MENU navbar-image

Introduction

This documentation aims to provide all the information you need to work with our API.

Base URL

http://navapi.localhost

Authenticating requests

This API is authenticated by sending a query parameter api_token in the request.

All authenticated endpoints are marked with a requires authentication badge in the documentation below.

You can retrieve your token by request to devops@auctionmarketer.co.uk.

Approvals

APIs for post an registration and credit limit approval

Post an registration and credit limit approval.

requires authentication

This endpoint allows you to update a user's credit limit in the AM system.

Example request:
curl --request POST \
    "http://navapi.localhost/approval?api_token=%7BYOUR_AUTH_KEY%7D&websiteId=eum&creditLimit=2.5&registerApproval=harum" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/approval"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
    "websiteId": "eum",
    "creditLimit": "2.5",
    "registerApproval": "harum",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "POST",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/approval',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
            'websiteId'=> 'eum',
            'creditLimit'=> '2.5',
            'registerApproval'=> 'harum',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST approval

Query Parameters

api_token  string  

Authentication key.

websiteId  string  

  • it has to be an existing user in am_users and am_field_values (for credit limit field)

creditLimit  number  

registerApproval  string  

Update credit limit

requires authentication

This endpoint allows you to update a user's credit limit in the AM system.

Example request:
curl --request PUT \
    "http://navapi.localhost/approval/et?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/approval/et"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "PUT",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->put(
    'http://navapi.localhost/approval/et',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

PUT approval/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

Undefined

requires authentication

Example request:
curl --request DELETE \
    "http://navapi.localhost/approval/occaecati?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/approval/occaecati"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "DELETE",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->delete(
    'http://navapi.localhost/approval/occaecati',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

DELETE approval/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

Catalogue layout management

APIs for managing catalogue layouts

Post an registration and credit limit approval.

requires authentication

This endpoint allows you to update a user's credit limit in the AM system.

Example request:
curl --request POST \
    "http://navapi.localhost/catalogue_layout?api_token=%7BYOUR_AUTH_KEY%7D&websiteId=vitae&creditLimit=1.38122094&registerApproval=dolorem" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/catalogue_layout"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
    "websiteId": "vitae",
    "creditLimit": "1.38122094",
    "registerApproval": "dolorem",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "POST",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/catalogue_layout',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
            'websiteId'=> 'vitae',
            'creditLimit'=> '1.38122094',
            'registerApproval'=> 'dolorem',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST catalogue_layout

Query Parameters

api_token  string  

Authentication key.

websiteId  string  

  • it has to be an existing user in am_users and am_field_values (for credit limit field)

creditLimit  number  

registerApproval  string  

Update

requires authentication

Example request:
curl --request PUT \
    "http://navapi.localhost/catalogue_layout/occaecati?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/catalogue_layout/occaecati"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "PUT",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->put(
    'http://navapi.localhost/catalogue_layout/occaecati',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

PUT catalogue_layout/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

Undefined

requires authentication

Example request:
curl --request DELETE \
    "http://navapi.localhost/catalogue_layout/blanditiis?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/catalogue_layout/blanditiis"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "DELETE",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->delete(
    'http://navapi.localhost/catalogue_layout/blanditiis',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

DELETE catalogue_layout/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

Document management

APIs for managing documents

Post an registration and credit limit approval.

requires authentication

This endpoint allows you to update a user's credit limit in the AM system.

Example request:
curl --request POST \
    "http://navapi.localhost/document?api_token=%7BYOUR_AUTH_KEY%7D&websiteId=est&creditLimit=4214419.585501&registerApproval=voluptatibus" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/document"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
    "websiteId": "est",
    "creditLimit": "4214419.585501",
    "registerApproval": "voluptatibus",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "POST",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/document',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
            'websiteId'=> 'est',
            'creditLimit'=> '4214419.585501',
            'registerApproval'=> 'voluptatibus',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST document

Query Parameters

api_token  string  

Authentication key.

websiteId  string  

  • it has to be an existing user in am_users and am_field_values (for credit limit field)

creditLimit  number  

registerApproval  string  

PUT document/{id}

requires authentication

Example request:
curl --request PUT \
    "http://navapi.localhost/document/libero?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/document/libero"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "PUT",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->put(
    'http://navapi.localhost/document/libero',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

PUT document/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

Undefined

requires authentication

Example request:
curl --request DELETE \
    "http://navapi.localhost/document/quis?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/document/quis"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "DELETE",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->delete(
    'http://navapi.localhost/document/quis',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

DELETE document/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

Image management for Non-NAV clients

APIs for managing images

Post an image.

requires authentication

This endpoint allows you to add an image to the AM system linked to a lot.

