This document covers all endpoint operations.
If you discover that some topic related to the behavior of the endpoint operation isn't documented, please open an issue in the repository.
Throughout the document you'll come across identifiers such as <version>, <string>, <integer>, etc. These identifiers represent placeholders. Users are expected to replace placeholders with appropriate values.
curl -X POST -u <username>:<password> http://localhost:<port>/irods-http-api/<version>/authenticate<version> must match the format, X.Y.Z, where X is the major version number, Y is the minor version number, and Z is the patch version number.
A string representing a bearer token that can be used to execute operations as the authenticated user.
Tokens obtained via this authentication scheme have a finite lifetime. The lifetime of a token is defined in the configuration file at /http_server/authentication/basic/timeout_in_seconds. Use of the token does NOT extend its lifetime.
Attempting to use an expired or invalid token will result in a response containing a status code of 401 Unauthorized. Checking for this status code is key to detecting when the client needs to reauthenticate.
Reauthentication can be performed at anytime and will result in a brand new token. This does NOT invalidate previously acquired tokens.
For authenticating with OpenID Connect, there are three methods, two of which are run as clients:
To run this client-based scheme, you must set mode in the openid_connect stanza to client.
The core advantage of this grant is the flexibility in how it may be applied.
Following is a brief example of authenticating from the command line.
username_and_password=$(echo -n "<username>:<password>" | base64 -)
curl -X POST -H "Authorization: iRODS $username_and_password" \
http://localhost:<port>/irods-http-api/<version>/authenticateA string representing a bearer token that can be used to execute operations as the authenticated user.
To run this client-based scheme, you must set mode in the openid_connect stanza to client.
Using this grant requires a bit more work to extract the token. Authentication is done in the browser.
curl http://localhost:<port>/irods-http-api/<version>/authenticate -vAfter running the previous command, you should see output similar to the following:
* Trying [::1]:9000...
* Connected to localhost (::1) port 9000
> GET /irods-http-api/<version>/authenticate HTTP/1.1
> Host: localhost:9000
> User-Agent: curl/8.4.0
> Accept: */*
>
< HTTP/1.1 302 Found
< Server: irods_http_api/<version> (<build_sha>)
< Location: http://oidc.example.org/realms/example/protocol/openid-connect/auth?...
< Content-Length: 0
<
* Connection #0 to host localhost left intact
To authenticate, you need to head to the Location provided in the response.
This will open a browser window that will allow you to authenticate in.
The bearer token should be returned and viewable in the browser window after authenticating.
To run as an OAuth protected resource, set mode in the openid_connect stanza to protected_resource.
While running in this mode, the HTTP API does not provide any grants to which you can authenticate. Instead, you must implement an OAuth client yourself, authenticate, and provide an access token as a Bearer token when querying the HTTP API endpoints.
In order for the access token to be accepted, two conditions must be met:
- The OpenID Provider recognizes the token as valid and active.
- The token must be able to be mapped to a local zone user using a valid user mapping plugin.
If these conditions are met, then the access token will be accepted, and the action will be carried out as the mapped user.
Creates a new collection.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=create' \
--data-urlencode 'lpath=<string>' \
--data-urlencode 'create-intermediates=<integer>' # 0 or 1. Defaults to 0. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"created": false // Conditionally available. Check "irods_response/status_code" first.
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes a collection.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove' \
--data-urlencode 'lpath=<string>' \
--data-urlencode 'recurse=<integer>' \ # 0 or 1. Defaults to 0. Optional.
--data-urlencode 'no-trash=<integer>' # 0 or 1. Defaults to 0. Optional.If recurse is set to 1, the contents of the collection will be removed. If no-trash is set to 1, the collection is permanently removed.
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Returns information about a collection.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=stat' \
--data-urlencode 'lpath=<string>' \
--data-urlencode 'ticket=<string>' \ # Optional.
