⚙️Labs API

Overview

The Programmatic File Upload API allows developers to automate file uploads to Molecule Labs datarooms without requiring browser-based user interaction. This enables integration with automated workflows, data pipelines, CI/CD systems, and external applications.

Use Cases

Automated Data Pipelines: Schedule regular data synchronization from research systems
CI/CD Integration: Automatically publish build artifacts and test results
External System Integration: Connect third-party tools and platforms to your Lab
Batch Operations: Upload multiple files programmatically
Monitoring & Alerting: Automated upload of logs and metrics

Ready for Production: This API is production-ready and actively used by projects for automated data management. To request API access, please join our Discord community and reach out to our team.

Authentication

The Labs API requires two authentication headers for all requests:

API Key - For general API authentication
Service Token - For lab-specific access control

Obtaining API Key and Service Token

To obtain access credentials:

Join our Discord community
Contact the Molecule team and provide:
- Your wallet address (will be linked to the service token)
- Intended use case / service name
- Which lab/dataroom you need access to
- Desired token expiration period
The team will generate and provide you with:
- API Key - Used for all Molecule APIs
- Service Token (JWT string) - Grants access to specific lab
- Token ID - For management operations

Using Your Credentials

Both headers are required for all Labs API requests:

x-api-key: YOUR_API_KEY
X-Service-Token: YOUR_SERVICE_TOKEN

Why two tokens?

API Key: Authenticates you as a valid Molecule API user
Service Token: Identifies which specific lab/dataroom you have access to

Security Warnings:

Service tokens are shown only once during generation - store them securely immediately
Never commit tokens or API keys to version control
Never log credentials in application logs
Store in environment variables or secure secret management systems
Rotate tokens regularly (quarterly recommended)

API Endpoints

The Programmatic File Upload API uses a 3-step workflow:

API Base URL

Production: https://production.graphql.api.molecule.xyz/graphql
Staging:    https://staging.graphql.api.molecule.xyz/graphql

Step 1: Initiate File Upload

Initiates the upload process and returns a presigned URL for direct file upload.

GraphQL Mutation:

mutation InitiateFileUpload(
  $ipnftUid: String!
  $contentType: String!
  $contentLength: Int!
) {
  initiateCreateOrUpdateFileV2(
    ipnftUid: $ipnftUid
    contentType: $contentType
    contentLength: $contentLength
  ) {
    uploadToken
    uploadUrl
    uploadUrlExpiry
    method
    headers {
      key
      value
    }
    isSuccess
    error {
      message
      code
      retryable
    }
  }
}

Parameters:

Parameter

Type

Required

Description

ipnftUid

String

Yes

IP-NFT unique identifier in format contractAddress_tokenId (e.g., 0xcaD...1_37)

contentType

String

Yes

MIME type of the file (e.g., application/pdf, image/png)

contentLength

Int

Yes

File size in bytes

Example Request (curl):

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "mutation InitiateFileUpload($ipnftUid: String!, $contentType: String!, $contentLength: Int!) { initiateCreateOrUpdateFileV2(ipnftUid: $ipnftUid, contentType: $contentType, contentLength: $contentLength) { uploadToken uploadUrl uploadUrlExpiry method headers { key value } isSuccess error { message code retryable } } }",
    "variables": {
      "ipnftUid": "0xcaD88677CA87a7815728C72D74B4ff4982d54Fc1_37",
      "contentType": "application/pdf",
      "contentLength": 381846
    }
  }'

Success Response:

{
  "data": {
    "initiateCreateOrUpdateFileV2": {
      "uploadToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
      "uploadUrl": "https://s3.amazonaws.com/bucket/path?signature=...",
      "uploadUrlExpiry": "2024-01-15T10:45:00.000Z",
      "method": "PUT",
      "headers": [
        {
          "key": "Content-Type",
          "value": "application/pdf"
        }
      ],
      "isSuccess": true,
      "error": null
    }
  }
}

Step 2: Upload File to Storage

Upload the file directly to the presigned URL returned in Step 1.

Example Request (curl):

curl -X PUT "UPLOAD_URL_FROM_STEP_1" \
  -H "Content-Type: application/pdf" \
  --data-binary @your-file.pdf

Example Request (JavaScript):

const uploadHeaders = {};
headers.forEach((h) => {
  uploadHeaders[h.key] = h.value;
});

const uploadResponse = await fetch(uploadUrl, {
  method: "PUT",
  headers: uploadHeaders,
  body: fileBuffer,
});

if (!uploadResponse.ok) {
  throw new Error(`Upload failed: ${uploadResponse.statusText}`);
}

Step 3: Finish File Upload

Completes the upload process and registers the file in the dataroom.

