Introduction
This documentation aims to provide all the information you need to work with our API.
<aside>As you scroll, you'll see code examples for working with the API in different programming languages in the dark area to the right (or as part of the content on mobile).
You can switch the language used with the tabs at the top right (or from the nav menu at the top left on mobile).</aside>Authenticating requests
To authenticate requests, include an Authorization header with the value "Bearer {YOUR_ACCESS_TOKEN}".
All authenticated endpoints are marked with a requires authentication badge in the documentation below.
Authenticate using Laravel Sanctum tokens. Obtain a token by calling POST /api/v1/customer-auth/login-password, POST /api/v1/customer-auth/login-otp, or registration endpoints. Include the token in the Authorization header as: Authorization: Bearer {token}.
Beverages
List beverages
Retrieves a paginated list of beverages with optional filtering
Example request:
curl --request GET \
--get "https://backend.test/api/v1/beverages?category_id=550e8400-e29b-41d4-a716-446655440000&search=heineken&min_price=1&max_price=5&in_stock=1&sort_by=price&sort_order=asc&page=1&per_page=10"const url = new URL(
"https://backend.test/api/v1/beverages"
);
const params = {
"category_id": "550e8400-e29b-41d4-a716-446655440000",
"search": "heineken",
"min_price": "1",
"max_price": "5",
"in_stock": "1",
"sort_by": "price",
"sort_order": "asc",
"page": "1",
"per_page": "10",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"beverages": [
{
"id": "bev_123456",
"name": "Heineken",
"category": "Beer",
"subcategory": "Lager",
"description": "Premium lager beer",
"alcoholContent": 5,
"volume": 0.33,
"price": 2.5,
"currency": "OMR",
"imageUrl": "https://example.com/images/heineken.jpg",
"inStock": true,
"quantityAvailable": 100
}
],
"pagination": {
"currentPage": 1,
"totalPages": 5,
"totalItems": 50,
"itemsPerPage": 10
}
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (422):
{
"success": false,
"error": {
"code": "VALIDATION_ERROR",
"message": "Invalid category ID format"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Search beverages
Search beverages by name, brand, description, or SKU
Example request:
curl --request GET \
--get "https://backend.test/api/v1/beverages/search?q=heineken&category_id=550e8400-e29b-41d4-a716-446655440000&min_price=1&max_price=5&page=1&per_page=10"const url = new URL(
"https://backend.test/api/v1/beverages/search"
);
const params = {
"q": "heineken",
"category_id": "550e8400-e29b-41d4-a716-446655440000",
"min_price": "1",
"max_price": "5",
"page": "1",
"per_page": "10",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"beverages": [
{
"id": "bev_123456",
"name": "Heineken",
"price": 2.5,
"currency": "OMR"
}
],
"pagination": {
"currentPage": 1,
"totalPages": 2,
"totalItems": 15,
"itemsPerPage": 10
}
}
}
Example response (422):
{
"success": false,
"error": {
"code": "VALIDATION_ERROR",
"message": "The search query is required"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get featured/popular beverages
Get a list of featured or popular beverages
Example request:
curl --request GET \
--get "https://backend.test/api/v1/beverages/featured?limit=8&type=popular"const url = new URL(
"https://backend.test/api/v1/beverages/featured"
);
const params = {
"limit": "8",
"type": "popular",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"beverages": [
{
"id": "bev_123456",
"name": "Heineken",
"ratingAverage": 4.5,
"ratingCount": 128,
"price": 2.5,
"currency": "OMR"
}
]
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get beverage categories
Retrieves list of all beverage categories with beverage counts
Example request:
curl --request GET \
--get "https://backend.test/api/v1/beverages/categories"const url = new URL(
"https://backend.test/api/v1/beverages/categories"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"categories": [
{
"id": "cat_123456",
"name": "Beer",
"description": "Alcoholic beverages brewed from grains",
"imageUrl": "https://example.com/images/beer-category.jpg",
"beveragesCount": 25,
"subcategories": [
{
"id": "sub_123456",
"name": "Lager",
"description": "Light, crisp beer"
}
]
}
]
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get category details with beverages
Retrieves a specific category and its beverages
Example request:
curl --request GET \
--get "https://backend.test/api/v1/beverages/categories/{categoryId}"const url = new URL(
"https://backend.test/api/v1/beverages/categories/{categoryId}"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"category": {
"id": "550e8400-e29b-41d4-a716-446655440000",
"name": "Beer",
"description": "Alcoholic beverages brewed from grains"
},
"beverages": [
{
"id": "bev_123456",
"name": "Heineken",
"price": 2.5,
"currency": "OMR"
}
],
"pagination": {
"currentPage": 1,
"totalPages": 3,
"totalItems": 25,
"itemsPerPage": 10
}
}
}
Example response (404):
{
"success": false,
"error": {
"code": "CATEGORY_NOT_FOUND",
"message": "Category not found"
