1 About This Guide
2 Additional Documentation
3 Getting Started
4 Users
5 Credentials
6 Certificates
7 Images
8 Access Groups
9 CA Certificates
10 Cards
11 Sites
12 Controlled Areas
13 Schedules
14 Access Rights
15 Zone Groups
16 Activity Events
17 System Events
18 GLOSSARY

About This Guide

This guide describes how to configure and use the PRIMIS API software.

Topics in this guide are intended for security system integrators and security administrators responsible for setting up IP-based physical access security control systems.

Additional Documentation

To find documentation available for all products, go to https://www.identiv.com.

Getting Started

Introduction

The Primis API provides the RESTful Web Services for the Primis Access Control System. The Primis API calls described in this document required HTTP BASIC authentication. The same login credentials that can access the Primis software are used for API authentication. You can add/remove logins by navigating to the “Admin Users” section of the Primis software. The default user that comes with the system is:

Username: primis

Password: identiv

The Primis API Web Services can be configured to support https. Please contact support for additional details.

Users

This chapter describes how to create/retrieve/update/delete Users through the PRIMIS API software.

user elements:

Element Name		Type	Description	Comments

Element Name		Type	Description	Comments
id		string max 200 characters	Unique identifier for a User	Optional; On POST, server generates an ID
first_name		string max 50 characters	First name of the User	Optional
last_name		string max 50 characters	Last name of the User	Required
access_start_date		date(yyyymmdd)	Date for when the User will be active (enabled)	Optional; Uses the API server’s current date if empty
access_end_date		date(yyyymmdd)	Date for when the User will be inactive (disabled)	Optional
pin		integer	The User’s PIN	Optional; This PIN is used with Wiegand Keypads and should not be confused with a PIV card’s PIN.
email		string max 100 characters	Email address of the User	Optional
phone		string max 50 characters	Phone number of the User	Optional
created_at		datetime	Create timestamp	This element is searchable by using query parameter created_since. for example: created_since=20170615130130 will return all users created after 2017-06-15 13:01:30
updated_at		datetime	Update timestamp	This element is searchable by using query parameter updated_since. for example: updated_since=20170615130130 will return all users updated after 2017-06-15 13:01:30
disabled		boolean(true/false)	Indicates whether a User is disabled	Optional; User is enabled if empty (false).
credential		child element	Credential of the User	Optional; only supported in POST and GET method. Refer to
				section 0 CHAPTER 3 Credentials for details.
cards		child element	The Card(s) belong to the User	Optional; only supported in POST and GET method
	card_number	string max 100 characters	Unique identifier for a Card	Required
access_group		child element	The Access Group(s) that the User belongs to	Optional; only supported in POST and GET method
	id	string maximum 36 characters	Unique identifier for an Access Group	Required
	name	string max 200 characters	The name of the Access Group	Required
	site_id	string maximum 36 characters	The ID of the Site that the Access Group belongs to	Optional; on POST, default to 1 if it is not set
custom_field_items		child element		Not used; Only supported in GET method
image		child element	The image(s) of the User	Optional; Only supported in GET method
	id	string maximum 36 characters	Unique identifier for the Image
	filename	string max 255 characters	The filename the image
	url	string	The url for the image
	category	integer	The category of the image
	content_type	string	The content type of the image
	created_at	datetime	The created date of the image record

Add a new user

POST /api/users

http://<ip address>:<api listening port>/api/users

Content-Type: text/xml

Post Data:

<user>
  <id />
  <first_name>Test E. Cardholder IV - PIV</first_name>
  <last_name>Test</last_name>
  <access_start_date />
  <access_end_date>20301231</access_end_date>
  <pin type="integer" />
  <email />
  <phone />
  <disabled type="boolean" />
  <access_groups>
    <access_group>
      <id>82</id>
      <name>Engineering 1b</name>
    </access_group>
    <access_group>
      <id>84</id>
      <name>Manager</name>
    </access_group>
    <access_group>
      <id>83</id>
      <name>Production 1</name>
    </access_group>
    </access_groups>
  <credential>
    <type>PIV-II</type>
    <fascn_hex>D650185B3CCE6D9C9053CDA16CDA10AA09C4378486501843EB</fascn_hex>
    <expiration_date>20301231</expiration_date>
    <card_auth_key />
    <guid>00000000000000000000000000000000</guid>
  </credential>
</user>

