API Integration Guide

This guide will help you integrate with the ArcusX REST API to build applications and automate workflows.

API Overview

The ArcusX API is a RESTful API that provides access to platform functionality including:

User authentication and management
Task creation and management
Proposal submission and review
Escrow contract operations
Payment processing
Dispute resolution
Messaging and notifications
Administrative operations

Base URL

Development: http://arcusx.pro/api
Production: https://arcusx.pro/api

All endpoints are prefixed with /auth/ for authenticated routes.

Authentication

ArcusX uses JWT (JSON Web Tokens) for authentication. Most endpoints require a valid JWT token in the Authorization header.

Getting a Token

Login Endpoint

POST /api/auth/login.php
Content-Type: application/json

{
  "email": "[email protected]",
  "password": "your_password"
}

Response

{
  "success": true,
  "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
  "user": {
    "id": 1,
    "email": "[email protected]",
    "username": "username"
  }
}

Using the Token

Include the token in the Authorization header:

GET /api/auth/get_tasks.php
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...

Token Expiration

JWT tokens expire after a set period. Handle 401 responses by redirecting to login or refreshing the token.

Request Format

Headers

All requests should include:

Content-Type: application/json
Authorization: Bearer {token}

Request Body

POST and PUT requests should send JSON:

{
  "field1": "value1",
  "field2": "value2"
}

Response Format

Success Response

{
  "success": true,
  "message": "Operation completed successfully",
  "data": {
    // Response data
  }
}

Error Response

{
  "success": false,
  "message": "Error message",
  "error": "Detailed error information"
}

HTTP Status Codes

200 OK: Request successful
201 Created: Resource created successfully
400 Bad Request: Invalid request data
401 Unauthorized: Authentication required or invalid token
403 Forbidden: Insufficient permissions
404 Not Found: Resource not found
500 Internal Server Error: Server error

Common Endpoints

Authentication

Login

POST /api/auth/login.php

Register

POST /api/auth/register.php

Register Wallet

POST /api/auth/register_wallet.php

Tasks

Get Tasks

GET /api/auth/get_tasks.php

Create Task

POST /api/auth/create_task.php
Body: {
  "title": "Task title",
  "description": "Task description",
  "price": "100.00",
  "currency": "USDC",
  "category": "Development",
  "difficulty": "Intermediate"
}

Get Task Details

GET /api/auth/get_task_details.php?task_id=1

Apply to Task

POST /api/auth/apply_task.php
Body: {
  "task_id": 1,
  "message": "Proposal message",
  "portfolio_url": "https://portfolio.example.com",
  "worker_wallet_address": "G..."
}

Escrow

Create Escrow

POST /api/auth/create_escrow.php
Body: {
  "task_id": 1,
  "escrow_id": "C...",
  "escrow_status": "pending_funding",
  "escrow_amount": "100.5025"
}

Get Escrow Status

GET /api/auth/get_escrow_status.php?task_id=1

Messages

Get Messages

GET /api/auth/get_messages.php?task_id=1

Send Message

POST /api/auth/send_message.php
Body: {
  "task_id": 1,
  "receiver_id": 2,
  "message": "Message content"
}

Code Examples

JavaScript/TypeScript

const API_URL = 'https://arcusx.pro/api';

async function login(email: string, password: string) {
  const response = await fetch(`${API_URL}/auth/login.php`, {
    method: 'POST',
    headers: {
      'Content-Type': 'application/json',
    },
    body: JSON.stringify({ email, password }),
  });
  
  const data = await response.json();
  if (data.success) {
    localStorage.setItem('token', data.token);
    return data;
  }
  throw new Error(data.message);
}

async function getTasks(token: string) {
  const response = await fetch(`${API_URL}/auth/get_tasks.php`, {
    headers: {
      'Authorization': `Bearer ${token}`,
    },
  });
  
  return response.json();
}

PHP

<?php
$apiUrl = 'https://arcusx.pro/api';
$token = 'your_jwt_token';

// Login
$ch = curl_init($apiUrl . '/auth/login.php');
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, json_encode([
    'email' => '[email protected]',
    'password' => 'password'
]));
curl_setopt($ch, CURLOPT_HTTPHEADER, [
    'Content-Type: application/json'
]);

