Makula uses 2 tokens. One short lived and a refresh token. When the short-lived token expires. Makula checks the validity of the refresh token and refreshes both tokens if it is valid. Expiration is:
- Short-lived token: 6 minutes
- Refresh token: 7 days
Both tokens are sent from the client to the server. Server send tokens to the client only after login or if they get refreshed.
- Production https://api.makula.io/graphql
- Staging https://oem-staging.makula.io/graphql
Makula uses filter on queries with skip and limit like MongoDB.
One can sort by multiple fields.
Filtering works with: sort, skip, limit, ne, gt, gte, lt, lte, in, nin, contains, matches
Makula uses roles and permissions that are not documented on the API endpoints yet. For example only certain roles can perform specific queries or mutations.