Example request:
curl --request POST \
    "http://navapi.localhost/image?api_token=%7BYOUR_AUTH_KEY%7D&lot_id=provident&sort_no=ipsum&media_type=23214.3244&image=id" \
    --header "Content-Type: multipart/form-data" \
    --header "Accept: application/json" \
    --form "sort_no=386730.36634" \
    --form "sizes[][]=8" \
    --form "watermark_path=eos" \
    --form "watermark_gravity=southeast" \
    --form "watermark_width=73" \
    --form "watermark_height=40" \
    --form "watermark_x=76" \
    --form "watermark_y=8" \
    --form "watermark_opacity=17" \
    --form "quality=60" \
    --form "density=378" \
    --form "folder=consequuntur" \
    --form "media_type=eum" \
    --form "image=@/tmp/phpNiZ1Fj" 
const url = new URL(
    "http://navapi.localhost/image"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
    "lot_id": "provident",
    "sort_no": "ipsum",
    "media_type": "23214.3244",
    "image": "id",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "multipart/form-data",
    "Accept": "application/json",
};

const body = new FormData();
body.append('sort_no', '386730.36634');
body.append('sizes[][]', '8');
body.append('watermark_path', 'eos');
body.append('watermark_gravity', 'southeast');
body.append('watermark_width', '73');
body.append('watermark_height', '40');
body.append('watermark_x', '76');
body.append('watermark_y', '8');
body.append('watermark_opacity', '17');
body.append('quality', '60');
body.append('density', '378');
body.append('folder', 'consequuntur');
body.append('media_type', 'eum');
body.append('image', document.querySelector('input[name="image"]').files[0]);

fetch(url, {
    method: "POST",
    headers,
    body,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/image',
    [
        'headers' => [
            'Content-Type' => 'multipart/form-data',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
            'lot_id'=> 'provident',
            'sort_no'=> 'ipsum',
            'media_type'=> '23214.3244',
            'image'=> 'id',
        ],
        'multipart' => [
            [
                'name' => 'sort_no',
                'contents' => '386730.36634'
            ],
            [
                'name' => 'sizes[][]',
                'contents' => '8'
            ],
            [
                'name' => 'watermark_path',
                'contents' => 'eos'
            ],
            [
                'name' => 'watermark_gravity',
                'contents' => 'southeast'
            ],
            [
                'name' => 'watermark_width',
                'contents' => '73'
            ],
            [
                'name' => 'watermark_height',
                'contents' => '40'
            ],
            [
                'name' => 'watermark_x',
                'contents' => '76'
            ],
            [
                'name' => 'watermark_y',
                'contents' => '8'
            ],
            [
                'name' => 'watermark_opacity',
                'contents' => '17'
            ],
            [
                'name' => 'quality',
                'contents' => '60'
            ],
            [
                'name' => 'density',
                'contents' => '378'
            ],
            [
                'name' => 'folder',
                'contents' => 'consequuntur'
            ],
            [
                'name' => 'media_type',
                'contents' => 'eum'
            ],
            [
                'name' => 'image',
                'contents' => fopen('/tmp/phpNiZ1Fj', 'r')
            ],
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST image

Query Parameters

api_token  string  

Authentication key.

lot_id  string  

sort_no  string  

media_type  number  

image  string  

Body Parameters

sort_no  number  

image  file  

Must be an image. Must not be greater than 50000000 kilobytes.

sizes  integer[][] optional  

watermark_path  string optional  

watermark_gravity  string optional  

Must be one of north, northeast, east, southeast, south, southwest, west, northwest, or center.

watermark_width  integer optional  

Must be at least 0. Must not be greater than 100.

watermark_height  integer optional  

Must be at least 0. Must not be greater than 100.

watermark_x  integer optional  

Must be at least -100. Must not be greater than 100.

watermark_y  integer optional  

Must be at least -100. Must not be greater than 100.

watermark_opacity  integer optional  

Must be at least 0. Must not be greater than 100.

quality  integer optional  

Must be at least 1. Must not be greater than 100.

density  integer optional  

Must be at least 72. Must not be greater than 600.

folder  string optional  

media_type  string optional  

Soft delete an image.

requires authentication

This endpoint allows you to soft delete an image in the AM system.

Example request:
curl --request DELETE \
    "http://navapi.localhost/image/velit?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/image/velit"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "DELETE",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->delete(
    'http://navapi.localhost/image/velit',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

DELETE image/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

Update sort order.

requires authentication

This endpoint allows to bulk update the sort order of images in the AM system.