GraphQL Mutation:

mutation FinishFileUpload(
  $ipnftUid: String!
  $uploadToken: String!
  $path: String
  $ref: String
  $accessLevel: String!
  $changeBy: String!
  $description: String
  $tags: [String!]
  $categories: [String!]
  $contentText: String
) {
  finishCreateOrUpdateFileV2(
    ipnftUid: $ipnftUid
    uploadToken: $uploadToken
    path: $path
    ref: $ref
    accessLevel: $accessLevel
    changeBy: $changeBy
    description: $description
    tags: $tags
    categories: $categories
    contentText: $contentText
  ) {
    datasetId
    contentHash
    version
    isSuccess
    message
    error {
      message
      code
      retryable
    }
  }
}

Parameters:

Parameter

Type

Required

Description

ipnftUid

String

Yes

Same IP-NFT identifier used in Step 1

uploadToken

String

Yes

Token received from Step 1

path

String

No*

File name for NEW files (e.g., research-data.pdf)

ref

String

No*

Dataset ID for NEW VERSIONS of existing files

accessLevel

String

Yes

File visibility: PUBLIC, HOLDERS, or ADMIN

changeBy

String

Yes

Wallet address of user making the change

description

String

Optional file description

Update File Metadata

Update file metadata (description, tags, categories, access level) without creating a new version.

GraphQL Mutation:

mutation UpdateFileMetadata(
  $ipnftUid: String!
  $ref: String!
  $accessLevel: String!
  $description: String
  $tags: [String!]
  $categories: [String!]
  $contentText: String
) {
  updateFileMetadataV2(
    ipnftUid: $ipnftUid
    ref: $ref
    accessLevel: $accessLevel
    description: $description
    tags: $tags
    categories: $categories
    contentText: $contentText
  ) {
    ref
    isSuccess
    message
    error {
      message
      code
      retryable
    }
  }
}

Parameters:

Parameter

Type

Required

Description

ipnftUid

String

Yes

IP-NFT unique identifier

ref

String

Yes

File reference (DID) from finishCreateOrUpdateFileV2 response

accessLevel

String

Yes

File visibility: PUBLIC, HOLDERS, or ADMIN

description

String

Updated file description

Delete File

Remove a file from the dataroom permanently.

GraphQL Mutation:

mutation DeleteFile($ipnftUid: String!, $path: String!, $changeBy: String!) {
  deleteDataRoomFileV2(ipnftUid: $ipnftUid, path: $path, changeBy: $changeBy) {
    ipnftUid
    filePath
    isSuccess
    error {
      message
      code
      retryable
    }
  }
}

Parameters:

Parameter

Type

Required

Description

ipnftUid

String

Yes

IP-NFT unique identifier

path

String

Yes

File path to delete

changeBy

String

Yes

Wallet address making the deletion

Warning: This is a destructive operation. The file will be permanently deleted from the dataroom and cannot be recovered.

Example Request:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "mutation DeleteFile($ipnftUid: String!, $path: String!, $changeBy: String!) { deleteDataRoomFileV2(ipnftUid: $ipnftUid, path: $path, changeBy: $changeBy) { ipnftUid filePath isSuccess error { message } } }",
    "variables": {
      "ipnftUid": "0xcaD88677CA87a7815728C72D74B4ff4982d54Fc1_37",
      "path": "old-data.pdf",
      "changeBy": "0x1234567890123456789012345678901234567890"
    }
  }'

Create Announcement

Create project announcements to share updates with your community.

GraphQL Mutation:

mutation CreateAnnouncement(
  $ipnftUid: String!
  $headline: String!
  $body: String!
  $attachments: [String!]
) {
  createAnnouncementV2(
    ipnftUid: $ipnftUid
    headline: $headline
    body: $body
    attachments: $attachments
  ) {
    isSuccess
    message
    error {
      message
      code
      retryable
    }
  }
}

Parameters:

Parameter

Type

Required

Description

ipnftUid

String

Yes

IP-NFT unique identifier

headline

String

Yes

Announcement title/headline

body

String

Yes

Announcement body (supports Markdown)

attachments

[String]

Array of file DIDs to attach to the announcement

Example Request:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "mutation CreateAnnouncement($ipnftUid: String!, $headline: String!, $body: String!, $attachments: [String!]) { createAnnouncementV2(ipnftUid: $ipnftUid, headline: $headline, body: $body, attachments: $attachments) { isSuccess message error { message } } }",
    "variables": {
      "ipnftUid": "0xcaD88677CA87a7815728C72D74B4ff4982d54Fc1_37",
      "headline": "Research Milestone Achieved",
      "body": "We have completed Phase 2 trials with promising results.",
      "attachments": ["did:kamu:fed01..."]
    }
  }'

Querying Projects and Files

Query operations for browsing projects, viewing files, and checking activity.

