Skip to main content

Quickstart

1. Authentication

All Cronozen services authenticate through a single SSO endpoint. 
POST https://cronozen.com/api/auth/login
Content-Type: application/json

{
  "email": "user@example.com",
  "password": "your-password"
}
Response: 
{
  "token": "eyJhbGciOiJIUzI1NiIs...",
  "actor": {
    "id": "actor_123",
    "role": "ADMIN",
    "centerId": "center_456"
  }
}

2. Access a Tenant

Use the JWT token to access tenant-scoped resources: 
GET https://cronozen.com/api/centers/center_456
Authorization: Bearer eyJhbGciOiJIUzI1NiIs...

3. Multi-Tenant Context

Every API call is scoped to the authenticated actor’s center. Data isolation is enforced at the database level through scoped Prisma models. 
Actor → Center Membership → Scoped Data Access
Cross-center data access requires explicit basePrisma usage and is restricted to authorized operations only.

4. Workspace vs Center

ConceptDescription
CenterA tenant organization (rehab center, pharmacy, etc.)
WorkspaceA personal space for individual actors
Instructors have isolated workspace and center data. Parents can view data across their children’s centers.

Next Steps