REPL is particularly useful for:

Prototyping: Quickly create and test database structures
Data Cleanup: Fix or remove problematic records
Schema Evolution: Add or modify fields in existing tables
Troubleshooting: Inspect database contents for debugging
Data Migration: Bulk operations during system updates

Kinesis DB - Learn about the underlying database system

Extended Components

While Kinesis API's core components provide the essential functionality needed for API development and management, the platform also offers a set of extended components that enhance your experience and provide additional capabilities. These components aren't required for basic operation but can significantly improve your workflow and expand what's possible with the platform.

What Are Extended Components?

Extended components are supplementary features that:

Add convenience and efficiency to your workflow
Enable specialized functionality for specific use cases
Provide quality-of-life improvements
Extend the platform's capabilities beyond core API management

These components can be used as needed, depending on your specific requirements and preferences.

Available Extended Components

Redirects

The redirects system allows you to create and manage URL redirects within your Kinesis API instance:

Define source and destination URLs
Set up permanent (301) redirects
Create vanity URLs for easier sharing
Redirect legacy endpoints to new API paths

Redirects are particularly useful when restructuring your API or creating shortened URLs for documentation and sharing.

Snippets

Code snippets provide a way to store and reuse common code patterns:

Create a library of reusable code fragments
Share implementation examples across your team
Include language-specific samples for API consumers
Document common usage patterns

Snippets improve consistency and save time when implementing similar functionality across different parts of your API.

Tickets

The tickets system provides a comprehensive issue tracking solution:

Report bugs and technical issues
Request new features or improvements
Ask questions about functionality
Track tasks and assignments
Collect user feedback

Tickets facilitate communication between users and developers, helping maintain quality and responsiveness in your API ecosystem.

Misc

The Misc section contains miscellaneous utilities that don't fit neatly into other categories:

Global Navigate: A system-wide navigation tool for quickly accessing different parts of the platform
Utility functions and helpers for common tasks
System status indicators and tools

These miscellaneous components provide convenience features that enhance your overall experience with Kinesis API.

When to Use Extended Components

Consider using extended components when:

You need to maintain backward compatibility while evolving your API (Redirects)
Your team is implementing similar patterns across multiple routes (Snippets)
You want to track issues, improvements, and user feedback (Tickets)
You want to optimize your workflow and navigation (Global Navigate)
You're looking for ways to enhance user experience for API consumers

While not essential for core functionality, these components can significantly improve productivity and user experience when used appropriately.

Getting Started with Extended Components

To begin using extended components:

Familiarize yourself with the core components first
Identify areas where extended components could improve your workflow
Explore the specific documentation for each extended component
Start with simple implementations and expand as needed

Extended components are designed to be approachable and incrementally adoptable, allowing you to incorporate them into your workflow at your own pace.

Best Practices

When working with extended components:

Use redirects sparingly and monitor their performance impact
Maintain a well-organized snippet library with clear naming conventions
Document how and where extended components are being used in your API
Regularly review and update your extended component configurations

Following these practices will help you get the most benefit from Kinesis API's extended capabilities.

Core Components - Essential building blocks of Kinesis API
Redirects - URL redirection management
Snippets - Code fragment library
Tickets - Issue tracking and feedback system
Misc - Miscellaneous utilities and tools

Tickets

The Tickets system in Kinesis API provides a robust issue tracking solution that allows users to report bugs, request features, ask questions, and provide feedback. It's designed to facilitate collaboration between users and developers while maintaining a transparent record of reported issues and their resolutions.

Overview

The ticketing system serves as a central hub for:

Bug reporting and tracking
Feature requests and suggestions
User questions and support inquiries
Task management and assignment
General feedback collection

All tickets are categorized, prioritized, and tracked through their lifecycle, providing clear visibility into the status of each issue.

Key Features

Ticket Management

Create Tickets: Anyone can create tickets with a title, description, type, and priority
Ticket Types: Categorize as BUG, FEATURE, IMPROVEMENT, QUESTION, TASK, or FEEDBACK
Priority Levels: Assign LOW, MEDIUM, HIGH, CRITICAL, or URGENT priority
Status Tracking: Monitor progress through OPEN, ACTIVE, RESOLVED, CLOSED, or WONTDO statuses
Tags: Add custom tags for better organization and searchability
Public/Private: Control visibility of tickets to other users

User Interactions

Comments: Add discussions, updates, and additional information to tickets
Assignments: Assign tickets to specific users for resolution
Subscriptions: Subscribe to tickets to receive updates
Anonymous Submissions: Create tickets without requiring user registration

Organization and Discovery

Filtering: Filter tickets by type, status, and content
Sorting: Sort by title, priority, creation date, or last update
Pagination: Navigate through large numbers of tickets efficiently
Search: Find tickets by keywords in title, description, or tags

User Permissions

Different user roles have different capabilities within the ticketing system:

All Users (Including Anonymous)

Create new tickets
View public tickets
Comment on public tickets
Subscribe to ticket updates (with email)

Ticket Owners

Update title, description, and ticket type of their own tickets
Modify tags on their own tickets
Toggle public/private status of their own tickets
Delete their own tickets

Ticket Assignees

Update ticket status
Update ticket priority
Modify tags on assigned tickets

Administrators (ROOT/ADMIN)

Full control over all tickets
Assign/unassign users to tickets
Archive tickets
Delete any ticket or comment
Access both public and private tickets

Using the Tickets List Page

Tickets List Page

The tickets list page provides a comprehensive view of all accessible tickets with powerful organization tools:

Filtering and Sorting

Use the search bar to filter tickets by content
Filter by ticket type (BUG, FEATURE, etc.)
Filter by status (OPEN, ACTIVE, etc.)
Sort by various criteria:
- Title (ascending/descending)
- Priority (highest/lowest)
- Creation date (newest/oldest)
- Last update

Creating Tickets

Click the "Create a new Ticket" button
Enter a descriptive title
Provide a detailed description using the Markdown editor
Select the appropriate ticket type and priority
Add relevant tags (optional)
Choose whether the ticket should be public
Submit your contact information (if not logged in)
Click "Create"

Using the Individual Ticket Page

Tickets Page

Each ticket has its own dedicated page that shows all details and allows for interactions:

Viewing Ticket Information

Ticket ID and title
Current status, priority, and type
Creation and last update timestamps
Full description
Tags and visibility status

Interacting with Tickets

Adding Comments: Use the "Post a new Comment" button to add information or ask questions
Updating Fields: Authorized users can edit various fields through the corresponding buttons
Managing Assignees: View and modify who is assigned to resolve the ticket
Subscribing: Get notified of updates by subscribing to the ticket

Comment Management

Add formatted comments with the Markdown editor
Edit your own comments if needed
View all discussions chronologically

Best Practices

For effective use of the ticketing system:

Be Specific: Provide clear titles and detailed descriptions
Use Appropriate Types: Correctly categorize your ticket (BUG, FEATURE, etc.)
Set Realistic Priorities: Reserve HIGH/CRITICAL/URGENT for genuinely urgent issues
Check for Duplicates: Before creating a new ticket, search for similar existing ones
Stay Engaged: Respond to questions and provide additional information when requested
Update Status: Keep ticket status current to reflect actual progress

Redirects

The Redirects system in Kinesis API provides a way to create and manage URL redirects within your application. This feature is useful for creating shortened URLs, handling legacy endpoints, or creating memorable links to complex resources.

