Stand with Ukraine flag
Try it now Pricing
Cloud
Community Edition Professional Edition Cloud Edge PE Edge IoT Gateway License Server Trendz Analytics Mobile Application PE Mobile Application MQTT Broker
North America
North America N. Virginia Europe Frankfurt
API > REST APIs and clients > Administration REST API
Getting Started Documentation Devices Library Guides
FAQ
On this page

REST API

ThingsBoard provides interactive REST API documentation via Swagger UI. This tool allows you to explore available API methods, understand their parameters, and execute API requests directly from your browser.

Where to find Swagger UI?

Every ThingsBoard Cloud instance has its own Swagger UI page.
Browse ThingsBoard Cloud REST API documentation by clicking the button below:


ThingsBoard Cloud REST API documentation

How to authenticate in Swagger UI?

  • If you are already logged in via the main ThingsBoard login page, Swagger UI will automatically use your credentials.
  • You can manually authenticate or authorize as a different user using the “Authorize” button in the top-right corner of the Swagger page. Enter the username and password. Then, click “Authorize”.
You can manually authenticate or authorize as a different user using the "Authorize" button in the top-right corner of the Swagger page.
You can manually authenticate or authorize as a different user using the "Authorize" button in the top-right corner of the Swagger page.
Enter the username and password. Then, click "Authorize".
Enter the username and password. Then, click "Authorize".

The easiest way to get your account is to use ThingsBoard Cloud server.

How API authentication works?

ThingsBoard uses JWT tokens for representing claims securely between the API client (browser, scripts, etc) and the platform. When you login to the platform, your username and password is exchanged to the pair of tokens.

  • Access Token (JWT) – short-lived token, used for executing API calls.
  • Refresh Token – used to obtain a new access token when the current one expires.

Default token expiration:

  • Access Token is valid for 2.5 hours.
  • Refresh Token is valid for 1 week.

How to obtain a JWT token?

To obtain a JWT token for the user “[email protected]” with password “secret”, execute the following command:

1
2
3
4

curl -X POST --header 'Content-Type: application/json' \
             --header 'Accept: application/json' \
             -d '{"username":"[email protected]", "password":"secret"}' \
             'https://thingsboard.cloud/api/auth/login'

Response:

1

{"token":"$YOUR_JWT_TOKEN", "refreshToken":"$YOUR_JWT_REFRESH_TOKEN"}

Once authenticated, use the obtained JWT token in the X-Authorization header for all API requests:

1

X-Authorization: Bearer $YOUR_JWT_TOKEN

Additional tools

For easier integration with the ThingsBoard API, you can use ThingsBoard team client libraries:

These clients allow you to create devices, assets, users, and other entities, as well as manage their relationships within ThingsBoard.