-GIf ticket is passed a valid ticket string, it will be enabled before carrying out the operation.
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"type": "string",
"inheritance_enabled": false,
"permissions": [
{
"name": "string",
"zone": "string",
"type": "string",
"perm": "string"
}
],
"registered": false,
"modified_at": 0
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Returns the contents of a collection.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=list' \
--data-urlencode 'lpath=<string>' \
--data-urlencode 'recurse=<integer>' \ # 0 or 1. Defaults to 0. Optional.
--data-urlencode 'ticket=<string>' \ # Optional
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"entries": [
"string",
"string",
"string"
]
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Sets the permission of a user or group on a collection.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=set_permission' \
--data-urlencode 'lpath=<string>' \
--data-urlencode 'entity-name=<string>' \ # The name of a user or group.
--data-urlencode 'permission=<string>' \
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.The following permission levels are supported:
- own
- delete_object
- modify_object (equivalent to write)
- create_object
- delete_metadata
- modify_metadata
- create_metadata
- read_object (equivalent to read)
- read_metadata
- null
The following legacy permission levels are supported as well:
- own
- write
- read
- null
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Enable or disable inheritance on a collection.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=set_inheritance' \
--data-urlencode 'lpath=<string>' \
--data-urlencode 'enable=<integer>' \ # 0 or 1.
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Adjust permissions for multiple users and groups on a collection atomically.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=modify_permissions' \
--data-urlencode 'lpath=<string>' \
--data-urlencode 'operations=<json_object>' \
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.The JSON object passed to the operations parameter must have the following structure:
[
{
"entity_name": "string", // The name of a user or group.
"acl": "string" // null, read, write, or own.
},
// Additional ACL operations ...
]If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range. If an operation failed, the irods_response object will include an additional property called failed_operation. The structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string", // Optional
"failed_operation": {
"error_message": "string",
"operation": {
"entity_name": "string", // The name of a user or group.
"acl": "string" // null, read, write, or own.
},
"operation_index": 0
}
}
}Adjust multiple AVUs on a collection.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=modify_metadata' \
--data-urlencode 'lpath=<string>' \
--data-urlencode 'operations=<json_object>' \
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.The JSON object passed to the operations parameter must have the following structure:
[
{
"operation": "string", // add or remove.
"attribute": "string",
"value": "string",
"units": "string" // Optional.
},
// Additional AVU operations ...
]If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range. If an operation failed, the irods_response object will include an additional property called failed_operation. The structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string", // Optional
"failed_operation": {
"error_message": "string",
"operation": {
"operation": "string", // add or remove.
"attribute": "string",
"value": "string",
"units": "string" // Optional.
},
"operation_index": 0
}
}
}Renames or moves a collection.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=rename' \
--data-urlencode 'old-lpath=<string>' \
--data-urlencode 'new-lpath=<string>'If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Updates the mtime of an existing collection.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/collections \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=touch' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a collection.
--data-urlencode 'seconds-since-epoch=<integer>' \ # The mtime to assign to the collection. Optional.
--data-urlencode 'reference=<string>' # The absolute logical path of an object whose mtime will be copied to the collection. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Updates the mtime of an existing data object or creates a new data object if it does not exist.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=touch' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'no-create=<integer>' \ # 0 or 1. Defaults to 0. If set to 1, no data objects will be created. Optional.
--data-urlencode 'replica-number=<integer>' \ # The replica to update. The replica must exist. Optional.
--data-urlencode 'leaf-resource=<string>' \ # The resource holding an existing replica. If it does not exist, it will be created on the specified resource. Optional.
--data-urlencode 'seconds-since-epoch=<integer>' \ # The mtime to assign to the replica. Optional.
--data-urlencode 'reference=<string>' # The absolute logical path of an object whose mtime will be copied to the data object. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes a data object or unregisters all replicas.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'catalog-only=<integer>' \ # 0 or 1. If set to 1, removes only the catalog entry.