Understanding Redirects

Each redirect in Kinesis API consists of:

ID: A unique identifier for the redirect
Locator: A short, unique code that forms part of the redirect URL
URL: The destination where users will be redirected

When someone accesses a redirect URL (e.g., https://your-api.com/go/abc123), they are automatically forwarded to the destination URL associated with that locator.

Accessing Redirects Management

To access the Redirects management interface:

Log in to your Kinesis API account
Navigate to /web/redirects in your browser or select "Redirects" from the navigation menu

Redirects Page

Redirects Interface

The Redirects management interface includes:

A searchable list of all redirects in the system
Pagination controls for navigating through large redirect collections
Actions for creating, updating, and deleting redirects
Tools for copying redirect URLs for sharing

Creating a Redirect

To create a new redirect:

Click the "Create a New Redirect" button at the top of the page
Enter the destination URL in the field provided
(Optional) Specify a custom locator in the "Custom Locator" field
- If left empty, the system will automatically generate a unique locator
- Custom locators must be unique across the system
Click "Create" to generate the redirect

Create Redirect Modal

The system will use your custom locator if provided, or generate a unique locator code if none is specified. This locator forms part of the shortened URL, ensuring uniqueness and consistency across all redirects.

Using Redirects

After creating a redirect, you can use it by:

Copying the redirect URL by clicking the clipboard icon next to the redirect
Sharing this URL with others or using it in your applications

The redirect URL will be in the format:

https://your-api-domain.com/go/locator-code

When users access this URL, they will be automatically redirected to the destination URL you specified.

Managing Redirects

Filtering Redirects

To find specific redirects:

Use the search box at the top of the redirects list
Type any part of the locator code or destination URL
The list will automatically filter to show matching redirects

Pagination

For systems with many redirects:

Navigate between pages using the pagination controls
The page displays up to 15 redirects at a time

Updating Redirects

To change a redirect's destination URL:

Find the redirect in the list
Click the edit button (pencil icon)
Enter the new destination URL in the modal that appears
Click "Submit" to save the changes

Update Redirect Modal

Note that only the destination URL can be updated. The locator code is set when the redirect is created and cannot be modified at any point. If you need a different URL pattern, you'll need to create a new redirect and delete the old one.

Deleting Redirects

To remove a redirect:

Find the redirect in the list
Click the delete button (trash icon)
Confirm the deletion in the modal that appears

Delete Redirect Modal

Once deleted, the redirect URL will no longer work, and users attempting to access it will receive an error.

Common Use Cases

Redirects in Kinesis API can be used for:

URL Shortening

Create more manageable, shorter URLs for sharing complex links:

https://your-api.com/go/product1 → https://your-api.com/products/catalog/electronics/smartphones/model-x-256gb-black

API Version Management

Provide stable URLs that can be updated when API endpoints change:

https://your-api.com/go/user-api → https://your-api.com/api/v2/users

Later, when you update to v3, you can simply update the redirect without changing the URL clients use.

Marketing Campaigns

Create memorable URLs for marketing campaigns:

https://your-api.com/go/summer-sale → https://your-api.com/shop/promotions/summer-2023?discount=25&campaign=email

Temporary Resources

Link to resources that might change location:

https://your-api.com/go/docs → https://docs.google.com/document/d/1abc123def456

Best Practices

For effective redirect management:

Monitor Usage: Periodically review your redirects to identify and remove unused ones
Avoid Redirect Chains: Try not to redirect to URLs that themselves redirect to other locations
Security Awareness: Be cautious about redirecting to external sites that could pose security risks
Regular Cleanup: Delete redirects that are no longer needed to keep your system organized

Snippets

Snippets in Kinesis API provide a powerful way to store, share, and reuse code fragments, documentation, and other text-based content. They serve as a central repository for commonly used patterns, examples, and templates that can be easily referenced across your projects.

Understanding Snippets

Each snippet in Kinesis API has:

Name: A descriptive title for the snippet
Description: A brief explanation of the snippet's purpose
Content: The actual text content, which supports Markdown formatting
Visibility Setting: Public or private access control
Optional Expiry Date: A time when the snippet will automatically expire

Snippets support Markdown with additional features like syntax highlighting for code blocks, diagrams via Mermaid.js, and emoji support, making them versatile for various documentation and code sharing needs.

Accessing Snippets Management

To access the Snippets management interface:

Log in to your Kinesis API account
Navigate to /web/snippets in your browser or select "Snippets" from the navigation menu

Snippets Page

Snippets Interface

The Snippets management interface includes:

A searchable list of all your snippets
Pagination controls for navigating through large snippet collections
Actions for creating, viewing, editing, and deleting snippets
Tools for copying snippet links for sharing

Creating a Snippet

To create a new snippet:

Click the "Create a New Snippet" button at the top of the Snippets page
Fill in the required information:
- Name: A title for your snippet
- Description: A brief explanation of the snippet's purpose
- Content: The main text of your snippet, with support for Markdown
- Expiry (optional): A date when the snippet should expire
- Visibility: Toggle between public and private
Click "Create" to save your snippet

Create Snippet Page

Markdown Support

When creating or editing snippets, you can use Markdown formatting:

Basic formatting: Headings, lists, links, bold, italic, etc.
Code blocks: Syntax highlighting for various programming languages
Diagrams: Create flowcharts and diagrams using Mermaid.js syntax
Tables: Organize data in tabular format
Emoji: Add emoji using standard Markdown emoji codes

Viewing Snippets

To view a snippet:

Click on a snippet name or use the "View Snippet" button (open link icon) from the list
The snippet content will be displayed with all formatting applied
Additional details like ID, description, visibility, and expiry date are shown

View Snippet Page

Managing Snippets

Filtering Snippets

To find specific snippets:

Use the search box at the top of the snippets list
Type any part of the snippet name, ID, locator, or description
The list will automatically filter to show matching snippets

Editing Snippets

To edit an existing snippet:

Click the edit button (pencil icon) next to the snippet in the list or on the view page
Modify any of the snippet details
Click "Update Snippet" to save your changes

Edit Snippet Page

Deleting Snippets

To remove a snippet:

Click the delete button (trash icon) next to the snippet
Confirm the deletion in the modal that appears
The snippet will be permanently removed

Snippets can be easily shared:

For any snippet, click the "Copy link to Snippet" button (clipboard icon)
The URL will be copied to your clipboard
Share this URL with others

The URL will be in the format:

https://your-api-domain.com/go/[snippet-locator]

Visibility Controls

Snippets have two visibility settings:

Private: Only visible to authenticated users of your Kinesis API instance
Public: Accessible to anyone with the link, even without authentication

Choose the appropriate visibility based on the sensitivity of the content and your sharing needs.