List All Projects

Get all IP-NFT projects available to you.

GraphQL Query:

query ListProjects {
  projectsV2 {
    ipnftUid
    ipnftSymbol
    ipnftAddress
    ipnftTokenId
    systemTime
    eventTime
    account {
      accountName
    }
    dataRoom {
      id
      alias
      status
    }
  }
}

Example Request:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "query { projectsV2 { ipnftUid ipnftSymbol dataRoom { id alias } } }"
  }'

Get Single Project with Files

Retrieve complete details for a specific project including all files.

GraphQL Query:

query GetProject($ipnftUid: ID!) {
  projectWithDataRoomAndFilesV2(ipnftUid: $ipnftUid) {
    ipnftUid
    ipnftSymbol
    dataRoom {
      id
      alias
      files {
        did
        path
        version
        contentType
        accessLevel
        description
        tags
        categories
        downloadUrl
      }
    }
  }
}

Example Request:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "query GetProject($ipnftUid: ID!) { projectWithDataRoomAndFilesV2(ipnftUid: $ipnftUid) { ipnftUid ipnftSymbol dataRoom { id files { path contentType accessLevel tags } } } }",
    "variables": {
      "ipnftUid": "0xcaD88677CA87a7815728C72D74B4ff4982d54Fc1_37"
    }
  }'

Get File by Path

Retrieve a specific file using IP-NFT UID and file path.

GraphQL Query:

query GetFile($ipnftUid: String!, $path: String!) {
  dataRoomFileV2(ipnftUid: $ipnftUid, path: $path) {
    did
    path
    version
    contentType
    accessLevel
    description
    tags
    categories
    contentText
    downloadUrl
    downloadUrlExpiry
  }
}

Example Request:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "query GetFile($ipnftUid: String!, $path: String!) { dataRoomFileV2(ipnftUid: $ipnftUid, path: $path) { did path contentType accessLevel downloadUrl } }",
    "variables": {
      "ipnftUid": "0xcaD88677CA87a7815728C72D74B4ff4982d54Fc1_37",
      "path": "research-data.pdf"
    }
  }'

Project Activity Feed

Get activity timeline for a specific project including file events and announcements.

GraphQL Query:

query GetActivity($ipnftUid: ID!, $page: Int, $perPage: Int) {
  projectActivityV2(ipnftUid: $ipnftUid, page: $page, perPage: $perPage) {
    pageInfo {
      hasNextPage
      hasPreviousPage
      currentPage
      totalPages
    }
    nodes {
      __typename
      ... on ProjectEventFileAddedV2 {
        entry {
          ref
        }
      }
      ... on ProjectEventAnnouncementV2 {
        announcement {
          id
          headline
          body
          systemTime
          changeBy
          attachments {
            id
            did
            path
            name
            contentType
            accessLevel
          }
        }
      }
    }
  }
}

⚠️ Breaking Change: Announcement attachments changed from [String!]! (array of DIDs) to [DataRoomFile!]! (array of file objects). This enables querying file metadata directly without separate API calls.

Example Request:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "query GetActivity($ipnftUid: ID!, $page: Int) { projectActivityV2(ipnftUid: $ipnftUid, page: $page, perPage: 20) { pageInfo { hasNextPage currentPage totalPages } nodes { __typename ... on ProjectEventAnnouncementV2 { announcement { headline attachments { did path contentType } } } } } }",
    "variables": {
      "ipnftUid": "0xcaD88677CA87a7815728C72D74B4ff4982d54Fc1_37",
      "page": 0
    }
  }'

Performance Note: Attachment fields in projectActivityV2 are limited to essential display fields (did, path, name, contentType, accessLevel) for optimal performance. For full attachment metadata including downloadUrl and encryption details, use projectAnnouncementsV2 instead.

Project Announcements (Dedicated Endpoint)

Get announcements for a specific project with full attachment details. More efficient than projectActivityV2 when you only need announcements.