--data-urlencode 'no-trash=<integer>' \ # 0 or 1. Defaults to 0. If set to 1, permanently deletes the data object. Optional.
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.catalog-only and no-trash are mutually exclusive parameters. Setting both to 1 will result in an error.
catalog-only requires rodsadmin level privileges. This requirement can be relaxed by adjusting the iRODS server's policy.
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Calculates the checksum for a data object.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=calculate_checksum' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'resource=<string>' \ # The resource holding the target replica. Optional.
--data-urlencode 'replica-number=<integer>' \ # The replica number of the target replica. Optional.
--data-urlencode 'force=<integer>' \ # 0 or 1. Defaults to 0. Overwrite the existing checksum. Optional.
--data-urlencode 'all=<integer>' \ # 0 or 1. Defaults to 0. Calculate checksums for all replicas. Optional.
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.resource, replica-number, and all are mutually exclusive parameters.
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"checksum": "string"
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Verifies the checksum information for a data object.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=verify_checksum' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'resource=<string>' \ # The resource holding the target replica. Optional.
--data-urlencode 'replica-number=<integer>' \ # The replica number of the target replica. Optional.
--data-urlencode 'compute-checksums=<integer>' \ # 0 or 1. Defaults to 1. Can be used to skip the checksum calculation step. Optional.
--data-urlencode 'admin=<integer>' \ # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"results": {
// Verification results. This object only exists if the operation found inconsistencies
// between what's in storage and what's in the catalog.
},
"r_error_info": [
{
"status": 0,
"message": "string"
},
// Additional elements ...
]
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Returns information about a data object.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=stat' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'ticket=<string>' \ # The ticket to enable before stat'ing the data object. Optional.
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"type": "string",
"permissions": [
{
"name": "string",
"zone": "string",
"type": "string",
"perm": "string"
}
],
"size": 0,
"checksum": "string",
"registered": false,
"modified_at": 0
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Renames or moves a data object.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=rename' \
--data-urlencode 'old-lpath=<string>' \ # The absolute logical path of the data object to rename.
--data-urlencode 'new-lpath=<string>' # The new absolute logical path of the data object.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Copies a data object.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=copy' \
--data-urlencode 'src-lpath=<string>' \ # The absolute logical path of the data object to copy.
--data-urlencode 'dst-lpath=<string>' \ # The absolute logical path of a new or existing data object.
--data-urlencode 'src-resource=<string>' \ # The name of the root resource to copy from. Optional.
--data-urlencode 'dst-resource=<string>' \ # The name of the root resource to copy to. Optional.
--data-urlencode 'overwrite=<integer>' # 0 or 1. Defaults to 0. Optional. Instructs the server to replace the existing data object.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Replicates an existing replica from one resource to another resource.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=replicate' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'src-resource=<string>' \ # The resource to replicate from.
--data-urlencode 'dst-resource=<string>' \ # The resource to replicate to.
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Trims an existing replica or removes its catalog entry.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=trim' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'replica-number=<integer>' \ # The replica number identifying the replica to trim.
--data-urlencode 'catalog-only=<integer>' \ # 0 or 1. If set to 1, removes only the catalog entry. Optional.
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Registers a new data object and/or replica into the catalog.
This operation may require rodsadmin level privileges depending on the configuration of the iRODS zone. Contact the administrator of the iRODS zone to be sure non-rodsadmin users are allowed to execute this operation.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=register' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'ppath=<string>' \ # Absolute physical path to file on the iRODS server.
--data-urlencode 'resource=<string>' \ # The resource which will own the replica.
--data-urlencode 'as-additional-replica=<integer>' \ # 0 or 1. Defaults to 0. Register as an additional replica for an existing data object. Optional.
--data-urlencode 'data-size=<integer>' \ # The size of the replica in bytes. Optional.