Snippet Expiration

When creating or editing a snippet, you can set an optional expiry date:

Select a date and time in the Expiry field
After this time, the snippet will no longer be accessible
Expired snippets are automatically removed from the system

This feature is useful for temporary content that shouldn't persist indefinitely.

Best Practices

For effective snippet management:

Descriptive Names: Use clear, searchable names that indicate the snippet's purpose
Complete Descriptions: Add context in the description to help others understand when and how to use the snippet
Proper Formatting: Use Markdown features to make content more readable and organized
Set Appropriate Visibility: Make snippets public only when the content is suitable for wider access
Use Expiration Dates: For temporary information, set an expiry date to keep your snippet library clean
Organize by Purpose: Create separate snippets for different purposes rather than combining unrelated content

Common Use Cases

Snippets are particularly useful for:

Code Reuse

Store frequently used code patterns for easy reference:

API call templates
Common functions or utilities
Configuration examples

Documentation

Create and share documentation fragments:

Setup instructions
Troubleshooting guides
API usage examples

Share knowledge across your team:

Best practices
Architecture decisions
Design patterns

Quick Reference

Build a personal reference library:

Command line examples
Frequent queries
Common workflows

Misc

The Misc page in Kinesis API provides a collection of utility tools and functions that can be helpful during development, testing, and general platform management. These tools don't fit into other categories but offer valuable functionality for various tasks.

Accessing the Misc Page

To access the Misc utilities:

Log in to your Kinesis API account
Navigate to /web/misc in your browser or select "Misc" from the navigation menu

Misc Utilities Page

Available Utilities

The Misc page offers several utility tools:

Test MongoDB Connection

Note: This feature is only available to users with ROOT or ADMIN roles.

This utility allows you to test the connection to a MongoDB database:

Click the "Test Mongo Connection" button
Enter the MongoDB URI (in the format mongodb://username:password@host:port/database)
Enter the database name
Click "Test" to verify the connection

This is particularly useful when setting up external data sources or verifying database configurations.

Test SMTP Credentials

Note: This feature is only available to users with ROOT or ADMIN roles.

This tool validates SMTP email server credentials:

Click the "Test SMTP Credentials" button
Enter the required information:
- Username
- From Username (optional)
- Password
- Host address
- Port number
- Login mechanism (PLAIN, LOGIN, or XOAUTH2)
- StartTLS setting
Click "Test" to verify the credentials

A successful test indicates that Kinesis API can use these credentials to send emails, which is critical for features like user registration and password reset.

Generate a Random UUID

This utility generates random unique identifiers with customizable formatting:

Click the "Generate a Random UUID" button
Configure the UUID format:
- Length: The number of characters in each group
- Groups: The number of groups to include
- Include an additional number block: Option to add a numeric suffix
Click "Generate" to create the UUID
Copy the generated UUID using the "Copy UUID" button

UUIDs are useful for creating unique identifiers for resources, temporary tokens, or any scenario where uniqueness is required.

Generate a Random Secret

This tool creates secure random strings for use as secrets, passwords, or tokens:

Click the "Generate a Random Secret" button
Configure the secret:
- Length: The number of characters in the secret
- Include special characters: Whether to include symbols in addition to letters and numbers
Click "Generate" to create the secret
Copy the generated secret using the "Copy Secret" button

This is particularly useful for generating secure API keys, passwords, or other sensitive credentials.

URL Shortener

This utility creates shortened URLs for any link:

Click the "URL Shortener" button
Enter the long URL you want to shorten
Click "Shorten" to create a shortened link
Copy the shortened URL using the "Copy URL" button

The shortened URLs are in the format [api_url]/go/[locator]. These links can be shared with others to provide more manageable URLs for long addresses.

Use Cases

These utility tools are valuable in various scenarios:

During Setup: Testing MongoDB and SMTP configurations
Development: Generating UUIDs and secrets for testing or implementation
Content Sharing: Creating shortened URLs for easier sharing
Security: Generating strong, random secrets for sensitive operations
Troubleshooting: Verifying connectivity to external services

Global Navigate

Global Navigate is a powerful keyboard-driven navigation system built into Kinesis API that allows you to quickly jump to any part of the application without using the mouse. This feature significantly speeds up your workflow by providing shortcuts to navigate between projects, collections, data, and other components.

Accessing Global Navigate

There are two ways to open the Global Navigate modal:

Keyboard Shortcut: Press Ctrl+G (Windows/Linux) or ⌘+G (Mac)
UI Button: Click the keyboard shortcut hint in the bottom-right corner of the screen

The Global Navigate system accepts various commands in a simple, intuitive syntax:

Enter a base command (e.g., p for projects)
Optionally add IDs to navigate to specific resources (e.g., p/project_id)
Press Enter to navigate

Base Commands

Global Navigate supports numerous shorthand commands:

Command	Aliases	Destination
`p`, `pr`, `pro`	`project`, `projects`	Projects page
`c`, `col`	`collection`	Collection page
`cs`	`custom`, `customstructure`, `custom_structure`	Custom Structure page
`d`	`data`	Data management
`r`	`route`, `routes`	Routes page
`pg`, `play`	`playground`	Playground
`u`, `us`	`user`, `users`	Users management
`pat`	`pats`	Personal Access Tokens
`m`	`media`	Media management
`red`, `rs`	`redirects`	Redirects
`snp`, `snip`	`snippet`, `snippets`	Snippets
`mc`	`misc`	Miscellaneous utilities
`e`, `es`	`events`	Events log
`conf`	`config`, `configs`	Configuration settings
`const`	`constraint`, `constraints`	Constraints
`s`	`settings`	User settings
`h`, `dash`	`home`, `dashboard`	Dashboard
`a`	`about`	About page
`ch`, `change`	`changelog`	Changelog
`road`	`roadmap`	Roadmap
`repl`, `shell`		REPL shell
`logout`, `end`		Log out