GraphQL Query:

query GetProjectAnnouncements($ipnftUid: String!, $page: Int, $perPage: Int) {
  projectAnnouncementsV2(ipnftUid: $ipnftUid, page: $page, perPage: $perPage) {
    totalCount
    pageInfo {
      hasNextPage
      hasPreviousPage
      currentPage
      totalPages
    }
    nodes {
      id
      headline
      body
      systemTime
      eventTime
      changeBy
      project {
        ipnftUid
        ipnftSymbol
        ipnftAddress
        ipnftTokenId
      }
      attachments {
        id
        did
        path
        name
        contentType
        accessLevel
        version
        contentHash
        description
        categories
        tags
        downloadUrl
        downloadUrlExpiry
        encryptionMetadata {
          dataToEncryptHash
          encryptedBy
          chain
          litNetwork
        }
      }
    }
  }
}

Example Request:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "query GetProjectAnnouncements($ipnftUid: String!, $page: Int, $perPage: Int) { projectAnnouncementsV2(ipnftUid: $ipnftUid, page: $page, perPage: $perPage) { totalCount pageInfo { hasNextPage currentPage } nodes { headline body attachments { did path contentType downloadUrl } } } }",
    "variables": {
      "ipnftUid": "0xcaD88677CA87a7815728C72D74B4ff4982d54Fc1_37",
      "page": 0,
      "perPage": 20
    }
  }'

Use Cases:

Announcement detail pages requiring full file metadata
Download links for announcement attachments
Encrypted file access with Lit Protocol
Projects with many announcements (efficient pagination)

All Announcements (Global Feed)

Get all announcements across all projects.

GraphQL Query:

query GetAllAnnouncements($page: Int, $perPage: Int) {
  activitiesV2(page: $page, perPage: $perPage) {
    isSuccess
    announcements {
      id
      headline
      body
      systemTime
      project {
        ipnftUid
        ipnftSymbol
      }
      attachments {
        id
        did
        path
        name
        contentType
        accessLevel
      }
    }
  }
}

Note: Attachment fields in activitiesV2 are limited for performance. Use projectAnnouncementsV2 for full attachment metadata including downloadUrl.

Searching Labs

Perform semantic search across all projects, files, and announcements in the Labs ecosystem.

GraphQL Query:

query SearchLabs(
  $prompt: String!
  $filters: SearchLabsFilters
  $page: Int
  $perPage: Int
) {
  searchLabs(
    prompt: $prompt
    filters: $filters
    page: $page
    perPage: $perPage
  ) {
    nodes {
      __typename
      ... on SearchLabsFileHit {
        entry {
          project {
            ipnftUid
            ipnftSymbol
          }
          path
          file {
            did
            contentType
            accessLevel
            description
            tags
            categories
            downloadUrl
          }
        }
      }
      ... on SearchLabsAnnouncementHit {
        announcement {
          id
          headline
          body
          systemTime
          attachments {
            id
            did
            path
            name
            contentType
            accessLevel
          }
        }
        project {
          ipnftUid
          ipnftSymbol
        }
      }
    }
    totalCount
    pageInfo {
      hasNextPage
      hasPreviousPage
      currentPage
      totalPages
    }
  }
}

Parameters:

Parameter

Type

Required

Description

prompt

String

Yes

Search query text

filters

SearchLabsFilters

Filter criteria

page

Int

Page number (default: 0)

perPage

Int

Results per page (default: 10)

Available Filters:

Filter

Type

Description

byIpnftUids

[String!]

Filter by specific project UIDs

byTags

[String!]

Filter files by tags

byCategories

[String!]

Filter files by categories

byAccessLevels

[String!]

Filter files by access level (PUBLIC, HOLDERS, ADMIN)

byKinds

[String!]

Filter by result type

Example - Basic Search:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "query SearchLabs($prompt: String!, $page: Int, $perPage: Int) { searchLabs(prompt: $prompt, page: $page, perPage: $perPage) { nodes { __typename ... on SearchLabsFileHit { entry { project { ipnftUid ipnftSymbol } path file { contentType description tags } } } ... on SearchLabsAnnouncementHit { announcement { headline body } project { ipnftSymbol } } } totalCount pageInfo { hasNextPage currentPage totalPages } } }",
    "variables": {
      "prompt": "cancer research",
      "page": 0,
      "perPage": 10
    }
  }'