--data-urlencode 'checksum=<string>' \ # The checksum to associate with the replica. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Reads bytes from a data object.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=read' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'offset=<integer>' \ # Number of bytes to skip. Defaults to 0. Optional.
--data-urlencode 'count=<integer>' \ # Number of bytes to read. Optional.
--data-urlencode 'ticket=<string>' \ # The ticket to enable before reading the data object. Optional.
-GIf an HTTP status code of 200 is returned, the body of the response will contain the bytes read from the data object.
If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Writes bytes to a data object.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
[-F,--data-urlencode] 'op=write' \
[-F,--data-urlencode] 'lpath=<string>' \ # Absolute logical path to a data object.
[-F,--data-urlencode] 'resource=<string>' \ # The root resource to write to. Optional.
[-F,--data-urlencode] 'offset=<integer>' \ # Number of bytes to skip. Defaults to 0. Optional.
[-F,--data-urlencode] 'truncate=<integer>' \ # 0 or 1. Defaults to 1. Truncates the data object before writing. Optional.
[-F,--data-urlencode] 'append=<integer>' \ # 0 or 1. Defaults to 0. Appends the bytes to the data object. Optional.
[-F,--data-urlencode] 'bytes=<binary_data>;type=application/octet-stream' \ # The bytes to write.
[-F,--data-urlencode] 'parallel-write-handle=<string>' \ # The handle to use when writing in parallel. Optional.
[-F,--data-urlencode] 'stream-index=<integer>' # The stream to use when writing in parallel. Optional.This is the full set of parameters supported by the operation.
When sending large amounts of data or writing in parallel, prefer multipart/form-data over application/x-www-form-urlencoded as the Content-Type.
parallel-write-handle and stream-index only apply when writing to a replica in parallel. To obtain a parallel-write-handle, see parallel_write_init.
If an HTTP status code of 200 is returned, the body of the response will contain the bytes read from the data object.
{
"irods_response": {
"status_code": 0,
"status_message": "string" // Optional
}
}
If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Initializes server-side state used for writing to a data object in parallel.
Returns a parallel-write-handle that can be used for parallel write operations.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=parallel_write_init' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'stream-count=<integer>' \ # Number of streams to open.
--data-urlencode 'truncate=<integer>' \ # 0 or 1. Defaults to 1. Truncates the data object before writing. Optional.
--data-urlencode 'append=<integer>' \ # 0 or 1. Defaults to 0. Appends the bytes to the data object. Optional.
--data-urlencode 'ticket=<string>' # The ticket to enable for all streams. Optional.{
"irods_response": {
"status_code": 0,
"status_message": "string" // Optional
},
"parallel_write_handle": "string"
}
Instructs the server to shutdown and release any resources used for parallel write operations.
This operation MUST be called to complete the parallel write operation. Failing to call this operation will result in intermediate replicas and the server leaking memory.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=parallel_write_shutdown' \
--data-urlencode 'parallel-write-handle=<string>' # A handle obtained via the parallel_write_init operation.{
"irods_response": {
"status_code": 0,
"status_message": "string" // Optional
}
}
Adjust multiple AVUs on a data object.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=modify_metadata' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'operations=<json_object>' \
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.The JSON object passed to the operations parameter must have the following structure:
[
{
"operation": "string", // add or remove.
"attribute": "string",
"value": "string",
"units": "string" // Optional.
},
// Additional AVU operations ...
]If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range. If an operation failed, the irods_response object will include an additional property called failed_operation. The structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string", // Optional
"failed_operation": {
"error_message": "string",
"operation": {
"operation": "string", // add or remove.
"attribute": "string",
"value": "string",
"units": "string" // Optional.
},
"operation_index": 0
}
}
}Sets the permission of a user or group on a data object.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=set_permission' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'entity-name=<string>' \ # The name of a user or group.