For hierarchical resources, you can navigate directly to specific items by adding IDs to your command with forward slashes:

p - Go to projects list
p/project_id - Go directly to a specific project

c - Go to projects list
c/project_id - Go to a specific project
c/project_id/collection_id - Go directly to a specific collection

cs - Go to projects list
cs/project_id - Go to a specific project
cs/project_id/collection_id - Go to a specific collection
cs/project_id/collection_id/custom_structure_id - Go directly to a specific custom structure

d - Go to data projects list
d/project_id - Go to a project's collections for data
d/project_id/collection_id - Go to data objects in a collection
d/project_id/collection_id/data_id - Go directly to a specific data object

r - Go to routes projects list
r/project_id - Go to routes in a project
r/project_id/route_id - Go directly to a specific route

pg - Go to playground projects list
pg/project_id - Go to routes in a project's playground
pg/project_id/route_id - Go directly to testing a specific route

snp - Go to snippets list
snp/snippet_id - Go directly to a specific snippet

u - Go to users list
u/username - Go directly to a specific user's profile

Usage Examples

Command	Result
`p`	Navigate to the projects list
`p/inventory`	Navigate to the inventory project
`c/inventory/products`	Navigate to the products collection within the inventory project
`d/blog/posts/post123`	Navigate to the post123 data object in the posts collection
`r/api/auth`	Navigate to the auth route in the api project
`pg/shop/checkout`	Test the checkout route in the playground
`u/admin`	View the admin user's profile
`settings`	Go to your user settings page
`logout`	Log out of the system

Benefits of Global Navigate

Global Navigate offers several advantages for power users:

Speed: Navigate anywhere in the application with just a few keystrokes
Efficiency: Reduce dependency on mouse movements and menu navigation
Directness: Jump directly to deeply nested resources without navigating through multiple pages
Accessibility: Provide keyboard-focused navigation options
Productivity: Streamline repetitive navigation tasks

Tips for Effective Use

Learn the Shortcuts: Memorize the base commands for sections you frequently visit
Use Tab Completion: In the future, Global Navigate may support tab completion
Bookmark Common Paths: Keep a note of full paths for resources you access regularly
Direct Navigation: Instead of navigating through multiple pages, use the full path pattern

Backups

Regular backups are a critical component of maintaining a reliable Kinesis API installation. This guide covers how to properly back up your Kinesis API data and configuration, ensuring you can recover from unexpected failures or data corruption.

Understanding Kinesis API's Data Storage

Before discussing backup strategies, it's important to understand where Kinesis API stores its data:

Database Files: Located in the data/ directory
Configuration: Stored in the .env file
Media Files: Stored in the public/ directory

A complete backup must include all three components to ensure full recovery.

Manual Backup Methods

Docker Installation Backup

If you're running Kinesis API via Docker (the recommended method), follow these steps:

Stop the container (optional but recommended for consistency):
```
docker stop kinesis-api
```
Create the backup directory:
```
mkdir backup/
```
Back up the data directory:
```
cp -r data/ backup/data/
```
Back up the environment file:
```
cp .env backup/.env
```
Back up the public directory (if you've uploaded media):
```
cp -r public/ backup/public/
```
Restart the container (if you stopped it):
```
docker start kinesis-api
```

Native Installation Backup

If you're running Kinesis API directly on your host:

Stop the Kinesis API service:

# If using systemd
sudo systemctl stop kinesis-api

# Or if running directly
kill $(pgrep kinesis-api)

Back up the required directories and files:

cp -r /path/to/kinesis-api/data/ /path/to/backup/data/
cp /path/to/kinesis-api/.env /path/to/backup/.env
cp -r /path/to/kinesis-api/public/ /path/to/backup/public/

Restart the service:

# If using systemd
sudo systemctl start kinesis-api

# Or if running directly
cd /path/to/kinesis-api && ./target/release/kinesis-api &

Automated Backup Scripts

Simple Daily Backup Script

Create a file called backup-kinesis-api.sh:

#!/bin/bash
# Kinesis API Backup Script

# Configuration
KINESIS_DIR="/path/to/kinesis-api"
BACKUP_DIR="/path/to/backups"
BACKUP_NAME="kinesis-api-backup-$(date +%Y%m%d-%H%M%S)"

# Create backup directory
mkdir -p "$BACKUP_DIR/$BACKUP_NAME"

# Optional: Stop the container for consistent backups
docker stop kinesis-api

# Copy the data
cp -r "$KINESIS_DIR/data" "$BACKUP_DIR/$BACKUP_NAME/"
cp "$KINESIS_DIR/.env" "$BACKUP_DIR/$BACKUP_NAME/"
cp -r "$KINESIS_DIR/public" "$BACKUP_DIR/$BACKUP_NAME/"

# Restart the container
docker start kinesis-api

# Compress the backup
cd "$BACKUP_DIR"
tar -czf "$BACKUP_NAME.tar.gz" "$BACKUP_NAME"
rm -rf "$BACKUP_NAME"

# Optional: Rotate backups (keep last 7 days)
find "$BACKUP_DIR" -name "kinesis-api-backup-*.tar.gz" -type f -mtime +7 -delete

echo "Backup completed: $BACKUP_DIR/$BACKUP_NAME.tar.gz"

Make the script executable and schedule it with cron:

chmod +x backup-kinesis-api.sh
crontab -e

Add a line to run it daily at 2 AM:

0 2 * * * /path/to/backup-kinesis-api.sh

Restoring from Backup

To restore Kinesis API from a backup:

Stop the running instance:
```
docker stop kinesis-api
```

Replace the data with the backup:

# If your backup is compressed
tar -xzf kinesis-backup.tar.gz

# Replace the current data
rm -rf data/ .env public/
cp -r backup/data/ .
cp backup/.env .
cp -r backup/public/ .

Restart the service:
```
docker start kinesis-api
```

Backup Best Practices

Regular Schedule: Establish a consistent backup schedule based on how frequently your data changes.
Multiple Backup Copies: Follow the 3-2-1 backup rule:
- Keep 3 copies of your data
- Use 2 different storage types
- Store 1 copy off-site (different physical location)
Verification: Periodically verify your backups by testing the restoration process in a separate environment.
Automation: Automate your backup process to ensure consistency and reliability.
Documentation: Keep clear documentation of your backup and restore procedures.
External Storage: Store backups on external storage separate from your production environment.
Encryption: Consider encrypting sensitive backup data, especially when storing off-site.

Remote Backup Solutions

For enhanced security and reliability, consider these options for storing backups remotely:

Cloud Storage

Configure your backup script to upload to cloud storage:

# Example for AWS S3
aws s3 cp "$BACKUP_DIR/$BACKUP_NAME.tar.gz" "s3://your-bucket/kinesis-backups/"

# Example for Google Cloud Storage
gsutil cp "$BACKUP_DIR/$BACKUP_NAME.tar.gz" "gs://your-bucket/kinesis-backups/"

SFTP/SCP Transfer

Transfer backups to a remote server:

scp "$BACKUP_DIR/$BACKUP_NAME.tar.gz" user@remote-server:/path/to/backups/

Upgrading

This guide provides instructions for upgrading your Kinesis API installation to newer versions. Because Kinesis API is actively developed, new releases may include important security updates, bug fixes, and new features.