Example - Filtered Search:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'x-api-key: YOUR_API_KEY' \
  -H 'X-Service-Token: YOUR_SERVICE_TOKEN' \
  -d '{
    "query": "query SearchLabs($prompt: String!, $filters: SearchLabsFilters) { searchLabs(prompt: $prompt, filters: $filters) { nodes { __typename ... on SearchLabsFileHit { entry { path file { tags accessLevel } } } } totalCount } }",
    "variables": {
      "prompt": "experimental data",
      "filters": {
        "byAccessLevels": ["PUBLIC"],
        "byTags": ["research", "validated"]
      }
    }
  }'

Understanding Results:

Search results are returned as a union type. Use the __typename field to determine result type:

SearchLabsFileHit: File search result
- Access via: entry.file
- Contains: file metadata, tags, categories, download URL
SearchLabsAnnouncementHit: Announcement search result
- Access via: announcement
- Contains: headline, body, project reference, typed attachments (file objects)

JavaScript Example:

const searchResults = await fetch(apiUrl, {
  method: "POST",
  headers: {
    "Content-Type": "application/json",
    "x-api-key": process.env.API_KEY,
    "X-Service-Token": process.env.SERVICE_TOKEN,
  },
  body: JSON.stringify({
    query: `query SearchLabs($prompt: String!) {
      searchLabs(prompt: $prompt) {
        nodes {
          __typename
          ... on SearchLabsFileHit {
            entry {
              path
              file { description tags }
            }
          }
          ... on SearchLabsAnnouncementHit {
            announcement {
              headline
              attachments {
                did
                path
                contentType
                accessLevel
              }
            }
          }
        }
        totalCount
      }
    }`,
    variables: { prompt: "latest results" },
  }),
});

const { nodes, totalCount } = (await searchResults.json()).data.searchLabs;

// Handle different result types
nodes.forEach((node) => {
  if (node.__typename === "SearchLabsFileHit") {
    console.log("File:", node.entry.path);
  } else if (node.__typename === "SearchLabsAnnouncementHit") {
    console.log("Announcement:", node.announcement.headline);
    // NEW: Attachments are now full file objects
    node.announcement.attachments.forEach((file) => {
      console.log("  Attachment:", file.path, file.contentType);
    });
  }
});

Complete Example

Here's a complete Node.js example demonstrating the full 3-step workflow:

#!/usr/bin/env node

const fs = require("fs");
const fetch = require("node-fetch");

async function uploadFileToLabs(filePath, ipnftUid, serviceToken) {
  const apiUrl = "https://production.graphql.api.molecule.xyz/graphql";
  const fileBuffer = fs.readFileSync(filePath);
  const filename = require("path").basename(filePath);
  const fileSize = fs.statSync(filePath).size;

  try {
    // Step 1: Initiate upload
    console.log("Step 1: Initiating file upload...");
    const initiateResponse = await fetch(apiUrl, {
      method: "POST",
      headers: {
        "Content-Type": "application/json",
        "x-api-key": process.env.API_KEY,
        "X-Service-Token": serviceToken,
      },
      body: JSON.stringify({
        query: `
          mutation InitiateFileUpload($ipnftUid: String!, $contentType: String!, $contentLength: Int!) {
            initiateCreateOrUpdateFileV2(
              ipnftUid: $ipnftUid
              contentType: $contentType
              contentLength: $contentLength
            ) {
              uploadToken
              uploadUrl
              method
              headers { key value }
              isSuccess
              error { message }
            }
          }
        `,
        variables: {
          ipnftUid,
          contentType: "application/octet-stream",
          contentLength: fileSize,
        },
      }),
    });

    const initiateResult = await initiateResponse.json();
    if (!initiateResult.data?.initiateCreateOrUpdateFileV2?.isSuccess) {
      throw new Error(
        initiateResult.data?.initiateCreateOrUpdateFileV2?.error?.message ||
          "Failed to initiate upload",
      );
    }

    const { uploadToken, uploadUrl, headers } =
      initiateResult.data.initiateCreateOrUpdateFileV2;
    console.log("✅ Upload initiated");

    // Step 2: Upload to presigned URL
    console.log("Step 2: Uploading file to storage...");
    const uploadHeaders = {};
    headers?.forEach((h) => {
      uploadHeaders[h.key] = h.value;
    });

    const uploadResponse = await fetch(uploadUrl, {
      method: "PUT",
      headers: uploadHeaders,
      body: fileBuffer,
    });

    if (!uploadResponse.ok) {
      throw new Error(`Upload failed: ${uploadResponse.statusText}`);
    }
    console.log("✅ File uploaded to storage");