--data-urlencode 'permission=<string>' \
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.The following permission levels are supported:
- own
- delete_object
- modify_object (equivalent to write)
- create_object
- delete_metadata
- modify_metadata
- create_metadata
- read_object (equivalent to read)
- read_metadata
- null
The following legacy permission levels are supported as well:
- own
- write
- read
- null
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Adjust permissions for multiple users and groups on a data object atomically.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=modify_permissions' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'operations=<json_object>' \
--data-urlencode 'admin=<integer>' # 0 or 1. Defaults to 0. Execute as a rodsadmin. Optional.The JSON object passed to the operations parameter must have the following structure:
[
{
"entity_name": "string", // The name of a user or group.
"acl": "string" // null, read, write, or own.
},
// Additional ACL operations ...
]If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range. If an operation failed, the irods_response object will include an additional property called failed_operation. The structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string", // Optional
"failed_operation": {
"error_message": "string",
"operation": {
"entity_name": "string", // The name of a user or group.
"acl": "string" // null, read, write, or own.
},
"operation_index": 0
}
}
}Modifies properties of a single replica.
WARNING: This operation requires rodsadmin level privileges and should only be used when there isn't a safer option. Misuse can lead to catalog inconsistencies and unexpected behavior.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/data-objects \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=modify_replica' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object.
--data-urlencode 'resource-hierarchy=<string>' \
--data-urlencode 'replica-number=<integer>' \
--data-urlencode 'new-data-checksum=<string>' \
--data-urlencode 'new-data-comments=<string>' \
--data-urlencode 'new-data-create-time=<integer>' \
--data-urlencode 'new-data-expiry=<integer>' \
--data-urlencode 'new-data-mode=<string>' \
--data-urlencode 'new-data-modify-time=<string>' \
--data-urlencode 'new-data-path=<string>' \
--data-urlencode 'new-data-replica-number=<integer>' \
--data-urlencode 'new-data-replica-status=<integer>' \
--data-urlencode 'new-data-resource-id=<integer>' \
--data-urlencode 'new-data-size=<integer>' \
--data-urlencode 'new-data-status=<string>' \
--data-urlencode 'new-data-type-name=<string>' \
--data-urlencode 'new-data-version=<string>'resource-hierarchy and replica-number are mutually exclusive parameters.
All parameters having a prefix of new- represent modifiable properties of the target replica. At least one modifiable property is required for the operation to succeed. This operation allows multiple properties to be modified in a single call.
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Returns general information about the iRODS HTTP API server.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/infoIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"api_version": "string",
"build": "string",
"irods_zone": "string",
"max_number_of_parallel_write_streams": 0,
"max_number_of_rows_per_catalog_query": 0,
"max_size_of_request_body_in_bytes": 0,
"openid_connect_enabled": false
}Executes a GenQuery string and returns the results.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/query \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=execute_genquery' \
--data-urlencode 'query=<string>' \
--data-urlencode 'offset=<integer>' \ # Number of rows to skip. Defaults to 0. Optional.
--data-urlencode 'count=<integer>' \ # Number of rows to return. Default set by administrator. Optional.
--data-urlencode 'case-sensitive=<integer>' \ # Execute a case sensitive/insensitive query. Defaults to 1. Only supported by GenQuery1. Optional.
--data-urlencode 'distinct=<integer>' \ # Collapse duplicate rows. Defaults to 1. Only supported by GenQuery1. Optional.
--data-urlencode 'parser=<string>' \ # genquery1 or genquery2. Defaults to genquery1. Optional.
--data-urlencode 'sql-only=<integer>' \ # 0 or 1. Defaults to 0. Only supported by GenQuery2. Optional.
--data-urlencode 'zone=<string>' \ # The zone name. Defaults to the local zone. Optional.
-Gcount will be clamped to the range [1, N] where N represents the max number of rows that can be returned by any query. The max number of rows is defined by the administrator of the iRODS HTTP API and can be obtained by sending an HTTP GET request to the /info endpoint. See Information Operations for more details.