Before You Begin

Before upgrading your Kinesis API installation, it's important to take some precautionary steps:

Create a backup: Always back up your data before upgrading. See the Backups guide for detailed instructions.
Review the changelog and roadmap:
- Check the Changelog at /web/changelog for detailed information about each version's changes, including any breaking changes or deprecations
- Review the Roadmap at /web/roadmap for a higher-level overview of monthly development progress and upcoming features
Test in a non-production environment: If possible, test the upgrade process in a development or staging environment before applying it to production.

Upgrading Docker Installations

If you're running Kinesis API via Docker (the recommended method), follow these steps:

Step 1: Pull the Latest Image

# Pull the latest version
docker pull edgeking8100/kinesis-api:latest

# Or pull a specific version
docker pull edgeking8100/kinesis-api:x.y.z

Step 2: Stop the Current Container

docker stop kinesis-api

Step 3: Remove the Current Container (preserving volumes)

docker rm kinesis-api

Step 4: Start a New Container with the Updated Image

docker run --name kinesis-api \
  -v $(pwd)/.env:/app/.env \
  -v $(pwd)/data:/app/data \
  -v $(pwd)/public:/app/public \
  -p 8080:8080 -d \
  --restart unless-stopped \
  edgeking8100/kinesis-api:latest

Step 5: Verify the Upgrade

Check the container logs for any errors:

docker logs kinesis-api

Access the web interface to confirm it's working correctly.

Upgrading Rust Installations

If you're running Kinesis API directly from the Rust source:

Step 1: Backup Your Data and Environment

cp -r data/ data_backup/
cp .env .env.backup

Step 2: Update the Source Code

git pull origin master

Step 3: Build the Updated Version

cargo build --release

Step 4: Restart the Service

# If running as a systemd service
sudo systemctl restart kinesis-api

# Or if running directly
./target/release/kinesis-api

Post-Upgrade Steps

After upgrading, perform these checks:

Verify all projects and collections are accessible
Test API endpoints to ensure they're functioning correctly
Review logs for any errors or warnings
Check database integrity if you've upgraded across major versions

Handling Breaking Changes

Kinesis API follows semantic versioning (SemVer):

Patch updates (e.g., 1.0.0 to 1.0.1): Safe to upgrade, contains bug fixes
Minor updates (e.g., 1.0.0 to 1.1.0): Generally safe, adds new features in a backward-compatible way
Major updates (e.g., 1.0.0 to 2.0.0): May contain breaking changes

For major version upgrades, read the release notes carefully as they will include:

List of breaking changes
Required manual steps
Migration guides

Rollback Procedures

If you encounter issues after upgrading, you can roll back to the previous version:

Docker Rollback

# Stop the current container
docker stop kinesis-api
docker rm kinesis-api

# Start a new container with the previous version
docker run --name kinesis-api \
  -v $(pwd)/.env:/app/.env \
  -v $(pwd)/data:/app/data \
  -v $(pwd)/public:/app/public \
  -p 8080:8080 -d \
  --restart unless-stopped \
  edgeking8100/kinesis-api:previous-version-tag

Rust Rollback

# Checkout the previous version
git checkout v1.x.x

# Rebuild
cargo build --release

# Restart
sudo systemctl restart kinesis-api  # or start manually

Troubleshooting Common Upgrade Issues

Database Connection Errors

If you see database connection errors after upgrading:

Check that your data directory permissions are correct
Verify the database connection settings in your .env file
Ensure the data format is compatible with the new version

UI Issues After Upgrade

If the web interface appears broken after upgrading:

Clear your browser cache
Check for JavaScript console errors
Verify that all static assets are being served correctly

API Endpoints Not Working

If API endpoints stop working after an upgrade:

Check the route configuration in the X Engine
Verify that any changes to authentication methods have been accounted for
Look for changes in parameter handling or response formats

Getting Help

If you encounter issues during the upgrade process:

Check the official documentation
Create a new ticket in the issue tracker
Contact support at support@kinesis.world

Build APIs with Kinesis API

Welcome to the Kinesis API tutorials section. These step-by-step guides will help you learn how to build powerful, robust APIs using the Kinesis API platform. Whether you're new to API development or an experienced developer looking to harness the full potential of Kinesis API, these tutorials will provide practical, hands-on experience.

About These Tutorials

Each tutorial in this section:

Walks through a complete, real-world example
Includes step-by-step instructions with screenshots
Explains core concepts as they're introduced
Provides working code that you can adapt for your own projects
Builds skills progressively from basic to advanced

Prerequisites

Before starting these tutorials, you should:

Have Kinesis API installed and running (see Installation)
Be familiar with basic API concepts
Understand HTTP methods (GET, POST, PUT, DELETE)
Have completed the initial setup of Kinesis API

Available Tutorials

Building a Simple Counter App

Difficulty: Beginner

This tutorial walks you through creating a basic counter API that demonstrates fundamental Kinesis API concepts. You'll learn how to:

Create a new project and collection
Define structures for your data
Build API routes for retrieving and updating the counter
Test your API using the Playground
Understand the basics of the X Engine

This is the perfect starting point if you're new to Kinesis API.

Implementing JWT Authentication

Difficulty: Intermediate

This tutorial guides you through implementing secure user authentication using JSON Web Tokens (JWT). You'll learn how to:

Create a user authentication system
Generate and validate JWTs
Secure your API routes

This tutorial builds on the fundamentals and introduces more advanced security concepts.

Approaching These Tutorials

We recommend following these tutorials in order, as each one builds on concepts introduced in previous tutorials. However, if you're already familiar with Kinesis API basics, you can jump directly to more advanced tutorials.

As you work through the tutorials:

Take your time: Understand each step before moving to the next
Experiment: Try modifying examples to see how things work
Refer to documentation: Use the API Reference and other documentation when needed
Troubleshoot: If something doesn't work, check for typos or review earlier steps

What You'll Learn

By completing these tutorials, you'll gain practical experience in:

Designing and implementing APIs with Kinesis API
Modeling data effectively using structures
Creating secure, efficient API routes using the X Engine
Testing and debugging your APIs
Implementing common patterns like authentication, data validation, and error handling

Getting Help

If you encounter difficulties while following these tutorials:

Check the FAQ for common issues
Review the relevant documentation sections
Contact support at support@kinesis.world
Create a new ticket in the issue tracker

Ready to Begin?

Start with Building a Simple Counter App to begin your journey with Kinesis API!

Building a Simple Counter App

This tutorial will guide you through building a simple counter API with Kinesis API. You'll create an API endpoint that stores and increments a count value with each request. This is a perfect first project to help you understand the fundamentals of Kinesis API.

