Authentication

curl -X GET "https://cloud-api.pland.app/v2/users" \
  -H "Authorization: Bearer YOUR_JWT_TOKEN" \
  -H "Content-Type: application/json"

curl -X GET "https://cloud-api.pland.app/v2/users" \
  -H "Authorization: Bearer YOUR_JWT_TOKEN" \
  -H "Content-Type: application/json"

The PlanD API uses Bearer token authentication and API key authentication to secure your requests. You must include authentication credentials in your requests to access the API.

Authentication Methods

Include your Bearer token in the Authorization header:

Authorization: Bearer YOUR_JWT_TOKEN

curl -X GET "https://cloud-api.pland.app/v2/users" \
  -H "Authorization: Bearer YOUR_JWT_TOKEN" \
  -H "Content-Type: application/json"

The Bearer token uses JWT (JSON Web Token) format as specified in the API security schemes.

API Servers

The PlanD API is available on multiple servers:

Production

https://cloud-api.pland.app/v2Production environment for live applications

Sandbox

https://beta-api.pland.app/v2Testing environment for development

Local Development

http://localhost:3000/v2Local development server

Getting API Keys

You can manage your API keys through the API itself:

List existing API keys

Use the GET /apiKeys endpoint to view your current API keys

GET /apiKeys?limit=10&offset=0

Create a new API key

Use the POST /apiKeys endpoint to generate a new API key

The API key is returned in clear text only once during creation

Store securely

Store your API key in environment variables or secure configuration

export PLAND_API_KEY="your_api_key_here"

User Authentication

For user login and authentication management:

Authenticate users with username and password:

POST /auth/login

curl -X POST "https://cloud-api.pland.app/v2/auth/login" \
  -H "Content-Type: application/json" \
  -d '{
    "username": "user@example.com",
    "password": "SecurePassword123",
    "type": "dashboard"
  }'

Testing Authentication

Verify your authentication is working correctly:

curl -X GET "https://cloud-api.pland.app/v2/users" \
  -H "Authorization: Bearer YOUR_JWT_TOKEN"

Common Authentication Errors

401 Unauthorized

403 Forbidden

Security Best Practices

Environment Variables

Store credentials in environment variables, never in code

export PLAND_JWT_TOKEN="your_jwt_token_here"
export PLAND_API_KEY="your_api_key_here"

Token Management

Regularly rotate your API keys and monitor their usageUse the API key management endpoints to track active keys

Pagination

Getting Started

Users

Salaries

Jobs

Time Tracking

Objects

Customers

Equipment

Articles

Tickets

Absences

Material Orders

Quality Control

Documents

Logbuch

Webhooks

Authentication Methods

API Servers

Production

Sandbox

Local Development

Getting API Keys

User Authentication

Testing Authentication

Common Authentication Errors

Security Best Practices

Environment Variables

Token Management

Getting Started

Users

Salaries

Jobs

Time Tracking

Objects

Customers

Equipment

Articles

Tickets

Absences

Material Orders

Quality Control

Documents

Logbuch

Webhooks

​Authentication Methods

​API Servers

Production

Sandbox

Local Development

​Getting API Keys

​User Authentication

​Testing Authentication

​Common Authentication Errors

​Security Best Practices

Environment Variables

Token Management

Authentication Methods

API Servers

Getting API Keys

User Authentication

Testing Authentication

Common Authentication Errors

Security Best Practices