List all users

GET /api/users

http://<ip address>:<api listening port>/api/users

Result:

<users>
   <user>
      <id>252</id>
      <first_name>Test E. Cardholder IV - PIV</first_name>
      <last_name>Test</last_name>
      <access_start_date />
      <access_end_date>20301231</access_end_date>
      <pin type="integer" />
      <email />
      <phone />
      <created_at>2013-08-22T10:06:52.000-07:00</created_at>
      <updated_at>2013-08-22T10:06:52.000-07:00</updated_at>
      <disabled type="boolean">false</disabled>
      <credential>
         <id>253</id>
         <fascn_hex>D650185B3CCE6D9C9053CDA16CDA10AA09C4378486501843EB</fascn_hex>
         <type>PIV-II</type>
         <status />
         <expiration_date>20301231</expiration_date>
         <guid>00000000000000000000000000000000</guid>
         <card_auth_key />
      </credential>
      <cards>
         <card_number>32013733334893131152472674132011</card_number>
         <card_number>3201373333489320301231</card_number>
      </cards>
      <access_groups>
         <access_group>
            <id>82</id>
            <name>Engineering 1b</name>
         </access_group>
         <access_group>
            <id>84</id>
            <name>Manager</name>
         </access_group>
         <access_group>
            <id>83</id>
            <name>Production 1</name>
         </access_group>
      </access_groups>
      <custom_field_items />
      <images>
         <image>
            <id type="integer">260</id>
            <filename>252_0.jpg</filename>
            <url>http://192.168.123.101:9000/api/images/view/252_0.jpg</url>
            <category type="integer">0</category>
            <content_type>image/jpeg</content_type>
            <created_at>2013-08-22T11:15:36.000-07:00</created_at>
         </image>
      </images>
   </user>
   <user>
      <id>257</id>
      <first_name>Test Cardholder XIV - PIV</first_name>
      <last_name>Test</last_name>
      <access_start_date />
      <access_end_date>20301231</access_end_date>
      <pin type="integer" />
      <email />
      <phone />
      <created_at>2013-08-22T11:06:39.000-07:00</created_at>
      <updated_at>2013-08-22T11:06:38.000-07:00</updated_at>
      <disabled type="boolean">false</disabled>
      <credential>
         <id>258</id>
         <fascn_hex>D6501858999CED9992049DA16AD9A19C279A844486501843F5</fascn_hex>
         <type>PIV-II</type>
         <status />
         <expiration_date>20301231</expiration_date>
         <guid>00000000000000000000000000000000</guid>
         <card_auth_key />
      </credential>
      <cards>
         <card_number>23100241</card_number>
         <card_number>32014399394149156091935084132011</card_number>
         <card_number>3201439939414920301231</card_number>
         <card_number>834299</card_number>
      </cards>
      <access_groups>
         <access_group>
            <id>82</id>
            <name>Engineering 1b</name>
         </access_group>
      </access_groups>
      <custom_field_items />
      <images />
   </user>
</users>

Search users with filtering criteria

GET /api/users/search

http://<ip address>:<api port>/api/users/search?id=83&first_name=Test%20E.%20Cardholder%20IV%20-%20PIV

Result:

<users_search>
   <criteria>first_name=Test E. Cardholder IV - PIV,</criteria>
   <users results="1">
      <user>
         <id>252</id>
         <first_name>Test E. Cardholder IV - PIV</first_name>
         <last_name>Test</last_name>
         <access_start_date />
         <access_end_date>20301231</access_end_date>
         <pin type="integer" />
         <email />
         <phone />
         <created_at>2013-08-22T10:06:52.000-07:00</created_at>
         <updated_at>2013-08-22T10:06:52.000-07:00</updated_at>
         <disabled type="boolean">false</disabled>
         <credential>
            <id>253</id>
            <fascn_hex>D650185B3CCE6D9C9053CDA16CDA10AA09C4378486501843EB</fascn_hex>
            <type>PIV-II</type>
            <status />
            <expiration_date>20301231</expiration_date>
            <guid>00000000000000000000000000000000</guid>
            <card_auth_key />
         </credential>
         <cards>
            <card_number>32013733334893131152472674132011</card_number>
            <card_number>3201373333489320301231</card_number>
         </cards>
         <access_groups>
            <access_group>
               <id>82</id>
               <name>Engineering 1b</name>
            </access_group>
            <access_group>
               <id>84</id>
               <name>Manager</name>
            </access_group>
            <access_group>
               <id>83</id>
               <name>Production 1</name>
            </access_group>
         </access_groups>
         <custom_field_items />
         <images>
            <image>
               <id type="integer">260</id>
               <filename>252_0.jpg</filename>
               <url>http://192.168.123.101:9000/api/images/view/252_0.jpg</url>
               <category type="integer">0</category>
               <content_type>image/jpeg</content_type>
               <created_at>2013-08-22T11:15:36.000-07:00</created_at>
            </image>
         </images>
      </user>
   </users>
</users_search>

Get a user record by user id

GET /api/users/<user id>

http://<ip address>:<api listening port>/api/users/252

Result:

Update a user record by user id

PUT /api/users/<user id>

http://<ip address>:<api listening port>/api/users/252

Result:

Delete a user record by user id

DELETE /api/users/<user id>

http://<ip address>:<api listening port>/api/users/252

Result:

Response code 204 if successfully deleted or if the user does not exist

Credentials

This chapter describes how to retrieve or delete Credentials through the PRIMIS API software.

credential element:

Element Name	Type	Description	Comments
id	string maximum 36 characters	Unique identifier for a Credential	Optional; On POST, server generates an ID
fascn_hex	string maximum 50 characters	FASCN of the PIV Card represented as a hex string	Required
type	Either ‘PIV-I’ or ‘PIV- II’	The type of Credential	Optional
status	-	-	UNUSED
expiration_date	date(yyyymmdd)	Expiration date of the CHUID	Required
guid	string maximum 255 characters	The GUID located within the CHUID	Optional
card_auth_key	-	-	UNUSED

List all credentials

GET /api/credentials

http://<ip address>:<api listening port>/api/credentials

Result:

Get a credential record by credential id

GET /api/credentials/<credential id>

http://<ip address>:<api listening port>/api/credentials/253

Get a credential record by the FASC-N

GET /api/credentials/fascn/<fascn>

http://<ip address>:<api port>/api/credentials/fascn/D650185B3CCE6D9C9053CDA16CDA10AA09C4378486501843EB

Delete a credential by credential id

DELETE /api/credentials/<credential id>

http://<ip address>:<api listening port>/api/credentials/253

Result:
Response code 204 if successfully deleted or if the credential does not exist.

List all certificates under a credential id

GET /api/credentials/<credential id>/certificates

http://<ip address>:<api listening port>/api/credentials/253/certificates

Result:

<content>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</content>
</certificate>

Certificates

This chapter describes how to create/retrieve/update/delete Certificates through the PRIMIS API software.

certificate element:

Element Name	Type	Description	Comments

Element Name	Type	Description	Comments
id	string maximum 36 characters	Unique identifier for a Certificate	Optional; On POST, server generates an ID
credential_id	string maximum 36 characters	The ID of the Credential that the Certificate belongs to	Required
type	0, 1, 2, 3, or 4	The type of Certificate	Required 0 - CHUID Signer Cert 1 - PIV Auth. Cert 2 - Digital Sig. Cert 3 - Key Mgmt. Cert 4 - Card Auth. Cert
not_before	datetime	The start date and time that the Certificate will be valid	Required
not_after	datetime	The end date and time that the Certificate will be valid	Required
validated_at	datetime	The date and time when the Certificate was validated	Optional
status	0 or 1	Indicates the validity of the Certificate	Required 0 - Invalid 1 - Valid
content	string	The content of the Certificate	Required
serial_number	string, maximum 300 characters	The serial number of the Certificate
issuer_name	string, maximum 300 characters	The issuer name of the Certificate	Required

List all Certificates

GET /api/certificates

http://<ip address>:<api listening port>/api/certificates

Result:

<content>MIIGcAYJKoZIhvcNAQcCoIIGYTCCBl0CAQMxDzANBglghkgBZQMEAgEFADAKBghghkgBZQMGAaCCBHQwggRwMIIEGKADAgECAgEDMAoGCCqGSM49BAMCMG8xCzAJBgNVBAYTAlVTMR8wHQYDVQQKExZUZXN0IENlcnRpZmljYXRlcyAyMDEwMRAwDgYDVQQLEwdUZXN0IENBMS0wKwYDVQQDEyRUZXN0IEVDQyBQLTI1NiBDQSBmb3IgVGVzdCBQSVYgQ2FyZHMwHhcNMTAxMDAxMDgzMDAwWhcNMzAxMDAxMDgzMDAwWjBlMQswCQYDVQQGEwJVUzEYMBYGA1UEChMPVGVzdCBHb3Zlcm5tZW50MRgwFgYDVQQLEw9UZXN0IERlcGFydG1lbnQxIjAgBgNVBAMTGVRlc3QgUElWIENvbnRlbnQgU2lnbmVyIDMwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAQhlOfh/PvMeBo+q47tEONbEPBTGqBD+GR1VJu0UV1C1MfAEMlf281Ao98ZlZ2oNMBgJIOIs0KWGcfkUSgJjrSQo4ICrTCCAqkwHwYDVR0jBBgwFoAU8MhCtIK0nQ5G98wh1JxRi9xG+e0wHQYDVR0OBBYEFIXDOBrBfVMhN3ew6tEuIkRfNudDMIHiBgNVHR8EgdowgdcwgdSggdGggc6GLWh0dHA6Ly9zbWltZTIubmlzdC5nb3YvUElWVGVzdC9FQ0NQLTI1NkNBLmNybIaBnGxkYXA6Ly9zbWltZTIubmlzdC5nb3YvY249VGVzdCUyMEVDQyUyMFAtMjU2JTIwQ0ElMjBmb3IlMjBUZXN0JTIwUElWJTIwQ2FyZHMsb3U9VGVzdCUyMENBLG89VGVzdCUyMENlcnRpZmljYXRlcyUyMDIwMTAsYz1VUz9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0O2JpbmFyeTCCAUIGCCsGAQUFBwEBBIIBNDCCATAwSAYIKwYBBQUHMAKGPGh0dHA6Ly9zbWltZTIubmlzdC5nb3YvUElWVGVzdC9DQUNlcnRzSXNzdWVkVG9FQ0NQLTI1NkNBLnA3YzCBuQYIKwYBBQUHMAKGgaxsZGFwOi8vc21pbWUyLm5pc3QuZ292L2NuPVRlc3QlMjBFQ0MlMjBQLTI1NiUyMENBJTIwZm9yJTIwVGVzdCUyMFBJViUyMENhcmRzLG91PVRlc3QlMjBDQSxvPVRlc3QlMjBDZXJ0aWZpY2F0ZXMlMjAyMDEwLGM9VVM/Y0FDZXJ0aWZpY2F0ZTtiaW5hcnksY3Jvc3NDZXJ0aWZpY2F0ZVBhaXI7YmluYXJ5MCgGCCsGAQUFBzABhhxodHRwOi8vc2VjbGFiNy5uY3NsLm5pc3QuZ292MA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAKBghghkgBZQMGBzAXBgNVHSAEEDAOMAwGCmCGSAFlAwIBAwgwCgYIKoZIzj0EAwIDRgAwQwIgb82ByCAgCWvIBJSntrn3k2iAQWFva4lI9euCOJeHfd8CHxEmVCOXuoQ/nXvews1tPHxPNt1Eq/y5iNNSC/0j2n0xggHBMIIBvQIBATB0MG8xCzAJBgNVBAYTAlVTMR8wHQYDVQQKExZUZXN0IENlcnRpZmljYXRlcyAyMDEwMRAwDgYDVQQLEwdUZXN0IENBMS0wKwYDVQQDEyRUZXN0IEVDQyBQLTI1NiBDQSBmb3IgVGVzdCBQSVYgQ2FyZHMCAQMwDQYJYIZIAWUDBAIBBQCggd0wFwYJKoZIhvcNAQkDMQoGCGCGSAFlAwYBMBwGCSqGSIb3DQEJBTEPFw0xMTAzMjkyMDU4NDRaMC8GCSqGSIb3DQEJBDEiBCDZa00eEnFs5of/LGy+XLVNcQLC88B8oK2+yG5UMAmBjDBzBghghkgBZQMGBTFnMGUxCzAJBgNVBAYTAlVTMRgwFgYDVQQKEw9UZXN0IEdvdmVybm1lbnQxGDAWBgNVBAsTD1Rlc3QgRGVwYXJ0bWVudDEiMCAGA1UEAxMZVGVzdCBQSVYgQ29udGVudCBTaWduZXIgMzAKBggqhkjOPQQDAgRHMEUCIDsSEx1yN0ikt10P/9SMTcuy0oQ7wk5cQqUPYd4eWGu0AiEA3dwoZdgGkIkdFGU88XXHLKV+plrkwIpq3jDgnDCP0B8=</content>

