Access and authentication

The PreCrime Platform supports two authentication methods for programmatic access:

Authentication Methods

JWT Token - Generate a token using username and password credentials
API Key - Use a pre-configured API key for direct access

Both methods provide secure access to the platform's API endpoints and can be used depending on your integration requirements and security preferences.

JWT Authentication

PreCrime users can generate a JSON Web Token (JWT) for authentication by providing their username and password credentials.

Token Lifecycle:

JWT tokens expire 60 minutes after generation
Tokens can be renewed before expiration by calling the appropriate renewal endpoint
Tokens can be manually invalidated when no longer needed

Authentication Flow:

Submit valid username and password credentials
Receive JWT token upon successful authentication
Include the token in subsequent API requests
Renew the token before expiration or generate a new one as needed

post

Authenticate user and obtain JWT token

Body

usernamestringRequired

User's username

Example: john.doe

passwordstring · passwordRequired

User's password

Example: SecurePass123!

Responses

200

Successful authentication

application/json

401

Incorrect credentials

application/json

403

Password expired

application/json

post

/user/login

POST /user/login HTTP/1.1
Host: api.bfore.ai
Content-Type: application/json
Accept: */*
Content-Length: 51

{
  "username": "john.doe",
  "password": "SecurePass123!"
}

{
  "Id": "12345678-1234-1234-1234-123456789abc",
  "Created": "2023-01-15T10:30:42",
  "Username": "john.doe",
  "Email": "[email protected]",
  "Firstname": "John",
  "Lastname": "Doe",
  "Properties": {
    "a": "aaa",
    "b": "bbb",
    "c": "ccc"
  },
  "Authorizations": [
    {
      "Company": {
        "Id": 1,
        "Name": "Company Inc",
        "Created": "2022-05-10T09:15:20",
        "Deleted": "0001-01-01T00:00:00"
      },
      "Roles": [
        {
          "Id": 1,
          "Name": "sys-admin"
        }
      ]
    }
  ],
  "Active": {
    "Id": 1,
    "Name": "Company Inc",
    "Created": "2022-05-10T09:15:20",
    "Deleted": "0001-01-01T00:00:00"
  },
  "Token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
  "PasswordExpiration": "2024-06-15T18:30:00"
}

Renew JWT token

get

Get a new JWT token with extended expiration when current token is still valid

Authorizations

AuthorizationstringRequired

JWT token obtained from /user/login endpoint

Responses

200

New JWT token issued

application/json

401

Current token is invalid or expired

application/json

get

/user/renew

GET /user/renew HTTP/1.1
Host: api.bfore.ai
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."
}

Logout user

get

Invalidate JWT token before it expires

Authorizations

AuthorizationstringRequired

JWT token obtained from /user/login endpoint

Responses

200

Successfully logged out

application/json

get

/user/logout

GET /user/logout HTTP/1.1
Host: api.bfore.ai
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

200

Successfully logged out

{
  "message": "Success"
}

API Key authentication

To authenticate using an API key, follow these steps:

API Key Generation:

API keys can be generated by getting in contact with us. Soon we will provide self service access to API key management within the platform.

Authentication Methods: API keys can be provided in two ways:

Option 1: Header Authentication Include the API key in the X-Authorization header:

GET https://api.bfore.ai/test/secure
X-Authorization: <API_KEY>

Option 2: Query Parameter Authentication Include the API key as a query parameter:

GET https://api.bfore.ai/test/secure?api_key=<API_KEY>

Both methods provide equivalent authentication and can be used based on your implementation preferences.

Add new auth header

post

Generate a new auth header token

Authorizations

AuthorizationstringRequired

JWT token obtained from /user/login endpoint

Body

namestringRequired

Name for the auth header

Example: production-api-key

Responses

200

Auth header created successfully

application/json

post

/authheader/add

POST /authheader/add HTTP/1.1
Host: api.bfore.ai
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 29

{
  "name": "production-api-key"
}

200

Auth header created successfully

{
  "id": "text",
  "name": "production-api-key",
  "token": "text",
  "created": "2026-01-29T12:29:56.981Z"
}

Get list of auth headers

get

Retrieve all available auth header tokens for the user

Authorizations

AuthorizationstringRequired

JWT token obtained from /user/login endpoint

Responses

200

List of auth headers

application/json

get

/authheader/list

GET /authheader/list HTTP/1.1
Host: api.bfore.ai
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

200

List of auth headers

[
  {
    "id": "text",
    "name": "production-api-key",
    "token": "text",
    "created": "2026-01-29T12:29:56.981Z"
  }
]

Delete auth header

post

Delete an existing auth header token

Authorizations

AuthorizationstringRequired

JWT token obtained from /user/login endpoint

Body

textstringRequired

Auth header token to delete

Responses

200

Auth header deleted successfully

application/json

post

/authheader/delete

POST /authheader/delete HTTP/1.1
Host: api.bfore.ai
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 15

{
  "text": "text"
}

200

Auth header deleted successfully

{
  "message": "Success"
}

PreviousThe PreCrime Platform NextPreCrime Brand

Last updated 5 months ago

Was this helpful?

hashtagAuthentication Methods

hashtagJWT Authentication

hashtagToken Lifecycle:

hashtagAuthentication Flow:

hashtagUser login

hashtagRenew JWT token

hashtagLogout user

hashtagAPI Key authentication

hashtagAdd new auth header

hashtagGet list of auth headers

hashtagDelete auth header

Authentication Methods

JWT Authentication

Token Lifecycle:

Authentication Flow:

User login

Renew JWT token

Logout user

API Key authentication

Add new auth header

Get list of auth headers

Delete auth header