The following endpoints are needed if your want to build an authentication process.
Basic endpoint to obtain an access token, which then can be used to invoke protected API endpoints. Alternatively you can also use the
/authorization/tokenendpoint for an OAuth2 compatible endpoint.
Through this endpoint it is possible to register a new user. If you want to use a recaptcha to protect the signup you need to enter the credentials
.envfile. The process sends a registration email to the user. This email can be customized at
resources/config.yamlfile. The user then needs to activate his account by visiting the activation link and the app needs to invoke the activate endpoint.
Can be called via
POSTto initiate a password reset process. This sends an email to the provided email containing a link to reset the password. The app then need to send a
PUTrequest to this endpoint containing the token from the link and the new password. This email can be customized at
This endpoint needs to be called by your app to activate a new registered account. The registration mail contains a link to your app which then needs to call this endpoint containing the token which was provided at the url.
If you want to build an OAuth2 an "Authorization Code" flow into your app you can use this endpoint. Basically you need to provide the
scopeas query parameter to the endpoint and you get information about the app which wants to access data on behalf of the user. If the user wants to grant access you need to send a
POSTrequest containing basically all OAuth2 relevant information from the url i.e.
scope, etc. Fusio then checks all values with the registered app and returns an
redirectUriwhich your frontend can use to redirect the user back to the app.
Fusio helps you to automatically create a REST API based on a relational table. This simplify building simple CRUD apps. Therefore you can use a provider s.
In the background a provider creates the fitting routes and assigns the actions.
You can use Fusio as API-Gateway. In this case Fusio acts as the single entrypoint for all your internal APIs / microservices. Through this you can create all fitting routes which proxy to your internal endpoints.
Fusio then covers topics like authorization, rate limiting, validation etc. Besides this Fusio provides also a documentation app which provides a great documentation for all your users.
The initial use case of Fusio was to create a great API beside an existing web app. We have many users which run a traditional web app and they use Fusio to create a state of the art API beside there existing product. Fusio can create an API directly on your tables and there are also multiple ways to integrate your existing business logic into the API. Fusio provides also a developer app which helps to on board new users to use your API i.e.
You can use Fusio also simply as framework to build an API from scratch. In this case you can develop custom actions and use the deploy mechanism. Please take a look at our sample headless CMS which shows how to build and structure a complex app using Fusio.