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"rows": [
["string", "string", "string"],
// Additional rows ...
],
"sql": "string" // If "sql-only" option is set to 1.
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Executes a specific query and returns the results.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/query \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=execute_specific_query' \
--data-urlencode 'name=<string>' \ # Name of specific query.
--data-urlencode 'args=<string>' \ # List of arguments. Optional.
--data-urlencode 'args-delimiter=<string>' \ # Delimiter used to separate arguments. Defaults to comma (,). Optional.
--data-urlencode 'offset=<integer>' \ # Number of rows to skip. Defaults to 0. Optional.
--data-urlencode 'count=<integer>' \ # Number of rows to return. Default set by administrator. Optional.
-Gcount will be clamped to the range [1, N] where N represents the max number of rows that can be returned by any query. The max number of rows is defined by the administrator of the iRODS HTTP API and can be obtained by sending an HTTP GET request to the /info endpoint. See Information Operations for more details.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"rows": [
["string", "string", "string"],
// Additional rows ...
]
}Adds a SpecificQuery to the iRODS zone.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/query \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=add_specific_query' \
--data-urlencode 'name=<string>' \ # The name of the SpecificQuery.
--data-urlencode 'sql=<string>' # The SQL attached to the SpecificQuery.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}Removes a SpecificQuery from the iRODS zone.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/query \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove_specific_query' \
--data-urlencode 'name=<string>' # The name of the SpecificQuery.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}Creates a new resource.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/resources \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=create' \
--data-urlencode 'name=<string>' \ # Name of the resource.
--data-urlencode 'type=<string>' \ # Type of the resource.
--data-urlencode 'host=<string>' \ # Depends on the resource's type. May be required.
--data-urlencode 'vault-path=<string>' \ # Depends on the resource's type. May be required.
--data-urlencode 'context=<string>' # Depends on the resource's type. May be required.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes a resource.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/resources \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove' \
--data-urlencode 'name=<string>' # Name of the resource.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Modifies a single property of a resource.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/resources \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=modify' \
--data-urlencode 'name=<string>' \ # Name of the resource.
--data-urlencode 'property=<string>' \ # Name of the property to modify.
--data-urlencode 'value=<string>' # The new value of the property.The following properties are supported:
- name
- type
- host
- vault_path
- context
- status
- free_space
- comments
- information
For the status property, value must be set to up or down. Attempting to pass a value other the ones described will result in an HTTP error.
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Creates a parent-child relationship between two resources.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/resources \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=add_child' \
--data-urlencode 'parent-name=<string>' \
--data-urlencode 'child-name=<string>' \
--data-urlencode 'context=<string>' # Additional information for the zone. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes the parent-child relationship between two resources.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/resources \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove_child' \
--data-urlencode 'parent-name=<string>' \
--data-urlencode 'child-name=<string>'If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Rebalances a resource hierarchy.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/resources \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=rebalance' \
--data-urlencode 'name=<string>'If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Returns information about a resource.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/resources \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=stat' \
--data-urlencode 'name=<string>' \
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"exists": false,
"info": {
"id": "string",
"name": "string",
"type": "string",
"zone": "string",
"host": "string",
"vault_path": "string",
"status": "string",
"context": "string",
"comments": "string",
"information": "string",
"free_space": "string",
"free_space_last_modified": 0,
"parent_id": "string",
"created": 0,
"last_modified": 0,
"last_modified_millis": 0
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Adjust multiple AVUs on a resource.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/resources \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=modify_metadata' \
--data-urlencode 'name=<string>' \
--data-urlencode 'operations=<json_object>'The JSON object passed to the operations parameter must have the following structure:
[
{
"operation": "string", // add or remove.
"attribute": "string",
"value": "string",
"units": "string" // Optional.
},
// Additional AVU operations ...