}
}
Example response (422):
{
"success": false,
"error": {
"code": "VALIDATION_ERROR",
"message": "Invalid category ID format"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get beverage details
Retrieves detailed information about a specific beverage
Example request:
curl --request GET \
--get "https://backend.test/api/v1/beverages/{id}"const url = new URL(
"https://backend.test/api/v1/beverages/{id}"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"beverage": {
"id": "bev_123456",
"name": "Heineken",
"category": "Beer",
"subcategory": "Lager",
"description": "Premium lager beer",
"alcoholContent": 5,
"volume": 0.33,
"price": 2.5,
"currency": "OMR",
"imageUrl": "https://example.com/images/heineken.jpg",
"inStock": true,
"quantityAvailable": 100,
"origin": "Netherlands",
"brewery": "Heineken N.V.",
"ingredients": [
"Water",
"Barley",
"Hops"
],
"nutritionalInfo": {
"calories": 150,
"carbohydrates": 11
}
}
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (404):
{
"success": false,
"error": {
"code": "BEVERAGE_NOT_FOUND",
"message": "Beverage not found"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Check beverage availability
Check if a specific beverage is available in requested quantity
Example request:
curl --request GET \
--get "https://backend.test/api/v1/beverages/{id}/availability?quantity=5"const url = new URL(
"https://backend.test/api/v1/beverages/{id}/availability"
);
const params = {
"quantity": "5",
};
Object.keys(params)
.forEach(key => url.searchParams.append(key, params[key]));
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"available": true,
"beverage": {
"id": "bev_123456",
"name": "Heineken",
"stockQuantity": 100,
"maxOrderQuantity": 10
}
}
}
Example response (404):
{
"success": false,
"error": {
"code": "BEVERAGE_NOT_FOUND",
"message": "Beverage not found"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get related beverages
Get beverages related to a specific beverage (same category, similar tags)
Customer Authentication
Authentication endpoints for customer registration, login, and profile management
Register
Register a new customer with full details
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/register" \
--header "Content-Type: application/json" \
--data "{
\"phone_number\": \"+96899999999\",
\"full_name\": \"Sami Nasir\",
\"email\": \"sami@example.com\",
\"date_of_birth\": \"1990-01-15\",
\"nationality\": \"Omani\",
\"type\": \"citizen\",
\"national_id\": \"12345678901\",
\"passport_number\": \"A12345678\",
\"password\": \"SecurePass123!\",
\"verification_id\": \"550e8400-e29b-41d4-a716-446655440000\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/register"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone_number": "+96899999999",
"full_name": "Sami Nasir",
"email": "sami@example.com",
"date_of_birth": "1990-01-15",
"nationality": "Omani",
"type": "citizen",
"national_id": "12345678901",
"passport_number": "A12345678",
"password": "SecurePass123!",
"verification_id": "550e8400-e29b-41d4-a716-446655440000"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Registration successful",
"data": {
"customer": { ... },
"access_token": "eyJhbGciOiJIUzI1NiIs...",
"refresh_token": "dGhpcyBpcyBhIHJlZnJlc2g...",
"expires_in": 7200,
"token_type": "Bearer"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Register/Login with Phone OTP
Quick registration or login using phone OTP
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/register-phone" \
--header "Content-Type: application/json" \
--data "{
\"phone_number\": \"+96899999999\",
\"otp\": \"1234\",
\"otp_id\": \"550e8400-e29b-41d4-a716-446655440000\",
\"full_name\": \"Sami Nasir\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/register-phone"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone_number": "+96899999999",
"otp": "1234",
"otp_id": "550e8400-e29b-41d4-a716-446655440000",
"full_name": "Sami Nasir"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Login successful",
"data": {
"customer": { ... },
"access_token": "eyJhbGciOiJIUzI1NiIs...",
"refresh_token": "dGhpcyBpcyBhIHJlZnJlc2g...",
"expires_in": 7200
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Login with Password
Login using phone number and password
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/login-password" \
--header "Content-Type: application/json" \
--data "{
\"phone_number\": \"+96899999999\",
\"password\": \"SecurePass123!\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/login-password"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone_number": "+96899999999",
"password": "SecurePass123!"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Login successful",
"data": {
"customer": { ... },
"access_token": "eyJhbGciOiJIUzI1NiIs...",
"refresh_token": "dGhpcyBpcyBhIHJlZnJlc2g...",
"expires_in": 7200
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Login with OTP
Login using phone OTP
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/login-otp" \
--header "Content-Type: application/json" \