    // Step 3: Finish upload
    console.log("Step 3: Finalizing upload...");
    const finishResponse = await fetch(apiUrl, {
      method: "POST",
      headers: {
        "Content-Type": "application/json",
        "x-api-key": process.env.API_KEY,
        "X-Service-Token": serviceToken,
      },
      body: JSON.stringify({
        query: `
          mutation FinishFileUpload(
            $ipnftUid: String!
            $uploadToken: String!
            $path: String!
            $accessLevel: String!
            $changeBy: String!
          ) {
            finishCreateOrUpdateFileV2(
              ipnftUid: $ipnftUid
              uploadToken: $uploadToken
              path: $path
              accessLevel: $accessLevel
              changeBy: $changeBy
            ) {
              datasetId
              isSuccess
              message
              error { message }
            }
          }
        `,
        variables: {
          ipnftUid,
          uploadToken,
          path: filename,
          accessLevel: "PUBLIC",
          changeBy: process.env.WALLET_ADDRESS,
        },
      }),
    });

    const finishResult = await finishResponse.json();
    if (!finishResult.data?.finishCreateOrUpdateFileV2?.isSuccess) {
      throw new Error(
        finishResult.data?.finishCreateOrUpdateFileV2?.error?.message ||
          "Failed to finish upload",
      );
    }

    console.log("🎉 File upload completed successfully!");
    console.log(
      "Dataset ID:",
      finishResult.data.finishCreateOrUpdateFileV2.datasetId,
    );

    return {
      success: true,
      datasetId: finishResult.data.finishCreateOrUpdateFileV2.datasetId,
    };
  } catch (error) {
    console.error("❌ Upload failed:", error.message);
    throw error;
  }
}

// Usage
if (require.main === module) {
  const filePath = process.argv[2];
  const ipnftUid = process.argv[3];
  const serviceToken = process.env.SERVICE_TOKEN;

  if (!filePath || !ipnftUid || !serviceToken) {
    console.error(
      'Usage: SERVICE_TOKEN="token" WALLET_ADDRESS="0x..." node upload.js <file> <ipnft-uid>',
    );
    process.exit(1);
  }

  uploadFileToLabs(filePath, ipnftUid, serviceToken);
}

module.exports = { uploadFileToLabs };

Usage:

API_KEY="your-api-key" SERVICE_TOKEN="your-service-token" WALLET_ADDRESS="0x..." node upload.js data.pdf 0xcaD88677CA87a7815728C72D74B4ff4982d54Fc1_37

Service Token Management

Obtaining Tokens

Service tokens must be requested from the Molecule team (see Authentication section above).

Extending Token Expiration

You can extend your service token's expiration using the extendServiceToken mutation:

mutation ExtendServiceToken($tokenId: String!, $expiresIn: String!) {
  extendServiceToken(tokenId: $tokenId, expiresIn: $expiresIn) {
    token
    tokenId
    expiresAt
    isSuccess
    message
  }
}

Parameters:

Parameter

Type

Description

tokenId

String

Token ID provided when token was generated

expiresIn

String

New duration (e.g., "30d", "720h", "90d")

Example:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'X-Service-Token: YOUR_CURRENT_TOKEN' \
  -d '{
    "query": "mutation ExtendServiceToken($tokenId: String!, $expiresIn: String!) { extendServiceToken(tokenId: $tokenId, expiresIn: $expiresIn) { token tokenId expiresAt isSuccess message } }",
    "variables": {
      "tokenId": "your-token-id",
      "expiresIn": "90d"
    }
  }'

Important: Extension returns a new JWT token - update your stored token accordingly.

Revoking Tokens

Revoke a service token immediately (e.g., if compromised):

mutation RevokeServiceToken($tokenId: String!) {
  revokeServiceToken(tokenId: $tokenId) {
    tokenId
    isSuccess
    message
    revokedAt
  }
}

Example:

curl -X POST https://production.graphql.api.molecule.xyz/graphql \
  -H 'Content-Type: application/json' \
  -H 'X-Service-Token: YOUR_CURRENT_TOKEN' \
  -d '{
    "query": "mutation RevokeServiceToken($tokenId: String!) { revokeServiceToken(tokenId: $tokenId) { tokenId isSuccess message revokedAt } }",
    "variables": {
      "tokenId": "your-token-id"
    }
  }'

Error Handling

All API responses follow a consistent error format:

Error Response Structure

{
  "data": {
    "initiateCreateOrUpdateFileV2": {
      "isSuccess": false,
      "error": {
        "message": "Error description",
        "code": "ERROR_CODE",
        "retryable": true
      }
    }
  }
}