]If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range. If an operation failed, the irods_response object will include an additional property called failed_operation. The structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string", // Optional
"failed_operation": {
"error_message": "string",
"operation": {
"operation": "string", // add or remove.
"attribute": "string",
"value": "string",
"units": "string" // Optional.
},
"operation_index": 0
}
}
}Lists the available rule engine plugin instances of the connected iRODS server.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/rules \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=list_rule_engines' \
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"rule_engine_plugin_instances": [
"string",
"string",
"string"
]
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Executes rule code.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/rules \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=execute' \
--data-urlencode 'rule-text=<string>' \ # The rule code to execute.
--data-urlencode 'rep-instance=<string>' # The rule engine plugin to run the rule-text against. Optional.If rep-instance is not passed, the rule text will be tried on ALL rule engine plugins. Any errors that occur will be ignored. Setting rep-instance is highly recommended.
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"stdout": "string",
"stderr": "string"
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes a delay rule from the catalog.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/rules \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove_delay_rule' \
--data-urlencode 'rule-id=<integer>' # The ID of delay rule to remove.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Creates a new ticket for a collection or data object.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/tickets \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=create' \
--data-urlencode 'lpath=<string>' \ # Absolute logical path to a data object or collection.
--data-urlencode 'type=<string>' \ # read or write. Defaults to read. Optional.
--data-urlencode 'use-count=<integer>' \ # Number of times the ticket can be used. Optional.
--data-urlencode 'write-data-object-count=<integer>' \ # Max number of writes that can be performed. Optional.
--data-urlencode 'write-byte-count=<integer>' \ # Max number of bytes that can be written. Optional.
--data-urlencode 'seconds-until-expiration=<integer>' \ # Number of seconds before the ticket expires. Optional.
--data-urlencode 'users=<string>' \ # Comma-delimited list of users allowed to use the ticket. Optional.
--data-urlencode 'groups=<string>' \ # Comma-delimited list of groups allowed to use the ticket. Optional.
--data-urlencode 'hosts=<string>' # Comma-delimited list of hosts allowed to use the ticket. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"ticket": "string" // The generated ticket string.
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes a ticket.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/tickets \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove' \
--data-urlencode 'name=<string>' # The ticket string.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Creates a new user.
This operation requires rodsadmin or groupadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=create_user' \
--data-urlencode 'name=<string>' \ # Name of user.
--data-urlencode 'zone=<string>' \ # Name of zone for user.
--data-urlencode 'user-type=<string>' # rodsuser, groupadmin, or rodsadmin. Defaults to rodsuser. Optional.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes a user.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove_user' \
--data-urlencode 'name=<string>' \ # Name of user.
--data-urlencode 'zone=<string>' # Name of zone for user.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Changes a user's password.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=set_password' \
--data-urlencode 'name=<string>' \ # Name of user.
--data-urlencode 'zone=<string>' \ # Name of zone for user.
--data-urlencode 'new-password=<string>'If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Changes a user's type.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=set_user_type' \
--data-urlencode 'name=<string>' \ # Name of user.
--data-urlencode 'zone=<string>' \ # Name of zone for user.
--data-urlencode 'new-user-type=<string>' # rodsuser, groupadmin, or rodsadmin.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Creates a new group.
This operation requires rodsadmin or groupadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=create_group' \
--data-urlencode 'name=<string>' # Name of the group.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes a group.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove_group' \
--data-urlencode 'name=<string>' # Name of the group.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Adds a user to a group.
This operation requires rodsadmin or groupadmin level privileges.
Users of type groupadmin are allowed to execute this operation if at least one of the following conditions is true:
- The target group is initially empty
- The groupadmin user is a member of the group
Users of type groupadmin are always allowed to add themselves to an empty group. If the target group is not empty and the groupadmin user isn't a member of the group, execution of this operation will result in an error.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=add_to_group' \
--data-urlencode 'user=<string>' # Name of the user.
--data-urlencode 'zone=<string>' # Name of zone for the user.
