Skip to main content

Three steps to production

1. Provision your workspace

  1. Email [email protected] with your firm name, use case, and environment (Prod or QA/UAT).\n
  2. Receive your client credentials plus IP safelist details from the onboarding team.\n
  3. Create service accounts for each integration environment.
  • For JWT integrations, create user accounts and capture login credentials for automation.\n
  • For OAuth integrations, register redirect URIs and receive client_id / client_secret pairs.\n
  • Store secrets in your secure vault; never hardcode in code repositories.

2. Validate authentication

  1. POST /api/v1/auth/login with an integration user.\n
  2. Capture the Authorization bearer token from the response.\n
  3. Call GET /api/v1/auth/me to verify scope and firm context.\n
  4. If using refresh cookies, call POST /api/v1/auth/refresh-session.
  1. Hit GET /api/v1/oauth/authorize with your client_id, scopes, and redirect URI.\n
  2. Exchange the code via POST /api/v1/oauth/token to receive access and refresh tokens.\n
  3. Call GET /api/v1/oauth/userinfo or GET /api/v1/auth/me to confirm claims.\n
  4. Store refresh tokens securely and validate expires_in to plan rotations.

3. Exercise core endpoints

  1. Create a sample referral with POST /api/v1/cases using a sandbox firm pairing.\n
  2. Update fields with PUT /api/v1/cases/{id} and confirm audit trails.\n
  3. List cases via GET /api/v1/cases using pagination and filters.\n
  4. Retrieve firm metadata to power dropdowns with GET /api/v1/firms and GET /api/v1/firms/jurisdictions.\n
  5. Run routing dry-runs with POST /api/v1/routing/evaluate-api to confirm rules logic.\n

Next steps

JWT Guide

Deep dive into session handling, refresh, and token rotation.

OAuth Guide

Configure Authorization Code flows and scope selection.

Case Lifecycle

Understand referral states, ownership, and re-referrals.

Error Handling

See standard response envelopes and status codes.
Need sandbox data or partner credentials? Email [email protected].