--data "{
\"phone_number\": \"+96899999999\",
\"otp\": \"1234\",
\"otp_id\": \"550e8400-e29b-41d4-a716-446655440000\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/login-otp"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone_number": "+96899999999",
"otp": "1234",
"otp_id": "550e8400-e29b-41d4-a716-446655440000"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Login successful",
"data": {
"customer": { ... },
"access_token": "eyJhbGciOiJIUzI1NiIs...",
"refresh_token": "dGhpcyBpcyBhIHJlZnJlc2g...",
"expires_in": 7200
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Refresh Token
Get new access token using refresh token
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/refresh-token" \
--header "Content-Type: application/json" \
--data "{
\"refresh_token\": \"1|laravel_sanctum_token...\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/refresh-token"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"refresh_token": "1|laravel_sanctum_token..."
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Token refreshed successfully",
"data": {
"access_token": "eyJhbGciOiJIUzI1NiIs...",
"refresh_token": "dGhpcyBpcyBhIHJlZnJlc2g...",
"expires_in": 7200,
"token_type": "Bearer"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Forgot Password
Request password reset OTP
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/forgot-password" \
--header "Content-Type: application/json" \
--data "{
\"phone_number\": \"+96899999999\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/forgot-password"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone_number": "+96899999999"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "OTP sent successfully",
"data": {
"otp_id": "550e8400-e29b-41d4-a716-446655440000",
"expires_at": "2026-02-27T12:00:00Z"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Confirm Forgot Password OTP
Verify OTP for password reset (step 2 of 3)
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/confirm-forgot-password-otp" \
--header "Content-Type: application/json" \
--data "{
\"phone_number\": \"+96899999999\",
\"otp\": \"1234\",
\"otp_id\": \"550e8400-e29b-41d4-a716-446655440000\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/confirm-forgot-password-otp"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone_number": "+96899999999",
"otp": "1234",
"otp_id": "550e8400-e29b-41d4-a716-446655440000"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "OTP verified successfully. You can now set your new password.",
"data": {
"otp_id": "550e8400-e29b-41d4-a716-446655440000",
"verified": true
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Reset Password
Reset password with verified OTP (step 3 of 3) OTP must be confirmed first via confirm-forgot-password-otp endpoint
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/reset-password" \
--header "Content-Type: application/json" \
--data "{
\"otp_id\": \"550e8400-e29b-41d4-a716-446655440000\",
\"password\": \"NewSecurePass123!\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/reset-password"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"otp_id": "550e8400-e29b-41d4-a716-446655440000",
"password": "NewSecurePass123!"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Password reset successfully. Please login again.",
"data": {
"requires_re_login": true
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Check Phone Exists
Check if a phone number is already registered
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/check-phone" \
--header "Content-Type: application/json" \
--data "{
\"phone_number\": \"+96899999999\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/check-phone"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"phone_number": "+96899999999"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Phone number is registered",
"data": {
"exists": true
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Send OTP
requires authentication
Send a one-time password to the authenticated customer's registered phone number. Requires authentication - uses the customer's phone number from the database.
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/send-otp" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--data "{
\"purpose\": \"phone_verification\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/send-otp"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"purpose": "phone_verification"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "OTP sent successfully to your registered phone number",
"data": {
"otp_id": "550e8400-e29b-41d4-a716-446655440000",
"expires_at": "2026-02-27T12:00:00Z",
"expires_in_seconds": 600
}
}
Example response (403):
{
"success": false,
"message": "Phone number not found",
"data": {
"code": "PHONE_NOT_FOUND"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify Phone OTP
requires authentication
Verify the OTP code sent to the authenticated customer's registered phone number. Also updates the customer's is_phone_verified status to true upon success.
