https://docs.test.geena.eu/user/files/index.html Files (private vault) Binary files (PDFs, images, etc.) stored in the caller’s private vault. Content is in MinIO; metadata is in PostgreSQL. Vault must be unsealed. Queries: list, get, versions Mutations: upload, delete Actual binary download is HTTP, not GraphQL: GET /user/file/:fileID/download (Bearer JWT). Hugo en https://docs.test.geena.eu/user/files/list/index.html Mon, 01 Jan 0001 00:00:00 +0000 https://docs.test.geena.eu/user/files/list/index.html user.file.list Lists files in the caller’s private vault (latest version metadata only). Auth Bearer JWT + unsealed vault. Input input FileListWhereInput { pagination: PaginationInput } GraphQL query { user { file { list { id label fileName fileSize mimeType version audit { updatedAt } } } } } curl curl -X POST https://api.test.geena.eu/graphql \ -H "Authorization: Bearer $TOKEN" \ -H "Content-Type: application/json" \ -d '{"query":"{ user { file { list { id label fileName fileSize mimeType } } } }"}' https://docs.test.geena.eu/user/files/get/index.html Mon, 01 Jan 0001 00:00:00 +0000 https://docs.test.geena.eu/user/files/get/index.html user.file.get Returns file metadata plus a short-lived download URL. Binary content is not returned inline — download it separately via the URL. Auth Bearer JWT + unsealed vault. Arguments Arg Type Description id ID! File UUID GraphQL query($id: ID!) { user { file { get(id: $id) { metadata { id label fileName fileSize mimeType version } content { downloadUrl } } } } } Response { "data": { "user": { "file": { "get": { "metadata": { "id": "a1b2...", "label": "ID scan", "fileName": "passport.pdf", "fileSize": 182344, "mimeType": "application/pdf", "version": 1 }, "content": { "downloadUrl": "/user/file/a1b2.../download" } } } } } } downloadUrl is a relative path on the API host. Append it to the base URL and call with the same Bearer token: https://docs.test.geena.eu/user/files/versions/index.html Mon, 01 Jan 0001 00:00:00 +0000 https://docs.test.geena.eu/user/files/versions/index.html user.file.versions Returns all historical versions of a file (metadata only, newest first). Auth Bearer JWT + unsealed vault. GraphQL query($id: ID!) { user { file { versions(id: $id) { id version fileName fileSize audit { updatedAt updatedBy } } } } } curl curl -X POST https://api.test.geena.eu/graphql \ -H "Authorization: Bearer $TOKEN" \ -H "Content-Type: application/json" \ -d '{ "query": "query($id: ID!) { user { file { versions(id: $id) { version fileSize audit { updatedAt } } } } }", "variables": { "id": "a1b2-..." } }' https://docs.test.geena.eu/user/files/upload/index.html Mon, 01 Jan 0001 00:00:00 +0000 https://docs.test.geena.eu/user/files/upload/index.html user.file.upload Uploads a binary file into the caller’s private vault. Content is encrypted with a vault-scoped DEK and stored in MinIO. Auth Bearer JWT + unsealed vault. Input input FileUploadInput { label: String! file: Upload! # GraphQL multipart spec } GraphQL multipart File upload uses the GraphQL multipart request spec. You send a multipart POST with three parts: https://docs.test.geena.eu/user/files/delete/index.html Mon, 01 Jan 0001 00:00:00 +0000 https://docs.test.geena.eu/user/files/delete/index.html user.file.delete Soft-deletes a file. All versions are marked deleted atomically; MinIO objects are cleaned up out of band. Auth Bearer JWT + unsealed vault. GraphQL mutation($id: ID!) { user { file { delete(id: $id) } } } Returns the deleted file’s id on success.