Prefer video tutorials? You can follow along with our YouTube walkthrough of this same project.

Prerequisites

Before you begin, you need:

Access to a Kinesis API instance:
- Either the demo environment at demo.kinesis.world
- Or your own self-hosted instance
A user account with ADMIN or ROOT privileges
Basic understanding of REST APIs and HTTP methods

1. Creating a Project

First, we'll create a project to organize our counter API:

Log in to your Kinesis API instance
Navigate to the Projects page from the main menu
Click "Create a new project" to open the project creation modal
Fill in the following details:
- Name: "Counter Project"
- ID: "counter"
- Description: "A dummy starter project for a counter." (or anything else you want)
- API Path: "/counter" (this will be the base URL path for all routes in this project)
Click "Create" to save your project

2. Creating a Collection

Next, we'll create a collection to store our counter data:

From your newly created project page, click "Create New" on the "Collections" section
Fill in the following details:
- Name: "count"
- ID: "count"
- Description: "To store the actual count object." (or anything else you want)
Click "Create" to save your collection

Project Page

3. Creating Structures

Now we'll create some structures (fields) to store our counter value:

From the Count collection page, locate the "Structures" section
Click "Create New" to add a structure
Fill in the following details:
- Name: "id"
- ID: "id"
- Description: "" (leave blank or insert anything else)
- Type: "INTEGER"
- Min: "0"
- Max: "1000"
- Default Value: "0"
- Required: Check this box
- Unique: Check this box
Click "Create" to save the structure
Click "Create New" to add another structure
Fill in the following details:
- Name: "value"
- ID: "value"
- Description: "" (leave blank or insert anything else)
- Type: "INTEGER"
- Min: "0"
- Max: "999999999"
- Default Value: "0" (to start the counter at zero)
- Required: Check this box
Click "Create" to save the structure

Collection Page

4. Creating Data

Now we'll create an initial data object with our counter:

Navigate to the "Data" section in the top navigation bar
Select your project and then the "Count" collection
Click "Create New" to create a data object
Add a nickname (optional)
For the "id" field, enter: "0"
For the "value" field, enter: "0"
Click "Create" to save your data object

Data Page

5. Creating a Route

Now we'll create a route that increments the counter:

Navigate to "Routes" in the top navigation bar
Select your project
Click "Create New" to create a route
Fill in the route details:
- Route ID: "GET_COUNTER"
- Route Path: "/get"
- HTTP Method: "GET"
The "JWT Authentication", "URL Parameters" and "Body" sections don't need to be modified

Building the Route Logic in the Flow Editor

The Flow Editor is where we define what happens when our route is called. We'll build a flow that:

Fetches the current counter value
Increments it by 1
Updates the stored value
Returns the new value

Follow these steps:

Add a FETCH block:
- Drag a FETCH block onto the canvas and connect the START node to it
- Fill in the following details:
  - Local Name: "_allCounts"
  - Reference Collection: "count"
Add a PROPERTY block:
- Drag a PROPERTY block onto the canvas and connect the FETCH block to it
- Fill in the following details:
  - Local Name: "_currentCount"
  - Property Apply: "GET_INDEX"
  - Additional: "0"
- As for the data section, fill in the following details:
  - Reference: Check this box
  - Type: "Array"
  - Data: "_allCounts"
Add another PROPERTY block:
- Drag another PROPERTY block onto the canvas and connect the previous PROPERTY block to it
- Fill in the following details:
  - Local Name: "currentCountValue"
  - Property Apply: "GET_PROPERTY"
  - Additional: "value"
- As for the data section, fill in the following details:
  - Reference: Check this box
  - Type: "Other"
  - Data: "_currentCount"
Add an ASSIGNMENT block:
- Drag an ASSIGNMENT block onto the canvas and connect the PROPERTY block to it
- Fill in the following details:
  - Local Name: "updatedCount"
- Add an "operation" submodule with 2 operands, and fill in the following details:
  - First Operand:
    - Reference: Check this box
    - Type: "Integer"
    - Data: "currentCountValue"
  - Second Operand:
    - Reference: Leave unchecked
    - Type: "Integer"
    - Data: "1"
- Operation Type: "Addition"
Add an UPDATE block:
- Drag an UPDATE block onto the canvas and connect the ASSIGNMENT block to it
- Fill in the following details:
  - Reference Collection: "count"
  - Reference Property: "value"
- As for the set section, fill in the following details:
  - Reference: Check this box
  - Type: "Integer"
  - Data: "updatedCount"
- Add an "update target" submodule with 1 operand, and fill in the following details:
  - Field: "id"
  - Operand:
    - Reference: Leave unchecked
    - Type: "Integer"
    - Data: "0"
    - Condition Type: "Equal To"
- Set: Check this box
- Save: Check this box
Add a RETURN block:
- Drag a RETURN block onto the canvas and connect the UPDATE block to it
- Add an "object pair" submodule
- Fill in the following details:
  - id: "count"
  - data:
    - Reference: Check this box
    - Type: "Integer"
    - Data: "updatedCount"
Ensure that your Flow Editor looks like the following:
Click "Create" to save your route

Route Page

6. Testing via Playground

Now let's test our counter API:

Navigate to "Playground" in the top navigation bar
Select your project
Click on the "GET_COUNTER" route
Click "Send" to make a request to your API
You should see a response like:
```
{
  "count": 1
}
```
Click "Send" again and you should see the counter increment:
```
{
  "count": 2
}
```

Playground Request Page

Congratulations!

You've successfully built a simple counter API using Kinesis API! Here's what you've accomplished:

Created a project to organize your API
Set up a collection to store data
Defined some structures (fields) for your counter
Created a data object with an initial value
Built a route that increments the counter
Tested your API and verified it works

Next Steps

Now that you understand the basics, here are some ways to extend this project:

Add a reset route: Create a new route that resets the counter to zero
Add custom increment: Modify the route to accept a parameter that specifies how much to increment by
Add multiple counters: Create multiple data objects and update your route to increment a specific counter
Add authentication: Require a token to increment the counter

Continuous Improvement

Note: Kinesis API is continuously evolving based on user feedback. As users test and provide suggestions, the platform will become simpler, more intuitive, and easier to use. This tutorial will be updated regularly to reflect improvements in the user experience and new features.

We value your feedback! If you have suggestions for improving this tutorial or the Kinesis API platform, please reach out through our contact page.

Projects - Learn more about managing projects
Collections - Detailed information about collections
Structures - Advanced structure options
Routes - More about creating routes
Playground - Testing your APIs

Implementing JWT Authentication

This tutorial will guide you through implementing a complete JWT (JSON Web Token) authentication system using Kinesis API. You'll create login functionality that generates tokens and a verification endpoint that validates those tokens, establishing a secure authentication flow for your APIs.