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/verify-phone-otp" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--data "{
\"otp\": \"1234\",
\"otp_id\": \"550e8400-e29b-41d4-a716-446655440000\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/verify-phone-otp"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"otp": "1234",
"otp_id": "550e8400-e29b-41d4-a716-446655440000"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Phone number verified successfully",
"data": {
"phone_number": "+96899999999"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Resend OTP
requires authentication
Resend OTP to the authenticated customer's registered phone number.
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/resend-otp" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--data "{
\"purpose\": \"phone_verification\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/resend-otp"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"purpose": "phone_verification"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "OTP resent successfully",
"data": {
"otp_id": "550e8400-e29b-41d4-a716-446655440000",
"expires_at": "2026-02-27T12:00:00Z"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get Verification Status
requires authentication
Get the current verification status of the authenticated customer. Returns the current status of phone and THEQA verification, along with required next steps.
Example request:
curl --request GET \
--get "https://backend.test/api/v1/customer-auth/verification-status" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}"const url = new URL(
"https://backend.test/api/v1/customer-auth/verification-status"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Verification status retrieved",
"data": {
"is_fully_verified": false,
"current_status": {
"is_phone_verified": false,
"is_theqa_verified": false
},
"customer_type": "citizen",
"steps": [
{
"step": 1,
"type": "phone_verification",
"title": "Verify Phone Number",
"description": "Verify your phone number via OTP",
"endpoint": "POST /api/v1/customer-auth/send-otp",
"status": "pending"
}
]
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Initiate Identity Verification (Citizens/Residents)
requires authentication
Start THEQA identity verification for citizens and residents
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/initiate-identity" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--data "{
\"national_id\": \"12345678901\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/initiate-identity"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"national_id": "12345678901"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Identity verification initiated",
"data": {
"verification_id": "550e8400-e29b-41d4-a716-446655440000",
"reference": "THEQA_REF_123",
"redirect_url": "https://theqa.gov.om/verify/abc123"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Handle Identity Callback
Handle THEQA callback after identity verification
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/identity-callback" \
--header "Content-Type: application/json" \
--data "{
\"reference\": \"THEQA_REF_123\",
\"status\": \"success\",
\"reason\": \"User cancelled\",
\"identity_data\": []
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/identity-callback"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"reference": "THEQA_REF_123",
"status": "success",
"reason": "User cancelled",
"identity_data": []
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Identity verification completed",
"data": {
"verification_id": "550e8400-e29b-41d4-a716-446655440000",
"status": "completed"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Verify Tourist Passport
Verify tourist identity using passport
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/verify-tourist" \
--header "Content-Type: application/json" \
--data "{
\"passport_number\": \"A12345678\",
\"nationality\": \"British\",
\"full_name\": \"John Smith\",
\"date_of_birth\": \"1988-12-03\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/verify-tourist"
);
const headers = {
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"passport_number": "A12345678",
"nationality": "British",
"full_name": "John Smith",
"date_of_birth": "1988-12-03"
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Passport verified successfully",
"data": {
"verification_id": "550e8400-e29b-41d4-a716-446655440000",
"passport_data": {
"passport_number": "A12345678",
"nationality": "British",
"full_name": "John Smith",
"date_of_birth": "1988-12-03"
}
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Logout
requires authentication
Logout the authenticated customer