Example request:
curl --request POST \
    "http://navapi.localhost/image/sort?api_token=%7BYOUR_AUTH_KEY%7D&imageId=sequi&ordering=2174.681" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/image/sort"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
    "imageId": "sequi",
    "ordering": "2174.681",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "POST",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/image/sort',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
            'imageId'=> 'sequi',
            'ordering'=> '2174.681',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST image/sort

Query Parameters

api_token  string  

Authentication key.

imageId  string  

ordering  number  

Update an image.

requires authentication

This endpoint allows you to update an image in the AM system.

Example request:
curl --request POST \
    "http://navapi.localhost/image/officia?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: multipart/form-data" \
    --header "Accept: application/json" \
    --form "sort_no=96936403.6706" \
    --form "sizes[][]=16" \
    --form "watermark_path=aspernatur" \
    --form "watermark_gravity=east" \
    --form "watermark_width=39" \
    --form "watermark_height=28" \
    --form "watermark_x=55" \
    --form "watermark_y=73" \
    --form "watermark_opacity=58" \
    --form "quality=98" \
    --form "density=589" \
    --form "folder=accusantium" \
    --form "media_type=aut" \
    --form "image=@/tmp/php2Aoni9" 
const url = new URL(
    "http://navapi.localhost/image/officia"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "multipart/form-data",
    "Accept": "application/json",
};

const body = new FormData();
body.append('sort_no', '96936403.6706');
body.append('sizes[][]', '16');
body.append('watermark_path', 'aspernatur');
body.append('watermark_gravity', 'east');
body.append('watermark_width', '39');
body.append('watermark_height', '28');
body.append('watermark_x', '55');
body.append('watermark_y', '73');
body.append('watermark_opacity', '58');
body.append('quality', '98');
body.append('density', '589');
body.append('folder', 'accusantium');
body.append('media_type', 'aut');
body.append('image', document.querySelector('input[name="image"]').files[0]);

fetch(url, {
    method: "POST",
    headers,
    body,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/image/officia',
    [
        'headers' => [
            'Content-Type' => 'multipart/form-data',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
        'multipart' => [
            [
                'name' => 'sort_no',
                'contents' => '96936403.6706'
            ],
            [
                'name' => 'sizes[][]',
                'contents' => '16'
            ],
            [
                'name' => 'watermark_path',
                'contents' => 'aspernatur'
            ],
            [
                'name' => 'watermark_gravity',
                'contents' => 'east'
            ],
            [
                'name' => 'watermark_width',
                'contents' => '39'
            ],
            [
                'name' => 'watermark_height',
                'contents' => '28'
            ],
            [
                'name' => 'watermark_x',
                'contents' => '55'
            ],
            [
                'name' => 'watermark_y',
                'contents' => '73'
            ],
            [
                'name' => 'watermark_opacity',
                'contents' => '58'
            ],
            [
                'name' => 'quality',
                'contents' => '98'
            ],
            [
                'name' => 'density',
                'contents' => '589'
            ],
            [
                'name' => 'folder',
                'contents' => 'accusantium'
            ],
            [
                'name' => 'media_type',
                'contents' => 'aut'
            ],
            [
                'name' => 'image',
                'contents' => fopen('/tmp/php2Aoni9', 'r')
            ],
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST image/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

Body Parameters

sort_no  number  

image  file  

Must be an image. Must not be greater than 50000000 kilobytes.

sizes  integer[][] optional  

watermark_path  string optional  

watermark_gravity  string optional  

Must be one of north, northeast, east, southeast, south, southwest, west, northwest, or center.

watermark_width  integer optional  

Must be at least 0. Must not be greater than 100.

watermark_height  integer optional  

Must be at least 0. Must not be greater than 100.

watermark_x  integer optional  

Must be at least -100. Must not be greater than 100.

watermark_y  integer optional  

Must be at least -100. Must not be greater than 100.

watermark_opacity  integer optional  

Must be at least 0. Must not be greater than 100.

quality  integer optional  

Must be at least 1. Must not be greater than 100.

density  integer optional  

Must be at least 72. Must not be greater than 600.

folder  string optional  

media_type  string optional  

Media management from NAV

APIs for managing media from NAV

Post an image.

requires authentication

This endpoint allows you to add an image to the AM system linked to a lot.