Prefer video tutorials? You can follow along with our YouTube walkthrough of this same project.

Prerequisites

Before you begin, you need:

Access to a Kinesis API instance:
- Either the demo environment at demo.kinesis.world
- Or your own self-hosted instance
A user account with ADMIN or ROOT privileges
Basic understanding of:
- REST APIs and HTTP methods
- Authentication concepts
- JSON Web Tokens (JWT)

What is JWT Authentication?

JWT (JSON Web Token) is an open standard for securely transmitting information between parties. In the context of authentication:

A user logs in with their credentials
The server validates the credentials and generates a signed JWT
The client stores this JWT and sends it with subsequent requests
The server verifies the JWT's signature to authenticate the user

This stateless approach eliminates the need for server-side session storage, making it ideal for APIs.

1. Creating the Authentication Project

First, let's create a project to organize our authentication API:

Log in to your Kinesis API instance
Navigate to the Projects page from the main menu
Click "Create New" to open the project creation modal
Fill in the following details:
- Name: "Authentication"
- ID: "auth"
- Description: "Simple project to test JWT authentication." (or anything else you want)
- API Path: "/auth" (this will be the base URL path for all routes in this project)
Click "Create" to save your project

2. Creating the Accounts Collection

Next, let's create a collection to store user accounts:

From your newly created project page, click "Create New" on the "Collections" section
Fill in the following details:
- Name: "Accounts"
- ID: "accounts"
- Description: "To store user accounts." (or anything else you want)
Click "Create" to save your collection

Project Page

3. Creating Structures

Now we'll create structures (fields) to store user information:

UID Structure

From the Accounts collection page, locate the "Structures" section
Click "Create New" to add a structure
Fill in the following details:
- Name: "uid"
- ID: "uid"
- Description: "" (leave blank or insert anything else)
- Type: "INTEGER"
- Min: "0"
- Max: "1000"
- Default Value: "0"
- Required: Check this box
- Unique: Check this box
Click "Create" to save the structure

Username Structure

Click "Create New" again to add another structure
Fill in the following details:
- Name: "username"
- ID: "username"
- Description: "" (leave blank or insert anything else)
- Type: "TEXT"
- Min: "4"
- Max: "100"
- Required: Check this box
- Unique: Check this box
Click "Create" to save the structure

Password Structure

Click "Create New" again to add the final structure
Fill in the following details:
- Name: "password"
- ID: "password"
- Description: "" (leave blank or insert anything else)
- Type: "PASSWORD"
- Min: "8"
- Max: "100"
- Required: Check this box
Click "Create" to save the structure

Collection Page

4. Creating a Test User Account

Let's create a test user to demonstrate our authentication system:

Navigate to the "Data" section in the top navigation bar
Select your "Authentication" project and then the "Accounts" collection
Click "Create New" to create a data object
Add a nickname (optional)
Fill in the fields:
- uid: "0" (this will be our unique identifier)
- username: "john_doe"
- password: "password123" (in a real system, you'd use a strong password)
Click "Create" to save your data object

Data Page

Now we'll create a route that validates credentials and generates a JWT token:

Navigate to "Routes" in the top navigation bar
Select your "Authentication" project
Click "Create New" to create a route
Fill in the route details:
- Route ID: "LOGIN"
- Route Path: "/login"
- HTTP Method: "POST"
Add 2 parameters to the "Body" section:
- username: "STRING"
- password: "STRING"
The "JWT Authentication" and "URL Parameters" sections don't need to be modified

Create Route

In the Flow Editor, we'll create a flow that:

Accepts username and password from the request body
Validates these against our stored accounts
Generates a JWT token if credentials are valid
Returns an error if credentials are invalid

Follow these steps:

Add a FETCH block:
- Drag a FETCH block onto the canvas and connect the START node to it
- Fill in the following details:
  - Local Name: "_accounts"
  - Reference Collection: "accounts"
Add a FILTER block:
- Drag a FILTER block onto the canvas and connect the FETCH block to it
- Fill in the following details:
  - Local Name: "_matchingAccounts"
  - Reference Variable: "_accounts"
  - Reference Property: "username"
- Add a "filter" submodule and fill in the following details:
  - Operation Type: "Equal To"
  - Operand:
    - Reference: Check this box
    - Type: "String"
    - Data: "username"
Add a PROPERTY block:
- Drag a PROPERTY block onto the canvas and connect the FILTER block to it
- Fill in the following details:
  - Local Name: "_matchingAccountsLength"
  - Property Apply: "LENGTH"
- As for the data section, fill in the following details:
  - Reference: Check this box
  - Type: "Array"
  - Data: "_matchingAccounts"
Add a CONDITION block:
- Drag a CONDITION block onto the canvas and connect the PROPERTY block to it
- Fill in the following details:
  - Action: "Fail"
  - Fail Object Status: "404"
  - Fail Object Message: "User not found"
- Add a "condition" submodule with 2 operands, and fill in the following details:
  - First Operand:
    - Reference: Check this box
    - Type: "Integer"
    - Data: "_matchingAccountsLength"
  - Second Operand:
    - Reference: Leave unchecked
    - Type: "Integer"
    - Data: "1"
  - Condition Type: "Less than"
Add a PROPERTY block:
- Drag a PROPERTY block onto the canvas and connect the CONDITION block to it
- Fill in the following details:
  - Local Name: "_foundAccount"
  - Property Apply: "GET_FIRST"
- As for the data section, fill in the following details:
  - Reference: Check this box
  - Type: "Array"
  - Data: "_matchingAccounts"
Add a PROPERTY block:
- Drag a PROPERTY block onto the canvas and connect the previous PROPERTY block to it
- Fill in the following details:
  - Local Name: "_savedPassword"
  - Property Apply: "GET_PROPERTY"
  - Additional: "password"
- As for the data section, fill in the following details:
  - Reference: Check this box
  - Type: "Other"
  - Data: "_foundAccount"
Add a CONDITION block:
- Drag a CONDITION block onto the canvas and connect the PROPERTY block to it
- Fill in the following details:
  - Action: "Fail"
  - Fail Object Status: "401"
  - Fail Object Message: "Invalid Password"
- Add a "condition" submodule with 2 operands, and fill in the following details:
  - First Operand:
    - Reference: Check this box
    - Type: "String"
    - Data: "password"
  - Second Operand:
    - Reference: Check this box
    - Type: "String"
    - Data: "_savedPassword"
  - Condition Type: "Not equal to"
Add a PROPERTY block:
- Drag a PROPERTY block onto the canvas and connect the CONDITION block to it
- Fill in the following details:
  - Local Name: "_uid"
  - Property Apply: "GET_PROPERTY"
  - Additional: "uid"
- As for the data section, fill in the following details:
  - Reference: Check this box
  - Type: "Other"
  - Data: "_foundAccount"
Add a FUNCTION block:
- Drag a FUNCTION block onto the canvas and connect the PROPERTY block to it
- Fill in the following details:
  - Local Name: "_jwt"
  - Function: "GENERATE_JWT_TOKEN"
- Add a "parameter" submodule and fill in the following details:
  - Reference: Check this box
  - Type: "Integer"
  - Data: "_uid"
Add a RETURN block:
- Drag a RETURN block onto the canvas and connect the FUNCTION block to it
- Add an "object pair" submodule
- Fill in the following details:
  - id: "uid"
  - data:
    - Reference: Check this box
    - Type: "Integer"
    - Data: "_uid"
- Add another "object pair" submodule
- Fill in the following details:
  - id: "jwt"
  - data:
    - Reference: Check this box
    - Type: "String"
    - Data: "_jwt"
Ensure that your Flow Editor looks like the following:
Click "Create" to save your route