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/logout" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--data "{
\"refresh_token\": \"architecto\",
\"all_devices\": false
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/logout"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"refresh_token": "architecto",
"all_devices": false
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Logged out successfully",
"data": {
"all_devices": false
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Set Password
requires authentication
Set or change password (authenticated)
Example request:
curl --request POST \
"https://backend.test/api/v1/customer-auth/set-password" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--data "{
\"password\": \"NewSecurePass123!\",
\"current_password\": \"OldPass123!\",
\"logout_other_devices\": true
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/set-password"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"password": "NewSecurePass123!",
"current_password": "OldPass123!",
"logout_other_devices": true
};
fetch(url, {
method: "POST",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Password updated successfully"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get Profile
requires authentication
Get authenticated customer profile
Example request:
curl --request GET \
--get "https://backend.test/api/v1/customer-auth/profile" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}"const url = new URL(
"https://backend.test/api/v1/customer-auth/profile"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Accept": "application/json",
};
fetch(url, {
method: "GET",
headers,
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Profile retrieved successfully",
"data": {
"id": "550e8400-e29b-41d4-a716-446655440000",
"full_name": "Sami Nasir",
"first_name": "Sami",
"phone_number": "+96899999999",
"email": "sami@example.com",
"date_of_birth": "1990-01-15",
"nationality": "Omani",
"type": "citizen",
"is_active": true,
"preferences": {
"language": "en",
"notifications": true
},
"verification": {
"is_fully_verified": true,
"is_phone_verified": true,
"is_theqa_verified": true
},
"travel_status": {
"has_boarding_pass": true,
"active_boarding_pass": {
"id": "550e8400-e29b-41d4-a716-446655440001",
"flight_number": "WY123",
"departure_time": "2026-03-05T10:00:00Z"
}
}
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update Profile
requires authentication
Update authenticated customer profile
Example request:
curl --request PUT \
"https://backend.test/api/v1/customer-auth/profile" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--data "{
\"full_name\": \"Sami Al-Nasir\",
\"email\": \"sami@example.com\",
\"date_of_birth\": \"1990-01-15\",
\"nationality\": \"Omani\",
\"preferences\": []
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/profile"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"full_name": "Sami Al-Nasir",
"email": "sami@example.com",
"date_of_birth": "1990-01-15",
"nationality": "Omani",
"preferences": []
};
fetch(url, {
method: "PUT",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Profile updated successfully",
"data": {
"id": "550e8400-e29b-41d4-a716-446655440000",
"full_name": "Sami Al-Nasir",
"first_name": "Sami",
"phone_number": "+96899999999",
"email": "sami.updated@example.com",
"date_of_birth": "1990-01-15",
"nationality": "Omani",
"type": "citizen",
"is_active": true,
"preferences": {
"language": "ar",
"notifications": false
},
"verification": {
"is_fully_verified": true,
"is_phone_verified": true,
"is_theqa_verified": true
},
"travel_status": {
"has_boarding_pass": true,
"active_boarding_pass": null
}
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Delete Account
requires authentication
Delete authenticated customer account
Example request:
curl --request DELETE \
"https://backend.test/api/v1/customer-auth/account" \
--header "Authorization: Bearer {YOUR_ACCESS_TOKEN}" \
--header "Content-Type: application/json" \
--data "{
\"password\": \"MyPass123!\",
\"reason\": \"No longer needed\"
}"
const url = new URL(
"https://backend.test/api/v1/customer-auth/account"
);
const headers = {
"Authorization": "Bearer {YOUR_ACCESS_TOKEN}",
"Content-Type": "application/json",
"Accept": "application/json",
};
let body = {
"password": "MyPass123!",
"reason": "No longer needed"
};
fetch(url, {
method: "DELETE",
headers,
body: JSON.stringify(body),
}).then(response => response.json());Example response (200):
{
"success": true,
"message": "Account deleted successfully"
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Customer Management
Get customer statistics
Retrieves customer purchase statistics