<content>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</content>
</certificate>
</certificates>

Add a new certificate

POST /api/certificates

http://<ip address>:<api listening port>/api/certificates

Content-Type: text/xml

Post Data:

<content>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</content>
</certificate>

Get a certificate by certificate id

GET /api/certificates/<certificate id>

http://<ip address>:<api listening port>/api/certificates/10

Result:

<content>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</content>
</certificate>

Update a certificate by certificate id

PUT /api/certificates/<certificate id>

http://<ip address>:<api listening port>/api/certificates/10

PUT Data:

<content>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</content>
</certificate>

Delete a certificate by the certificate id

DELETE /api/certificates/<certificate id>

http://<ip address>:<api listening port>/api/certificates/10

Result:
Response code 204 if successfully deleted or if the certificate does not exist.

Images

This chapter describes how to create/retrieve/delete Images through the PRIMIS API software.

Image element:

Element Name	Type	Description	Comments
id	string maximum 36 characters	Unique identifier for an Image	On POST, server generates an ID
user_id	string max 200 characters	The identifier of the user	Required
filename	string max 255 characters	The filename the image	Required
url	string	The url for the image	Supported in GET method.
category	integer	The category of the image	On POST, default to 0
content_type	string, maximum 255 characters	The content type of the image	Required
created_at	datetime	The created date of the image record

List all images

GET /api/images

http://<ip address>:<api listening port>/api/images

Result:

Add image to User

POST /api/images/user/<user id>

http://<ip address>:<api listening port>/api/images/user/170

Content-Type: image/jpeg

Delete an image

DELETE /api/images/<image id>

http://<ip address>:<api listening port>/api/images/170

Result:
Response code 204 if successfully deleted or if the image does not exist.

Access Groups

This chapter describes how to create/retrieve/update/delete Access Groups through the PRIMIS API software.

access_group element:

Element Name		Type	Description	Comments
id		string maximum 100 characters	Unique identifier for an Access Group	Optional; On POST, server generates an ID
name		string max 200 characters	The name of the Access Group	Required
description		string max 100 characters	The description of the Access Group	Optional
site_id		string maximum 36 characters	The ID of the Site that the Access Group belongs to	Optional; on POST, default to 1 if it is not set. site_id 0 means the access group is a global access group and it can be used in all sites. site_id cannot be changed after the access group is created.
access_right		child element	The Access Right granted to the Access Group	access_right is only supported in GET method
	zone_id	string max 200 characters	The ID of the Controlled Area that the Access Right has access to	Required
	schedule_id	string max 50 characters	The ID of the Schedule that the Access Right is following	Required
	activation_time	integer	The activation time of the output devices (i.e. how long the door will be opened for)	Required

List all access groups

GET /api/access_group

http://<ip address>:<api listening port>/api/access_groups

Result:

Add access group to user

POST /api/users/<user id>/access_groups

http://<ip address>:<api listening port>/api/users/<user id>/access_groups

Post Data:

Delete an access group from user

DELETE /api/users/<user id>/access_groups

http://<ip address>:<api listening port>/api/users/<user id>/access_groups

Result:
Response code 204 if successfully removed from the user or if the access group was not assigned to the user.