Common Error Codes

Status Code

Error

Description

401

Unauthorized

Missing or invalid service token

403

Forbidden

Service token does not have access to the specified IP-NFT

400

Bad Request

Invalid parameters (e.g., missing ipnftUid, invalid contentType)

404

Not Found

IP-NFT or dataroom not found

413

Payload Too Large

File exceeds size limits

500

Internal Server Error

Server error - check if retryable and try again

Troubleshooting

"Missing service token" error:

Ensure X-Service-Token header is included in requests
Verify token is not empty or malformed

"Service does not have access to IPNFT" error:

Verify your wallet address (linked to service token) has admin access to the IP-NFT/dataroom
Check that the ipnftUid format is correct: contractAddress_tokenId

"Token expired" error:

Request a new token from the Molecule team, or
Use extendServiceToken mutation to extend expiration

Upload to presigned URL fails:

Ensure binary file upload (use --data-binary in curl)
Verify headers match those returned in Step 1
Check that presigned URL hasn't expired (expires after ~15 minutes)

"File not found" error (updateFileMetadataV2, deleteDataRoomFileV2):

Verify the file ref (DID) or path is correct
Check that the file exists in the specified dataroom
Ensure you have access to the dataroom

"Invalid search filters" error (searchLabs):

Verify filter values match expected types (arrays of strings)
Check that access level values are: PUBLIC, HOLDERS, or ADMIN
Ensure ipnftUid format is correct if using byIpnftUids filter

File Requirements & Limits

Storage Limits

Default Limit: 5GB per lab/project
Custom Limits: Can be increased upon request - contact the Molecule team

Supported File Types

All file types are supported
Common types: PDF, PNG, JPEG, CSV, JSON, ZIP, etc.

Access Levels

Level

Description

PUBLIC

Visible to anyone with access to the project

HOLDERS

Visible only to IP Token (IPT) holders

ADMIN

Visible only to project administrators

Optional Metadata

Enhance file discoverability with optional metadata:

description: Human-readable description of the file
tags: Array of tags for categorization (e.g., ["research", "q4-2024"])
categories: Array of categories for organization (e.g., ["data", "results"])
contentText: Searchable text content for full-text search

Advanced: Encrypted File Upload

For files requiring client-side encryption, you can include encryption metadata using the Lit Protocol.

Encryption Metadata Parameter

$encryptionMetadata: EncryptionMetadataInput

Structure:

{
  "encryptionMetadata": {
    "dataToEncryptHash": "0xabc123...",
    "accessControlConditions": "[{...}]",
    "encryptedBy": "0x1234567890123456789012345678901234567890",
    "encryptedAt": "2024-01-15T10:30:00.000Z",
    "chain": "ethereum",
    "litSdkVersion": "3.0.0",
    "litNetwork": "datil-test",
    "templateName": "standard-access-control",
    "contractVersion": "1.0.0"
  }
}

When to Use Encryption:

Sensitive research data requiring access control
Compliance requirements for data protection
Conditional access based on token ownership

For more information about Lit Protocol encryption, visit the Lit Protocol documentation.

Best Practices

Token Security

Never commit tokens to version control (add to .gitignore)
Use environment variables to store tokens
Rotate tokens regularly (quarterly recommended)
Use secrets management systems in production (AWS Secrets Manager, HashiCorp Vault, etc.)
Revoke immediately if a token is compromised

Storage Management

Monitor your 5GB storage limit per project
Organize files with meaningful names and metadata
Use categories and tags for easy file discovery
Clean up old or unnecessary files regularly

Metadata Best Practices

Use descriptive tags: ["experiment-1", "2024-q4", "preliminary"]
Organize with categories: ["raw-data", "analysis", "results"]
Add descriptions: Help collaborators understand file contents
Include searchable text (contentText): Enables full-text search via searchLabs
Update metadata as needed: Use updateFileMetadataV2 to refine tags and descriptions without re-uploading files

Access Control

Use ADMIN for sensitive internal documents
Use HOLDERS for IPT holder-exclusive content
Use PUBLIC for community-facing data
Review access levels regularly as your project evolves

Search and Discovery

Use contentText: Populate contentText field when uploading files to enable full-text search
Tag consistently: Use consistent tag names across files for better filtering
Filter strategically: Combine filters (tags + access levels) to narrow search results
Test search queries: Use searchLabs to verify your files are discoverable

Deprecated Operations

The following V1 operations have been replaced by improved V2 versions. V1 operations are deprecated and will be removed in a future release.