Example request:
curl --request GET \
--get "https://backend.test/api/v1/customers/statistics"const url = new URL(
"https://backend.test/api/v1/customers/statistics"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"statistics": {
"totalOrders": 5,
"totalSpent": 45.5,
"totalVolume": 3.5,
"averageOrderValue": 9.1,
"favoriteCategory": "Beer",
"lastOrderAt": "2026-02-03T10:30:00Z",
"memberSince": "2026-01-01T00:00:00Z"
}
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Eligibility
Check travel status
Checks if user has valid travel status to purchase duty-free items
Example request:
curl --request POST \
"https://backend.test/api/v1/eligibility/check"const url = new URL(
"https://backend.test/api/v1/eligibility/check"
);
fetch(url, {
method: "POST",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"status": "ELIGIBLE",
"message": "Valid travel ticket found",
"details": {
"flightNumber": "WY123",
"departureDate": "2026-02-03",
"destination": "MCT",
"eligibilityExpiry": "2026-02-04T00:00:00Z",
"remainingAllowance": {
"volume": 4,
"currency": "OMR",
"amount": 500
}
},
"checkedAt": "2026-02-03T10:00:00Z"
}
}
Example response (400):
{
"success": false,
"error": {
"code": "INVALID_REQUEST",
"message": "Request body validation failed"
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (403):
{
"success": false,
"error": {
"code": "INELIGIBLE",
"message": "You do not have a valid ticket to view the beverage menu",
"details": {
"reason": "NO_VALID_TICKET",
"suggestion": "Please scan your boarding pass"
}
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Validate boarding pass
Validates boarding pass data from scan
Example request:
curl --request POST \
"https://backend.test/api/v1/eligibility/validate-boarding-pass"const url = new URL(
"https://backend.test/api/v1/eligibility/validate-boarding-pass"
);
fetch(url, {
method: "POST",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"isValid": true,
"boardingPassId": "bp_abc123",
"passengerName": "John Smith",
"flightDetails": {
"flightNumber": "WY123",
"airline": "Oman Air",
"departure": {
"airport": "DXB",
"time": "2026-02-03T15:00:00Z",
"gate": "A12"
},
"arrival": {
"airport": "MCT",
"time": "2026-02-03T16:30:00Z"
}
},
"eligibility": {
"status": "ELIGIBLE",
"validFrom": "2026-02-03T10:00:00Z",
"validUntil": "2026-02-04T00:00:00Z",
"maxVolume": 4
}
},
"message": "Boarding pass validated successfully"
}
Example response (400):
{
"success": false,
"error": {
"code": "BOARDING_PASS_INVALID",
"message": "Boarding pass validation failed"
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Endpoints
GET api/health
Example request:
curl --request GET \
--get "https://backend.test/api/health"const url = new URL(
"https://backend.test/api/health"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Orders
List orders
Retrieves a paginated list of user's orders with optional filtering
Example request:
curl --request GET \
--get "https://backend.test/api/v1/orders"const url = new URL(
"https://backend.test/api/v1/orders"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"orders": [
{
"id": "ord_123456",
"orderNumber": "OP-20260203-001",
"status": "delivered",
"total": 25.5,
"currency": "OMR",
"itemCount": 3,
"createdAt": "2026-02-03T10:30:00Z",
"estimatedDelivery": "2026-02-03T11:00:00Z"
}
],
"pagination": {
"currentPage": 1,
"totalPages": 3,
"totalItems": 25,
"itemsPerPage": 10
}
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Create order
Creates a new order from the user's cart
Example request:
curl --request POST \
"https://backend.test/api/v1/orders"const url = new URL(
"https://backend.test/api/v1/orders"
);
fetch(url, {
method: "POST",
}).then(response => response.json());Example response (201):
{
"success": true,
"data": {
"order": {
"id": "ord_123456",
"orderNumber": "OP-20260203-001",
"status": "pending",
"items": [
{
"id": "item_123456",
"beverageId": "bev_123456",
"name": "Heineken",
"quantity": 2,
"unitPrice": 2.5,
"totalPrice": 5
}
],
"subtotal": 5,
"tax": 0.25,
"deliveryFee": 1,
"total": 6.25,
"currency": "OMR",
"deliveryAddress": {
"street": "123 Main St",
"city": "Muscat",
"postalCode": "100"
},
"estimatedDelivery": "2026-02-03T11:00:00Z",
"createdAt": "2026-02-03T10:30:00Z"
}
},
"message": "Order created successfully"
}
Example response (400):
{
"success": false,
"error": {
"code": "INVALID_REQUEST",
"message": "Request body validation failed"
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (422):
{
"success": false,
"error": {
"code": "EMPTY_CART",
"message": "Cannot create order with empty cart"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get order details
Retrieves detailed information about a specific order
