Zemtu
  • Introduction
  • Features
    • Translations
    • Branding and customizations
    • Reservation GUI
    • Carsharing Group Overview
    • Admin interface
    • Billing module
    • Accreditation
  • Changelogs
    • Backend
      • 2025
    • Desktop
    • Mobile
  • Core
    • Introduction
    • User Roles
      • Organisation level
      • Accreditation Circle level
      • Carsharing Group level
    • Master data
      • User
      • Vehicle
      • Carsharing Group
      • Membership
      • Reservation
      • Organisation
      • Accreditation
      • Accreditation Circle
      • Chip card
    • Guides
      • First steps
      • Manage memberships
      • Manage reservations for other users
      • Change to user
    • Customization Options
  • Billing
  • Introduction
  • Workflow
  • Master data
    • Payer
    • Billing cluster
    • Reservation rate
    • Vehicle rate class
    • Rate plan
    • Tariff exception
    • Package
    • Package assignment
    • Payment adoption
    • Service provider
    • Manual payment
    • Invoice
    • Invoice run
    • Turnover guarantee
  • Guides
    • Initial billing setup
    • Monthly billing workflow
    • 🎫Coupons
  • On-board units
    • Convadis
      • Guides
        • First level support
        • Connect Convadis CBox
        • Order chip cards
        • Manage chip cards
    • INVERS
      • Chip card reader
      • 🌂Umbrella feature
  • API
    • REST
    • GraphQL
  • Mobile
    • 🌂Umbrella feature
Powered by GitBook
On this page
  • About GraphQL
  • Authentication
  • Reservation API
  • Management API
  1. API

GraphQL

PreviousRESTNextUmbrella feature

Last updated 4 years ago

About GraphQL

  • What is GraphQL?

  • ZEMTU’s GraphQL APIs largely stick to the Relay specifications:

Authentication

For client-server communication we suggest using JWTAuthentication with the user’s username and password combination. For machine-to-machine communication TokenAuthentication is the best fit.

GraphQL mutation tokenAuth with user credentials to create a long-living token. The token is valid for 14 days. After that a renewed call to tokenAuth is needed.

Now in order to access protected API you must include the Authorization HTTP header: POST / HTTP/1.1 Host: domake.io Authorization: JWT eyJ0eXAiOiJKV1QiLCJh... Content-Type: application/json;

References

  • https://django-graphql-jwt.domake.io/en/stable/index.html

  • https://jwt.io

The token key must be included in the Authorization HTTP header. The key should be prefixed by the string literal Token, with whitespace separating the two strings. For example:

Authorization: Token 9944b09199c62bcf9418ad846dd0e4bbdfc6ee4b

There are several possibilities to obtain the token:

  • Read token from admin interface (only for users with org admin role): You can obtain the AuthToken for a user here:

  • Get direct access to token: E.g. you get the token via secure email from an organization administrator.

References

Reservation API

Management API

https://graphql.org
https://facebook.github.io/relay/graphql/connections.htm
https://devcarsharing.zemtu.com/admin/authtoken/token/
http://www.django-rest-framework.org/api-guide/authentication/#tokenauthentication
https://devcarsharing.zemtu.com/graphql
https://devcarsharing.zemtu.com/graphql