Example request:
curl --request POST \
    "http://navapi.localhost/media?api_token=%7BYOUR_AUTH_KEY%7D&systemId=nulla&tableNo=6&relatedSystemId=est&entryNo=59106.8&storageType=ut&sortNo=523.690871&mediaType=eum&publicMediaPath=eos&code=cum&filename=quia" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/media"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
    "systemId": "nulla",
    "tableNo": "6",
    "relatedSystemId": "est",
    "entryNo": "59106.8",
    "storageType": "ut",
    "sortNo": "523.690871",
    "mediaType": "eum",
    "publicMediaPath": "eos",
    "code": "cum",
    "filename": "quia",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "POST",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/media',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
            'systemId'=> 'nulla',
            'tableNo'=> '6',
            'relatedSystemId'=> 'est',
            'entryNo'=> '59106.8',
            'storageType'=> 'ut',
            'sortNo'=> '523.690871',
            'mediaType'=> 'eum',
            'publicMediaPath'=> 'eos',
            'code'=> 'cum',
            'filename'=> 'quia',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST media

Query Parameters

api_token  string  

Authentication key.

systemId  string  

tableNo  number  

relatedSystemId  string  

It has to be an existing lot in the db

entryNo  number  

storageType  string  

sortNo  number  

mediaType  string  

publicMediaPath  string  

An active url

code  string  

filename  string  

Update sort order.

requires authentication

This endpoint allows to bulk update the sort order of images in the AM system.

Example request:
curl --request POST \
    "http://navapi.localhost/media/sort?api_token=%7BYOUR_AUTH_KEY%7D&systemId=doloribus&sortNo=47661.52812" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/media/sort"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
    "systemId": "doloribus",
    "sortNo": "47661.52812",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "POST",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/media/sort',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
            'systemId'=> 'doloribus',
            'sortNo'=> '47661.52812',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST media/sort

Query Parameters

api_token  string  

Authentication key.

systemId  string  

sortNo  number  

POST media/delete

requires authentication

Example request:
curl --request POST \
    "http://navapi.localhost/media/delete?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/json" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/media/delete"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/json",
    "Accept": "application/json",
};

fetch(url, {
    method: "POST",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/media/delete',
    [
        'headers' => [
            'Content-Type' => 'application/json',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST media/delete

Query Parameters

api_token  string  

Authentication key.

Update an image.

requires authentication

This endpoint allows you to update an image in the AM system.

Example request:
curl --request PUT \
    "http://navapi.localhost/media/est?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/media/est"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "PUT",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->put(
    'http://navapi.localhost/media/est',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

PUT media/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

Soft delete an image.

requires authentication

This endpoint allows you to soft delete an image in the AM system.

Example request:
curl --request DELETE \
    "http://navapi.localhost/media/unde?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/media/unde"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "DELETE",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->delete(
    'http://navapi.localhost/media/unde',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

DELETE media/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.

User management

APIs for managing images

Post a user record

requires authentication

This endpoint allows you to create a new AM user record or update an existing one

Example request:
curl --request POST \
    "http://navapi.localhost/user?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/json" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/user"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/json",
    "Accept": "application/json",
};

fetch(url, {
    method: "POST",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->post(
    'http://navapi.localhost/user',
    [
        'headers' => [
            'Content-Type' => 'application/json',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

POST user

Query Parameters

api_token  string  

Authentication key.

PUT user

requires authentication

Example request:
curl --request PUT \
    "http://navapi.localhost/user?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json" \
    --data "{
    \"websiteID\": 78192.4,
    \"customerNo\": \"et\",
    \"vendorNo\": \"mollitia\",
    \"firstName\": \"est\",
    \"middleName\": \"repellat\",
    \"surname\": \"quidem\",
    \"companyName\": \"harum\",
    \"email\": \"vel\",
    \"address\": \"consequatur\",
    \"address2\": \"assumenda\",
    \"city\": \"doloribus\",
    \"county\": \"illum\",
    \"postCode\": \"aut\",
    \"country\": \"ea\",
    \"phoneNo\": \"aspernatur\",
    \"mobileNo\": \"possimus\",
    \"vatNo\": \"cumque\",
    \"accountType\": \"id\",
    \"blocked\": false,
    \"approved\": true,
    \"approvedBy\": \"ducimus\",
    \"approvedAt\": \"2026-01-08T18:24:51\",
    \"vendorApproved\": false,
    \"vendorApprovedBy\": \"aliquam\",
    \"vendorApprovedAt\": \"2026-01-08T18:24:51\",
    \"fromWebSourceCode\": \"magni\",
    \"fromWebSourceName\": \"fugiat\"
}"

const url = new URL(
    "http://navapi.localhost/user"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