Add a new access group

POST /api/access_groups

http://<ip address>:<api listening port>/api/access_groups

Content-Type: text/xml

Post Data:

Get an access group record by the access group id

GET /api/access_groups

http://<ip address>:<api listening port>/api/access_groups/213

Result:

Update an access group record by the access group id

PUT /api/access_groups/<access group id>

http://<ip address>:<api listening port>/api/access_groups/213

Content-Type: text/xml

Put Data:

Delete an access group record by the access group id

DELETE /api/access_groups/<access group id>

http://<ip address>:<api listening port>/api/access_groups/213

Result:
Response code 204 if successfully deleted or if the access group does not exist.

CA Certificates

This chapter describes how to create/retrieve/update/delete CA Certificates through the PRIMIS API software.

Element Name	Type	Description	Comments

Element Name	Type	Description	Comments
id	string maximum 36 characters	Unique identifier for a CA Certificate	Optional; On POST, server generates an ID
issuer_name	string max 300 characters	The issuer name of the CA Certificate	Required
serial_number	string max 100 characters	The serial number of the CA Certificate	Required
subject_name	string max 300 characters	The subject name of the CA Certificate	Required
issued_to	string max 200 characters	The organization that the CA Certificate is issued to	Required
issued_by	string max 200 characters	The organization that issued the CA Certificate	Required
expiration_date	datetime	Indicates the validity of the CA Certificate	Required
file_name	string max 200 characters	The file name of the CA Certificate	Required
content	string	The content of the CA Certificate	Required
ak_id	string max 255 characters	Authority key identifier of the CA Certificate	Required
sk_id	string max 255 characters	Subject key identifier of the CA Certificate	Required

Add a new CA certificate

POST /api/ca_certificates

http://<ip address>:<api listening port>/api/ca_certificates

Content-Type: text/xml

Post Data:

<content>MIIEujCCA6KgAwIBAgIBATANBgkqhkiG9w0BAQsFADBvMQswCQYDVQQGEwJVUzEfMB0GA1UEChMWVGVzdCBDZXJ0aWZpY2F0ZXMgMjAxMDEQMA4GA1UECxMHVGVzdCBDQTEtMCsGA1UEAxMkVGVzdCBUcnVzdCBBbmNob3IgZm9yIFRlc3QgUElWIENhcmRzMB4XDTEwMTAwMTA4MzAwMFoXDTMwMTAwMTA4MzAwMFowbzELMAkGA1UEBhMCVVMxHzAdBgNVBAoTFlRlc3QgQ2VydGlmaWNhdGVzIDIwMTAxEDAOBgNVBAsTB1Rlc3QgQ0ExLTArBgNVBAMTJFRlc3QgVHJ1c3QgQW5jaG9yIGZvciBUZXN0IFBJViBDYXJkczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK6IQGZI1XEqQYT1xiJXra3nOmsBnjk4orCfcswTBC4dKaQNiAFxfsY/vFG9ZLVJRAofzQzSuHA099PNOePrcqND4BjCVySiUfks+ioIfF59GPak4dC91GlHliy0owD8wGO9LNGmMkA4XaO2utdsJsqNAYrWXKcXdp7/e5RpQWkJg4aNHjJZl9Z63bavZPWW7lkeaRf9NcL+ghA2Mvfn1wtbV9PuhHaIb5I9t3mv108SkFdEELERSDnu5PMwDJVTvi4lwbwHf8AIJLSI1shcloRb+m6v7FqQVNtKGTq2xnnAY0SmoF6mQAmlAM8l5sr0IWn2XFXYG5KnZU/SjjyZZwECAwEAAaOCAV8wggFbMIIBFwYIKwYBBQUHAQsEggEJMIIBBTBJBggrBgEFBQcwBYY9aHR0cDovL3NtaW1lMi5uaXN0Lmdvdi9QSVZUZXN0L0NBQ2VydHNJc3N1ZWRCeVRydXN0QW5jaG9yLnA3YzCBtwYIKwYBBQUHMAWGgapsZGFwOi8vc21pbWUyLm5pc3QuZ292L2NuPVRlc3QlMjBUcnVzdCUyMEFuY2hvciUyMGZvciUyMFRlc3QlMjBQSVYlMjBDYXJkcyxvdT1UZXN0JTIwQ0Esbz1UZXN0JTIwQ2VydGlmaWNhdGVzJTIwMjAxMCxjPVVTP2NBQ2VydGlmaWNhdGU7YmluYXJ5LGNyb3NzQ2VydGlmaWNhdGVQYWlyO2JpbmFyeTAdBgNVHQ4EFgQUjt9b4+pbapL+dK83TJHd7CmAsFUwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAKFAHXu0/64wTGGB2+9XVRgTj5Eoe1P42jeaA+E8qkc/KpMkvH02Yv0vxGXpwJLVV5bgY5TDVjSvjuBS0DByIcCCRwwdbv+fEB+fx5oeFYWsZj6kQ1O5QCrH4PySNghpEPS2qu8Ms6O6DPTbtCDwHReiofh674lBP4tFyj8UkjxgErvZlH7dfKvYMpOe9iIue2QMhUX4H1DgLAOkgbTZWoWW4sbLrcKlWXcQAq5emJv1f7Mbp55JSthVAPCPvWS9iWWeeZ773Y4J25SO6HjwM0GIHt04LgnIqORvUr0MWnTdAkANwk92Sb2vOQf253lLqaWM83D16RMUYtVK0Y9W59o=</content>

