UI Guides

Graphistry Setup

REST APIs

Introduction

2.0 REST API Tutorial (cURL)

URL API to Embed & Control

- HTML

- URL Options

- IFrame CSS Style Tips

Authentication (2.0 API)

- Concepts

- Create token

- Refresh token

- Verify token

- Modes: Password, Personal Key, & SSO

Computation

- GFQL Query Endpoint

    - GFQL Operations

    - GFQL Predicates

- Python Query Endpoint

Upload Data (2.0 API)

- Concepts

- List Files

- Create File

- Upload File Data

- List Visualization Datasets

- Create Visualization Dataset with Bindings

    - Hypergraphs

- Delete Visualization

- Schema

Basic Bindings

    - Color

    - Color Palettes

    - Edge Weight Bindings

Complex Bindings

    - Colors and Sizes

    - Icons

    - Badges

    - Radial & Horizontal Axis

    - Field-Level Filters & Customizations

- Branding Metadata: Logos, title, backgrounds, & effects

- Upload Node & Edge Data

   - json

   - csv

   - parquet

   - orc

   - arrow

Live Sessions (experimental)

- View

Health Checks

Python Notebooks & API

- PyGraphistry Homepage (GitHub)

- PyGraphistry API (ReadTheDocs)

- Jupyter Notebook Examples (GitHub)

- Pygraphistry Databricks Examples (GitHub)

- Graph Algorithms

Visual Playbooks

- Connectors

- Pivots

- Templates

JavaScript Libraries

- React - Storybook

- React - API

- Browser JS - Storybook

- Browser JS - Example

- Browser JS - API

- Node.js - API

Authentication Methods

In the Graphistry 2.0 REST API, authentication is crucial for security and access control. Currently, there are three methods to obtain JWT tokens:

  1. Username and Password
  2. Personal API Key
  3. Single Sign-On (SSO)

1. Password Authentication

Use your account credentials to get a short-lived token (~1 hour). This token is required for performing REST API actions. Tokens are valid for up to 24 hours, requiring daily re-login with full credentials. For more information, see Personal API Key Authentication and Single Sign-On (SSO) Authentication.

2. Personal API Key Authentication

To authenticate using a personal API key:

  1. Navigate to your profile menu and select "Manage API Keys".
  2. Generate a Personal Key ID and Secret Key. Note: The Personal Secret Key will not be visible again after leaving this screen.
  3. Use the Personal Key ID and Secret Key to authenticate by making a POST request with the following format:

  curl -X POST -H "Authorization: PersonalKey ${PERSONAL_KEY_ID}:${PERSONAL_KEY_SECRET}" https://${GRAPHISTRY_HOST}/api/v2/auth/pkey/jwt/

This request will return a JWT token that can be used for subsequent API requests.

3. Global Single Sign-On (SSO)

SSO authentication redirects you to the site-wide SSO system for login.

4. Single Sign-On (SSO) with Organization (IDP)

For organizations using IDP (Identity Provider) with SSO, the authentication process involves two steps and two API calls:

  1. Initiate SSO Authentication: The first step is to initiate the SSO authentication process for your organization. This is done by making a GET request to the SSO login API endpoint. This request will redirect you to the organization's SSO login page.
  2. Retrieve the JWT Token: After successfully logging in through the SSO system, you will receive a response that includes a 'state' parameter. This 'state' is a unique identifier for your session. You then use this 'state' to make a second API call to retrieve your JWT token.

Using REST API for Authentication

Below are examples of REST API calls for each authentication method:

Route Method Headers Parameters Return
api/v2/auth/pkey/jwt/ POST Authorization: PersonalKey PERSONAL_KEY_ID:PERSONAL_KEY_SECRET Personal Key ID, Personal Secret Key 
{"token": str}
Input:

          curl -X POST -H "Authorization: PersonalKey ${PERSONAL_KEY_ID}:${PERSONAL_KEY_SECRET}" https://${GRAPHISTRY_HOST}/api/v2/auth/pkey/jwt/

Note: Replace "YOUR_ORG_NAME" with the actual name of your organization. This parameter is optional.
api/v2/g/sso/oidc/login GET N/A N/A Redirect to SSO login page
Input:

curl -X GET http://localhost/api/v2/g/sso/oidc/login/
sso/oidc/login/idp_name/ GET N/A N/A Redirect to SSO login page
Input:

curl -X GET http://localhost/api/v2/o/str:slug/sso/oidc/login/str:idp_name/
/sso/oidc/jwt/{state}/ GET N/A N/A N/A
Input:

curl -X GET http://localhost/api/v2/o/sso/oidc/jwt/{state}/

For further details and language-specific implementations, please refer to our Python client library documentation.