Route Page

6. Creating the Verify Route

Now let's create a route that verifies JWT tokens:

Navigate back to "Routes" in the top navigation bar
Select your "Authentication" project
Click "Create New" to create a route
Fill in the route details:
- Route ID: "VERIFY"
- Route Path: "/verify"
- HTTP Method: "GET"
Fill in the details for the "JWT Authentication" section:
- Active: Check this box
- Field: "uid"
- Reference Collection: "accounts"
Set the "delimiter" to be "&" for the "URL Parameters" section
Add 1 parameter to the "URL Parameters" section:
- uid: "INTEGER"
The "Body" section doesn't need to be modified

Create Route

Building the Verification Route Logic

In the Flow Editor, we'll create a flow that:

Extracts the JWT token from the Authorization header
Verifies the token's signature and expiration
Returns the decoded payload if valid
Returns an error if invalid

Follow these steps:

Add a FETCH block:
- Drag a FETCH block onto the canvas and connect the START node to it
- Fill in the following details:
  - Local Name: "_accounts"
  - Reference Collection: "accounts"
Add a FILTER block:
- Drag a FILTER block onto the canvas and connect the FETCH block to it
- Fill in the following details:
  - Local Name: "_matchingAccounts"
  - Reference Variable: "_accounts"
  - Reference Property: "uid"
- Add a "filter" submodule and fill in the following details:
  - Operation Type: "Equal To"
  - Operand:
    - Reference: Check this box
    - Type: "Integer"
    - Data: "uid"
Add a PROPERTY block:
- Drag a PROPERTY block onto the canvas and connect the FILTER block to it
- Fill in the following details:
  - Local Name: "_foundAccount"
  - Property Apply: "GET_FIRST"
- As for the data section, fill in the following details:
  - Reference: Check this box
  - Type: "Array"
  - Data: "_matchingAccounts"
Add a PROPERTY block:
- Drag a PROPERTY block onto the canvas and connect the previous PROPERTY block to it
- Fill in the following details:
  - Local Name: "_username"
  - Property Apply: "GET_PROPERTY"
  - Additional: "username"
- As for the data section, fill in the following details:
  - Reference: Check this box
  - Type: "Other"
  - Data: "_foundAccount"
Add a RETURN block:
- Drag a RETURN block onto the canvas and connect the PROPERTY block to it
- Add an "object pair" submodule
- Fill in the following details:
  - id: "message"
  - data:
    - Reference: Leave unchecked
    - Type: "String"
    - Data: "Authentication Succeeded!"
- Add another "object pair" submodule
- Fill in the following details:
  - id: "username"
  - data:
    - Reference: Check this box
    - Type: "String"
    - Data: "_username"
Ensure that your Flow Editor looks like the following:
Click "Create" to save your route

Route Page

7. Testing the Authentication System

Now let's test our JWT authentication system using the Playground:

Navigate to "Playground" in the top navigation bar
Select your "Authentication" project
Click on the "LOGIN" route

Set the request body to:

{
  "username": "john_doe",
  "password": "password123"
}

Click "Send" to make a request to your API

You should see a response like:

{
  "uid": 0,
  "jwt": "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9..."
}

Copy the generated JWT token and memorize the value of the uid

Playground Request Page

Testing Edge Cases

Let's test some edge cases to ensure our authentication system is robust:

Invalid Username

Try the login route with an invalid username:

{
  "username": "wronguser",
  "password": "password123"
}

You should receive a 404 error response:

{
  "message": "User not found",
  "status": 404
}

Invalid Password

Try the login route with an incorrect password:

{
  "username": "john_doe",
  "password": "wrongpassword"
}

You should receive a 401 error response:

{
  "message": "Invalid Password",
  "status": 401
}

Testing the Verify Route

Navigate to "Playground" in the top navigation bar
Select your "Authentication" project
Click on the "VERIFY" route
Paste the JWT token that you copied from the previous section in the "Authorization" field
Enter the value "0" for the "uid" field in the "URL Parameters" section
Click "Send" to make a request to your API

You should see a response like:

{
  "message": "Authentication Succeeded!",
  "username": "john_doe"
}

Playground Request Page

Testing Edge Cases

Let's test some edge cases to ensure our authentication system is robust:

No Authorization Header / Invalid Token
- Try the verify route without an Authorization header or by setting it to a random value
- You should receive a 500 error response:
```
{
  "message": "Error: Failed decoding JWT (InvalidToken)",
  "status": 500
}
```
Wrong UID
- Try the verify route with a different value for the "uid" field
- You should receive a 403 error response:
```
{
  "message": "Error: Incorrect uid",
  "status": 403
}
```

Congratulations!

You've successfully implemented a complete JWT authentication system using Kinesis API! Here's what you've accomplished:

Created a project and collection to store user accounts
Set up the necessary data structures for authentication
Built a login route that validates credentials and generates JWT tokens
Created a verification route that validates tokens
Tested both successful authentication flows and edge cases

Next Steps

To build on this authentication system, you could:

Add User Registration: Create a route that allows new users to register
Add Role-Based Access Control: Extend the JWT payload to include user roles for authorization
Create Protected Routes: Build additional routes that require valid authentication
Add Refresh Tokens: Implement a token refresh mechanism for longer sessions

Continuous Improvement

Note: Kinesis API is continuously evolving based on user feedback. As users test and provide suggestions, the platform will become simpler, more intuitive, and easier to use. This tutorial will be updated regularly to reflect improvements in the user experience and new features. A dedicated "AUTH" block is planned for the future to dramatically simplify the process of adding authentication to your APIs.

We value your feedback! If you have suggestions for improving this tutorial or the Kinesis API platform, please reach out through our contact page.

Projects - Learn more about managing projects
Collections - Detailed information about collections
Structures - Advanced structure options
Routes - More about creating routes
Playground - Testing your APIs

Keyboard shortcuts

Kinesis API Docs