Example request:
curl --request GET \
--get "https://backend.test/api/v1/orders/{orderId}"const url = new URL(
"https://backend.test/api/v1/orders/{orderId}"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"order": {
"id": "ord_123456",
"orderNumber": "OP-20260203-001",
"status": "delivered",
"items": [
{
"id": "item_123456",
"beverageId": "bev_123456",
"name": "Heineken",
"quantity": 2,
"unitPrice": 2.5,
"totalPrice": 5,
"imageUrl": "https://example.com/images/heineken.jpg"
}
],
"subtotal": 5,
"tax": 0.25,
"deliveryFee": 1,
"total": 6.25,
"currency": "OMR",
"deliveryAddress": {
"street": "123 Main St",
"city": "Muscat",
"postalCode": "100"
},
"paymentMethod": "card",
"paymentStatus": "paid",
"estimatedDelivery": "2026-02-03T11:00:00Z",
"actualDelivery": "2026-02-03T10:55:00Z",
"createdAt": "2026-02-03T10:30:00Z",
"updatedAt": "2026-02-03T10:55:00Z"
}
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (404):
{
"success": false,
"error": {
"code": "ORDER_NOT_FOUND",
"message": "Order not found"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Track order
Retrieves real-time tracking information for an order
Example request:
curl --request GET \
--get "https://backend.test/api/v1/orders/{orderId}/tracking"const url = new URL(
"https://backend.test/api/v1/orders/{orderId}/tracking"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"tracking": {
"orderId": "ord_123456",
"orderNumber": "OP-20260203-001",
"status": "out_for_delivery",
"currentLocation": {
"lat": 23.5859,
"lng": 58.4059,
"address": "Al Khuwair, Muscat"
},
"estimatedDelivery": "2026-02-03T11:00:00Z",
"driverInfo": {
"name": "Ahmed",
"phone": "+96899999999",
"vehicleNumber": "OM-1234"
},
"timeline": [
{
"status": "order_placed",
"timestamp": "2026-02-03T10:30:00Z",
"description": "Order placed successfully"
},
{
"status": "confirmed",
"timestamp": "2026-02-03T10:32:00Z",
"description": "Order confirmed by store"
},
{
"status": "out_for_delivery",
"timestamp": "2026-02-03T10:45:00Z",
"description": "Order is out for delivery"
}
]
}
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (404):
{
"success": false,
"error": {
"code": "ORDER_NOT_FOUND",
"message": "Order not found"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Cancel order
Cancels an order that has not yet been delivered
Example request:
curl --request POST \
"https://backend.test/api/v1/orders/{orderId}/cancel"const url = new URL(
"https://backend.test/api/v1/orders/{orderId}/cancel"
);
fetch(url, {
method: "POST",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"order": {
"id": "ord_123456",
"orderNumber": "OP-20260203-001",
"status": "cancelled",
"cancelledAt": "2026-02-03T10:35:00Z",
"cancellationReason": "Changed my mind"
}
},
"message": "Order cancelled successfully"
}
Example response (400):
{
"success": false,
"error": {
"code": "CANNOT_CANCEL",
"message": "Order cannot be cancelled at this stage"
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (404):
{
"success": false,
"error": {
"code": "ORDER_NOT_FOUND",
"message": "Order not found"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Payments
Process payment
Processes payment for an order
Example request:
curl --request POST \
"https://backend.test/api/v1/payments/process"const url = new URL(
"https://backend.test/api/v1/payments/process"
);
fetch(url, {
method: "POST",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"payment": {
"id": "pay_xyz789",
"orderId": "ord_abc123def456",
"status": "completed",
"amount": 9.9,
"currency": "OMR",
"method": "credit_card",
"transactionId": "txn_abc123xyz",
"processedAt": "2026-02-03T10:30:05Z"
},
"order": {
"id": "ord_abc123def456",
"status": "preparing",
"qrCode": "QR_ord_abc123def456"
}
},
"message": "Payment processed successfully"
}
Example response (400):
{
"success": false,
"error": {
"code": "INVALID_PAYMENT",
"message": "Payment validation failed"
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (402):
{
"success": false,
"error": {
"code": "PAYMENT_FAILED",
"message": "Payment processing failed"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get payment methods
Retrieves saved payment methods for user
Example request:
curl --request GET \
--get "https://backend.test/api/v1/payments/methods"const url = new URL(
"https://backend.test/api/v1/payments/methods"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"paymentMethods": [
{
"id": "pm_abc123",
"type": "credit_card",
"brand": "visa",
"lastFourDigits": "4242",
"expiryMonth": "12",
"expiryYear": "2028",
"isDefault": true,
"createdAt": "2026-01-01T00:00:00Z"
}
]
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Shopping Cart
Get cart contents