List all CA certificates

GET /api/ca_certificates

http://<ip address>:<api listening port>/api/ca_certificates

Result:

<content>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</content>

Get a CA certificate by the CA certificate id

GET /api/ca_certificates/<ca_certificate id>

This chapter describes how to create/retrieve/update/delete Schedules through the PRIMIS API software.

schedule element:

Element Name		Type	Description	Comments

Element Name		Type	Description	Comments
id		string maximum 50 characters	Unique identifier for a Schedule	Optional; On POST, server generates an ID
name		string max 200 characters	The name of the Schedule	Required
description		string max 80 characters	The description of the Schedule	Optional
site_id		string maximum 36 characters	The site identifier	On POST, default to 1 if it is not set. site_id cannot be changed after the schedule is created.
period		child element		period is only supported in GET method
	id	string max 36 characters	Unique identifier for a Schedule Period
	frequency	integer	The frequency of the Schedule Period	This field is a bit mask of the two types - weekly and holiday. When weekly is used, this field has the value of 0x00002 (decimal 2). When holiday type is used, the lower two bytes has the value of 0x00040 (decimal 64), the upper 3 bytes represents the holiday type in used. Each bit in these 3 upper bytes present one holiday type enumerated like the following: Type 1 - 0x00100 Type 2 - 0x00200 Type 3 - 0x00400 Type 4 - 0x00800 .... Type 12 - 0x80000 so for a frequency value of decimal 320 (0x00140), holiday type 1 is used (0x00100 + 0x00040).
	exceptions	integer	The exception holiday types in the Schedule Period	This field is a bit mask that maintains the exception holiday types in the schedule period. The types are enumerated the same way as the types 1 through to 12 in frequency (0x00100, 0x00200.... 0x80000).
	days	integer	The days of the week that are active in the Schedule Period	This field is a bit mask that maintains the days of the week that are active in the schedule period. Day-of-the-week bit masks are enumerated in the follow way: SUNDAY_MASK = 0x0001; MONDAY_MASK = 0x0002; TUESDAY_MASK = 0x0004; WEDNESDAY_MASK = 0x0008; THURSDAY_MASK = 0x0010; FRIDAY_MASK = 0x0020; SATURDAY_MASK = 0x0040; HOLIDAYS_MASK = 0x0080;
	on_time	datetime	The effective start date of the Schedule Period	1900-01-01 00:00:00.0 will be returned if no start date is specified
	off_time	datetime	The effective expire date of the Schedule Period	1900-01-01 00:00:00.0 will be returned if no expire date is specified
	enabled	integer		Deprecated

Delete access right from an access group by the controlled area id

DELETE /api/access_groups/<access group id>/controlled_areas/<controlled area id>

http://<ip address>:<api listening port>/api/access_groups/221/controlled_areas/1110000000003

Result:
Response code 204 if successfully deleted or if the access right does not exist.