$response = curl_exec($ch);
$data = json_decode($response, true);

// Get Tasks
$ch = curl_init($apiUrl . '/auth/get_tasks.php');
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_HTTPHEADER, [
    'Authorization: Bearer ' . $token
]);

$response = curl_exec($ch);
$tasks = json_decode($response, true);
?>

Python

import requests

API_URL = 'https://arcusx.pro/api'

def login(email, password):
    response = requests.post(
        f'{API_URL}/auth/login.php',
        json={'email': email, 'password': password},
        headers={'Content-Type': 'application/json'}
    )
    data = response.json()
    if data['success']:
        return data['token']
    raise Exception(data['message'])

def get_tasks(token):
    response = requests.get(
        f'{API_URL}/auth/get_tasks.php',
        headers={'Authorization': f'Bearer {token}'}
    )
    return response.json()

Error Handling

Always implement proper error handling:

async function apiCall(endpoint: string, options: RequestInit = {}) {
  try {
    const response = await fetch(endpoint, options);
    const data = await response.json();
    
    if (!response.ok) {
      if (response.status === 401) {
        // Handle authentication error
        // Redirect to login or refresh token
      }
      throw new Error(data.message || 'Request failed');
    }
    
    return data;
  } catch (error) {
    // Handle network errors, timeouts, etc.
    console.error('API Error:', error);
    throw error;
  }
}

Rate Limiting

Currently, ArcusX does not enforce strict rate limits, but:

Implement reasonable request throttling in your application
Cache responses when appropriate
Avoid excessive polling
Respect server resources

Best Practices

Security

Never expose JWT tokens in client-side code (if public)
Store tokens securely (localStorage for web apps, secure storage for mobile)
Use HTTPS in production
Validate all input data
Sanitize user inputs

Performance

Implement response caching
Use pagination for large datasets
Minimize unnecessary requests
Batch operations when possible

Reliability

Implement retry logic for failed requests
Handle network timeouts
Gracefully handle API errors
Provide user feedback for long operations

Testing

Using Postman

Import API endpoints into Postman
Set up environment variables (base URL, token)
Create collection with authentication pre-request script
Test all endpoints

Using cURL

# Login
curl -X POST https://arcusx.pro/api/auth/login.php \
  -H "Content-Type: application/json" \
  -d '{"email":"[email protected]","password":"password"}'

# Get Tasks (with token)
curl https://arcusx.pro/api/auth/get_tasks.php \
  -H "Authorization: Bearer YOUR_TOKEN"

Next Steps

Review Complete API Reference
Learn about Stellar Integration
Explore Escrow Operations
Study Authentication Details

Happy integrating!

PreviousDeveloper Guide NextTerms and Conditions

Last updated 1 month ago

hashtagAPI Overview

hashtagBase URL

hashtagAuthentication

hashtagGetting a Token

hashtagUsing the Token

hashtagToken Expiration

hashtagRequest Format

hashtagHeaders

hashtagRequest Body

hashtagResponse Format

hashtagSuccess Response

hashtagError Response

hashtagHTTP Status Codes

hashtagCommon Endpoints

hashtagAuthentication

hashtagTasks

hashtagEscrow

hashtagMessages

hashtagCode Examples

hashtagJavaScript/TypeScript

hashtagPHP

hashtagPython

hashtagError Handling

hashtagRate Limiting

hashtagBest Practices

hashtagSecurity

hashtagPerformance

hashtagReliability

hashtagTesting

hashtagUsing Postman

hashtagUsing cURL

hashtagNext Steps

API Overview

Base URL

Authentication

Getting a Token

Using the Token

Token Expiration

Request Format

Headers

Request Body

Response Format

Success Response

Error Response

HTTP Status Codes

Common Endpoints

Authentication

Tasks

Escrow

Messages

Code Examples

JavaScript/TypeScript

PHP

Python

Error Handling

Rate Limiting

Best Practices

Security

Performance

Reliability

Testing

Using Postman

Using cURL

Next Steps