let body = {
    "websiteID": 78192.4,
    "customerNo": "et",
    "vendorNo": "mollitia",
    "firstName": "est",
    "middleName": "repellat",
    "surname": "quidem",
    "companyName": "harum",
    "email": "vel",
    "address": "consequatur",
    "address2": "assumenda",
    "city": "doloribus",
    "county": "illum",
    "postCode": "aut",
    "country": "ea",
    "phoneNo": "aspernatur",
    "mobileNo": "possimus",
    "vatNo": "cumque",
    "accountType": "id",
    "blocked": false,
    "approved": true,
    "approvedBy": "ducimus",
    "approvedAt": "2026-01-08T18:24:51",
    "vendorApproved": false,
    "vendorApprovedBy": "aliquam",
    "vendorApprovedAt": "2026-01-08T18:24:51",
    "fromWebSourceCode": "magni",
    "fromWebSourceName": "fugiat"
};

fetch(url, {
    method: "PUT",
    headers,
    body: JSON.stringify(body),
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->put(
    'http://navapi.localhost/user',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
        'json' => [
            'websiteID' => 78192.4,
            'customerNo' => 'et',
            'vendorNo' => 'mollitia',
            'firstName' => 'est',
            'middleName' => 'repellat',
            'surname' => 'quidem',
            'companyName' => 'harum',
            'email' => 'vel',
            'address' => 'consequatur',
            'address2' => 'assumenda',
            'city' => 'doloribus',
            'county' => 'illum',
            'postCode' => 'aut',
            'country' => 'ea',
            'phoneNo' => 'aspernatur',
            'mobileNo' => 'possimus',
            'vatNo' => 'cumque',
            'accountType' => 'id',
            'blocked' => false,
            'approved' => true,
            'approvedBy' => 'ducimus',
            'approvedAt' => '2026-01-08T18:24:51',
            'vendorApproved' => false,
            'vendorApprovedBy' => 'aliquam',
            'vendorApprovedAt' => '2026-01-08T18:24:51',
            'fromWebSourceCode' => 'magni',
            'fromWebSourceName' => 'fugiat',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

PUT user

Query Parameters

api_token  string  

Authentication key.

Body Parameters

websiteID  number  

customerNo  string optional  

vendorNo  string optional  

firstName  string optional  

middleName  string optional  

surname  string optional  

companyName  string optional  

email  string  

address  string optional  

address2  string optional  

city  string optional  

county  string optional  

postCode  string optional  

country  string optional  

phoneNo  string optional  

mobileNo  string optional  

vatNo  string optional  

accountType  string optional  

blocked  boolean optional  

approved  boolean optional  

approvedBy  string optional  

approvedAt  string optional  

Must be a valid date.

vendorApproved  boolean optional  

vendorApprovedBy  string optional  

vendorApprovedAt  string optional  

Must be a valid date.

fromWebSourceCode  string optional  

fromWebSourceName  string optional  

Get a user record

requires authentication

This endpoint allows you to get AM user record details via the email address

Example request:
curl --request GET \
    --get "http://navapi.localhost/user?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/json" \
    --header "Accept: application/json" \
    --data "{
    \"email\": \"sit\"
}"

const url = new URL(
    "http://navapi.localhost/user"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/json",
    "Accept": "application/json",
};

let body = {
    "email": "sit"
};

fetch(url, {
    method: "GET",
    headers,
    body: JSON.stringify(body),
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->get(
    'http://navapi.localhost/user',
    [
        'headers' => [
            'Content-Type' => 'application/json',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
        'json' => [
            'email' => 'sit',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Example response (500):

Show headers 
cache-control: no-cache, private
content-type: application/json
 

{
    "message": "Server Error"
}

Request      

GET user

Query Parameters

api_token  string  

Authentication key.

Body Parameters

email  string  

Undefined

requires authentication

Example request:
curl --request DELETE \
    "http://navapi.localhost/user/non?api_token=%7BYOUR_AUTH_KEY%7D" \
    --header "Content-Type: application/xml" \
    --header "Accept: application/json"
const url = new URL(
    "http://navapi.localhost/user/non"
);

const params = {
    "api_token": "{YOUR_AUTH_KEY}",
};
Object.keys(params)
    .forEach(key => url.searchParams.append(key, params[key]));

const headers = {
    "Content-Type": "application/xml",
    "Accept": "application/json",
};

fetch(url, {
    method: "DELETE",
    headers,
}).then(response => response.json());
$client = new \GuzzleHttp\Client();
$response = $client->delete(
    'http://navapi.localhost/user/non',
    [
        'headers' => [
            'Content-Type' => 'application/xml',
            'Accept' => 'application/json',
        ],
        'query' => [
            'api_token'=> '{YOUR_AUTH_KEY}',
        ],
    ]
);
$body = $response->getBody();
print_r(json_decode((string) $body));

Request      

DELETE user/{id}

URL Parameters

id  string  

Query Parameters

api_token  string  

Authentication key.