--data-urlencode 'group=<string>' # Name of the group.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes a user from a group.
This operation requires rodsadmin or groupadmin level privileges.
If the user is of type groupadmin, they must be a member of the target group to execute this operation.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove_from_group' \
--data-urlencode 'user=<string>' # Name of the user.
--data-urlencode 'zone=<string>' # Name of zone for the user.
--data-urlencode 'group=<string>' # Name of the group.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Lists all users in the zone.
This operation requires rodsadmin level privileges.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=users' \
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"users": [
{
"name": "string",
"zone": "string"
},
// Additional users.
]
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Lists all groups in the zone.
This operation requires rodsadmin level privileges.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=groups' \
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"groups": [
"string",
"string",
"string"
]
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Returns whether a user is a member of a group.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=is_member_of_group' \
--data-urlencode 'group=<string>' \ # Name of the group.
--data-urlencode 'user=<string>' \ # Name of the user.
--data-urlencode 'zone=<string>' \ # Name of zone for the user.
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"is_member": false
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Returns information about a user or group.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=stat' \
--data-urlencode 'name=<string>' \ # Name of a user or group.
--data-urlencode 'zone=<string>' \ # Name of zone if name represents a user. Not required for groups.
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"exists": false,
"id": "string",
"local_unique_name": "string",
"type": "string"
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Adjust multiple AVUs on a user or group.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/users-groups \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=modify_metadata' \
--data-urlencode 'name=<string>' \
--data-urlencode 'operations=<json_object>'The JSON object passed to the operations parameter must have the following structure:
[
{
"operation": "string", // add or remove.
"attribute": "string",
"value": "string",
"units": "string" // Optional.
},
// Additional AVU operations ...
]If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range. If an operation failed, the irods_response object will include an additional property called failed_operation. The structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string", // Optional
"failed_operation": {
"error_message": "string",
"operation": {
"operation": "string", // add or remove.
"attribute": "string",
"value": "string",
"units": "string" // Optional.
},
"operation_index": 0
}
}
}Adds a remote zone to the local zone.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/zones \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=add' \
--data-urlencode 'name=<string>' \ # The name of the remote zone to add.
--data-urlencode 'connection-info=<string>' \ # The host and port to connect to. Optional.
--data-urlencode 'comment=<string>' # A comment to attach to the remote zone. Optional.If connection-info is included, it must have the following structure: <host>:<port>
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Removes a remote zone from the local zone.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/zones \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=remove' \
--data-urlencode 'name=<string>' # The name of the remote zone to remove.If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Modifies properties of a remote zone.
This operation requires rodsadmin level privileges.
HTTP Method: POST
curl http://localhost:<port>/irods-http-api/<version>/zones \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=modify' \
--data-urlencode 'name=<string>' \ # The name of the remote zone to modify.
--data-urlencode 'property=<string>' \ # The property to modify.
--data-urlencode 'value=<string>' # The new value of the property.The following properties are supported:
- name
- connection_info
- comment
The value for connection_info must have the following structure: <host>:<port>
If an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Returns information about a zone.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/zones \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=stat' \
--data-urlencode 'name=<string>' \
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"exists": false,
"info": {
"id": 0,
"name": "string",
"type": "string",
"connection_info": "string",
"comment": "string"
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.
Returns information about the iRODS zone.
This operation requires rodsadmin level privileges.
HTTP Method: GET
curl http://localhost:<port>/irods-http-api/<version>/zones \
-H 'Authorization: Bearer <token>' \
--data-urlencode 'op=report' \
-GIf an HTTP status code of 200 is returned, the body of the response will contain JSON. Its structure is shown below.
{
"irods_response": {
"status_code": 0
"status_message": "string" // Optional
},
"zone_report": {
// Equivalent output of executing izonereport.
}
}If there was an error, expect an HTTP status code in either the 4XX or 5XX range.