Entitlement API

Help Center

Entitlement API

The entitlement functionality can be used to validate an email and password for either a user, contact, or subscriber. For users the functionality is limited to getting basic information about the user. In this way it can be used as a single sign-on mechanism for an external application to validate users by their Ad Orbit credentials. For contact and subscribers the available functions include login validation and basic information like for users, but also additional endpoints for getting subscriptions or issues that are available based on their subscriptions. Making a Request:The format for requests is the same as for the general API functionality. Please read the API documentation for information about how to generate the Authorization header for requests. Note that while a user’s public and private keys will be used for entitlement, the user must also have checked the “Use API for Entitlement Only” box for the entitlement endpoints to be available. This means these keys will not be able to access the general API endpoints, but instead will only have access to entitlement for security. If the desire is to use both the general API endpoints and entitlement, then two separate sets of keys will need to be used. The accept header is the same for all entitlement requests:

application/vnd.adorbit+json;version=1.0

Entitlements:

{
    "Entitlement (login)": POST: "path-to-domain/entitlement",
    "User Information": POST: "path-to-domain/entitlement-user-info",
    "Issues": GET: "path-to-domain/issues-by-token/{token}",
    "Subscriptions": GET: "path-to-domain/subscriptions-by-token/{token}",
    "Issues by Subscription": GET: "path-to-domain/issues-by-subscription/{subscription id}/token/{token}",
    "Issues by Publication": GET: "path-to-domain/issues-by-publication/{publication id}/token/{token}",
}

Entitlement (Login) endpoint for POST requests: “path-to-domain/entitlement”

The login request expects three fields to be posted in the form-data: “email”, “password”, and “type”. Type should be set to “user” for user login or “contact” for contact requests. When developing entitlement functionality it is important to know that a token is only active within 24 hours of last being used by default, the same way login sessions expire when using Ad Orbit in a browser.

User and Contact information endpoint for POST requests:

“path-to-domain/entitlement-user-info”To get user or contact information the “token” field from the login request must be passed in the form-data. An array of of columns to retrieve must also be posted as “columns[]”. The available columns for users are “userid”, “title”, “fname”, “lname”, “email”, “external_profile_id”, and “external_profile_id_2”. For contacts the available columns are “contact_firstname”, “contact_lastname”, “contact_email”, and “contact_xref”.

Subscription-based GET requests:

“path-to-domain/issues-by-token/{token}”“path-to-domain/subscriptions-by-token/{token}”“path-to-domain/issues-by-subscription/{subscription-id}/token/{token}”“path-to-domain/issues-by-publication/{publication-id}/token/{token}”These subscription-based requests are only valid for contacts and subscribers. For these requests no body is necessary; the token is just required in the URL as well as the Accept and Authorization headers like with any of the API requests.

Errors

If the request is not formatted correctly, with an error in either the URL or the headers, errors will return the same way as for regular API requests (see Response). If the request is properly structured but gets another error, for example if the email, password or token are incorrect, an error is returned as a string. With a successful request the response will be in the form of a JSON object.

In this section:

Help Center

Entitlement API

Search results