Retrieves current user's shopping cart with all items
Example request:
curl --request GET \
--get "https://backend.test/api/v1/cart"const url = new URL(
"https://backend.test/api/v1/cart"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"cart": {
"id": "cart_123456",
"items": [],
"totalItems": 0,
"subtotal": 0,
"total": 0,
"currency": "OMR"
}
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Add item to cart
Adds a beverage to the user's shopping cart
Example request:
curl --request POST \
"https://backend.test/api/v1/cart/items"const url = new URL(
"https://backend.test/api/v1/cart/items"
);
fetch(url, {
method: "POST",
}).then(response => response.json());Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Update cart item
Updates the quantity of an item in the cart
Example request:
curl --request PUT \
"https://backend.test/api/v1/cart/items/{itemId}"const url = new URL(
"https://backend.test/api/v1/cart/items/{itemId}"
);
fetch(url, {
method: "PUT",
}).then(response => response.json());Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Remove item from cart
Removes a specific item from the user's cart
Example request:
curl --request DELETE \
"https://backend.test/api/v1/cart/items/{itemId}"const url = new URL(
"https://backend.test/api/v1/cart/items/{itemId}"
);
fetch(url, {
method: "DELETE",
}).then(response => response.json());Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Clear cart
Removes all items from the user's cart
Example request:
curl --request DELETE \
"https://backend.test/api/v1/cart"const url = new URL(
"https://backend.test/api/v1/cart"
);
fetch(url, {
method: "DELETE",
}).then(response => response.json());Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Support
Get FAQs
Retrieves frequently asked questions
Example request:
curl --request GET \
--get "https://backend.test/api/v1/support/faqs"const url = new URL(
"https://backend.test/api/v1/support/faqs"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"faqs": [
{
"id": "faq_123",
"category": "orders",
"question": "What is the volume limit?",
"answer": "The volume limit is 4 liters per order...",
"isPopular": true
}
],
"categories": [
{
"id": "orders",
"name": "Orders",
"count": 10
},
{
"id": "payment",
"name": "Payment",
"count": 8
}
]
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Get Legal Declarations
Retrieves active legal declarations sorted by order
Example request:
curl --request GET \
--get "https://backend.test/api/v1/support/legal-declarations"const url = new URL(
"https://backend.test/api/v1/support/legal-declarations"
);
fetch(url, {
method: "GET",
}).then(response => response.json());Example response (200):
{
"success": true,
"data": {
"declarations": [
{
"id": "ld_123",
"type": "warning",
"content": "Important Notice...",
"sortOrder": 1
}
]
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.Contact support
Submits a support request
Example request:
curl --request POST \
"https://backend.test/api/v1/support/contact"const url = new URL(
"https://backend.test/api/v1/support/contact"
);
fetch(url, {
method: "POST",
}).then(response => response.json());Example response (201):
{
"success": true,
"data": {
"ticketId": "tk_abc123",
"status": "open",
"createdAt": "2026-02-03T11:00:00Z",
"estimatedResponse": "24 hours"
},
"message": "Support ticket created successfully"
}
Example response (400):
{
"success": false,
"error": {
"code": "INVALID_REQUEST",
"message": "Request body validation failed"
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.order support
Submits a support request for an order
Example request:
curl --request POST \
"https://backend.test/api/v1/support/order-ticket"const url = new URL(
"https://backend.test/api/v1/support/order-ticket"
);
fetch(url, {
method: "POST",
}).then(response => response.json());Example response (201):
{
"success": true,
"data": {
"ticketId": "tk_abc123",
"status": "open",
"createdAt": "2026-02-03T11:00:00Z",
"estimatedResponse": "24 hours"
},
"message": "Support ticket created successfully"
}
Example response (400):
{
"success": false,
"error": {
"code": "INVALID_REQUEST",
"message": "Request body validation failed"
}
}
Example response (401):
{
"success": false,
"error": {
"code": "UNAUTHORIZED",
"message": "Invalid or missing authentication"
}
}
Example response (500):
{
"success": false,
"error": {
"code": "INTERNAL_ERROR",
"message": "Internal server error"
}
}
Received response:
Request failed with error:
Tip: Check that you're properly connected to the network.
If you're a maintainer of ths API, verify that your API is running and you've enabled CORS.
You can check the Dev Tools console for debugging information.