Zone Groups

This chapter describes how to create/retrieve/update/delete Zone Groups through the PRIMIS API software.

zone_group element:

Element Name		Type	Description	Comments
id		string maximum 36 characters	Unique identifier for a Site	Optional; On POST, server generates an ID
name		string max 100 characters	The name of the Site	Required
description		string max 200 characters	The description of the Site	Optional
site_id		string maximum 36 characters	The site identifier	On POST, default to 1 if it is not set. site_id cannot be changed after the zone group is created.
controlled_area				controlled-area is only supported in GET method
	id	string max 200 characters	Unique identifier for a Controlled Area
	name	string max 255 characters	The name of the Controlled Area

Add a new zone group

POST /api/zone_groups

http://<ip address>:<api listening port>/api/zone_groups

Content-Type: text/xml

Post Data:

List all zone groups

GET /api/zone_groups

http://<ip address>:<api listening port>/api/zone_groups

Result:

GLOSSARY

TERM	DEFINITION
Access Group	Access Group is the logical grouping of users which you can assign Access Right to.
Access Right	The access right assigned to an Access Group. Access Right defines the access permission to a controlled area under a time schedule.
Administrator	An individual who is responsible for the maintenance and implementation of access control rights involving tasks such as issuing, and closing user accounts; tracking users and their respective access authorizations; and managing these functions.
CA Certificate	The certificate of a Certificate Authority which issues digital certificates.
Card	The access card issued to a user. It can be a Wiegand card or a PIV card.
Certificate	The digital certificate of an entity or User.
Controlled Area	Controlled Area is an area being controlled by one or more input or output devices such as Primis Bridge readers.
Credential	The credential information of the PIV card.
Image	The digital image of a User.
IP Address	An IP address is a unique identifier for a computer or device on an Internet protocol network. Every computer and mobile device whether it be a laptop, tablet, smart phone, printer, modem, router, server or scanner requires an IP address to connect to the Internet. IP addresses consist of four sets of numbers from 0 to 255, separated by three dots.
PIV Card	A physical identity card, smart card issued to an individual that contains stored identity credentials such as a photograph, cryptographic keys, digitized fingerprint representation to verify the identity of the cardholder by a process or individual.
Schedule	A schedule is a given period of time that is applied to Controlled Areas and Access Groups and used to schedule device activation and alarms.
Site	A geographical grouping of controlled area(s).
User	An individual whose access privilege to controlled areas are managed by PRIMIS.
Zone Group	Zone Group is a logical grouping of Controlled Areas.

API User Guide

About This Guide

Additional Documentation

Getting Started

Introduction

Users

Add a new user

List all users

Search users with filtering criteria

Get a user record by user id

Update a user record by user id

Delete a user record by user id

Credentials

List all credentials

Get a credential record by credential id

Get a credential record by the FASC-N

Delete a credential by credential id

List all certificates under a credential id

Certificates

List all Certificates

Add a new certificate

Get a certificate by certificate id

Update a certificate by certificate id

Delete a certificate by the certificate id

Images

List all images

Add image to User

Delete an image

Access Groups

List all access groups

Add access group to user

Delete an access group from user

Add a new access group

Get an access group record by the access group id

Update an access group record by the access group id

Delete an access group record by the access group id

CA Certificates

Add a new CA certificate

List all CA certificates

Get a CA certificate by the CA certificate id

Update a CA certificate by the CA certificate id

Delete a CA certificate by the CA certificate id

Cards

Add a new card

List all cards

Get a card record by the card id

Update a card record by the card id

Delete a card record by the card id

Sites

Add a new site

List all sites

Get a site record by the site id

Update a site record by the site id

Delete a site record by the site id

Controlled Areas

Add a new controlled area

List all controlled areas

Get a controlled area record by the controlled area id

Update a controlled area record by the controlled area id

Delete a controlled area record by the controlled area id

Schedules

Add a new schedule

List all schedules

Get a schedule record by the schedule id

Update a schedule record by the schedule id

Delete a schedule record by the schedule id

Access Rights

Add a new access right to an access group

List all controlled areas accessible by an access group

List all access groups assigned to an user

Delete access right from an access group by the controlled area id

Zone Groups

Add a new zone group

List all zone groups

Get a zone group record by the zone group id

Update a zone group record by the zone group id

Delete a zone group record by the zone group id

Activity Events

List all activity events

Retrieve a range of activity events