Department of Biotechnology

Ministry of Science and Technology
BioRRAP API
×

How to get proposal details

Step 1: Get Salt Token

Endpoint: GET /api/Authentication/Saltoken

Purpose: Generates a unique salt token for secure password hashing.

Request Parameters:

  • UserLoginID (query parameter, required) – Registered user login ID

Sample Request:

GET /api/Authentication/Saltoken?UserLoginID=HIM_464_2024

Sample Response:

{
  "UserLoginID": "HIM_464_2024",
  "Message": "Salt token generated",
  "SaltTokne": "ABCD1234XYZ...",
  "SaltTokenDate": "2025-06-04T12:34:56Z"
}

Status Codes:

200 OK: Salt token returned.
400 Bad Request: Invalid or unknown user ID.

Step 2: Login

Endpoint: POST /api/Authentication/login

Purpose: Authenticates the user using the salted password hash.

Request Body:

{
  "UserID": "HIM_464_2024",
  "Password": "hashedPasswordUsingSalt"
}

Validations:

  • User must exist.
  • Password must be hashed using SHA512 (Password + Salt).
  • Salt token must not be older than 20 minutes.

Sample Response:

{
  "Email": "user@example.com",
  "Token": "eyJhbGciOiJIUzI1NiIsInR...",
  "Message": "Login successful"
}

Status Codes:

200 OK: Token issued.
400 Bad Request: Invalid credentials or expired salt.

Step 3: Get Proposal Details

Endpoint: GET /api/GetProposal/GetProposal

Purpose: Retrieve proposal details using the BioRRAP ID.

Required Header:

Authorization: Bearer <your_jwt_token>

Request Parameters:

  • BiorrapID (query parameter, required) – Unique ID of the proposal

Sample Request:

GET /api/GetProposal/GetProposal?BiorrapID=BRP1234567

Status Codes:

200 OK: Success, proposal data returned.
400: Invalid BioRRAP ID.
401: Unauthorized – missing/invalid token.
403: Permission denied.