Deprecated Queries

V1 Query

V2 Replacement

Key Changes

projects

projectsV2

Added systemTime and eventTime fields

projectWithDataRoomAndFiles

projectWithDataRoomAndFilesV2

Enhanced temporal tracking

dataRoomFile(did: String!)

dataRoomFileV2(ipnftUid, path)

Query by IPNFT UID + path instead of DID

projectActivity

projectActivityV2

Improved activity feed structure

activities

activitiesV2

Enhanced announcement structure

Deprecated Mutations

V1 Mutation

V2 Replacement

Key Changes

initiateFileUpload

initiateCreateOrUpdateFileV2

Simplified parameters, no dataset alias needed

finishFileUpload

finishCreateOrUpdateFileV2

Added metadata support (tags, categories, contentText)

deleteDataRoomFile

deleteDataRoomFileV2

Streamlined parameters

createAnnouncement

createAnnouncementV2

Breaking: Removed moleculeAccessLevel parameter

Migration Guide

Breaking Change 1: createAnnouncement → createAnnouncementV2

The moleculeAccessLevel parameter has been removed in V2:

# V1 (Deprecated)
- createAnnouncement(
-   ipnftUid: "...",
-   headline: "...",
-   body: "...",
-   attachments: [...],
-   moleculeAccessLevel: "PUBLIC"  ❌ Removed in V2
- )

# V2 (Current)
+ createAnnouncementV2(
+   ipnftUid: "...",
+   headline: "...",
+   body: "...",
+   attachments: [...]  ✓ Access level no longer needed
+ )

Breaking Change 2: Announcement Attachments Type Change

⚠️ BREAKING CHANGE: Announcement attachments changed from string arrays to full file objects.

Previous Structure (V1):

{
  "announcement": {
    "attachments": ["did:kamu:fed01...", "did:kamu:abc23..."]
  }
}

New Structure (V2):

{
  "announcement": {
    "attachments": [
      {
        "id": "file-1",
        "did": "did:kamu:fed01...",
        "path": "/research-data.pdf",
        "name": "research-data.pdf",
        "contentType": "application/pdf",
        "accessLevel": "PUBLIC"
      },
      {
        "id": "file-2",
        "did": "did:kamu:abc23...",
        "path": "/results.csv",
        "name": "results.csv",
        "contentType": "text/csv",
        "accessLevel": "HOLDERS"
      }
    ]
  }
}

Migration Required: If you query announcements via projectActivityV2, activitiesV2, searchLabs, or projectAnnouncementsV2, update your code to handle attachment objects instead of strings:

Before:

announcement.attachments.forEach((did) => {
  // Had to make separate API call to get file details
  fetchFileByDid(did).then((file) => displayFile(file));
});

After:

announcement.attachments.forEach((file) => {
  // File details already available
  displayFile(file);
  console.log(file.contentType, file.accessLevel);
});

Benefits:

✅ No additional API calls needed for file metadata
✅ Better developer experience
✅ Reduced API load
✅ Type-safe attachment handling

Field Availability by Query:

Query

Attachment Fields Available

projectActivityV2

Minimal (did, path, name, contentType, accessLevel)

activitiesV2

Minimal (did, path, name, contentType, accessLevel)

searchLabs

Minimal (did, path, name, contentType, accessLevel)

projectAnnouncementsV2

Full (includes downloadUrl, encryptionMetadata, version, etc.)

All other V1 → V2 migrations are backward-compatible with additional optional parameters in V2.

Getting Support

If you encounter any issues or have questions about the Programmatic File Upload API:

Check this documentation and troubleshooting section
Review the complete example for implementation guidance
Join our Discord community for support
Contact the Molecule Labs development team directly

Recent Updates (January 2025)

New Features

🔍 New Query: `searchLabs`

Semantic search across all IP-NFT projects, files, and announcements:

Full-text search with relevance ranking
Filter by tags, categories, access levels, project UIDs
Returns unified results (files + announcements)
Paginated results with totalCount

Benefits:

Discover content across all Labs projects
Filter by multiple criteria simultaneously
Unified search experience
Support for complex queries

See Searching Labs section for complete documentation.

📝 New Mutation: `updateFileMetadataV2`

Update file metadata without creating a new version:

Modify description, tags, categories, contentText
Update access level (PUBLIC, HOLDERS, ADMIN)
No file re-upload required
Preserves version history

Benefits:

Refine file metadata after upload
Improve searchability with updated contentText
Reorganize files with new tags/categories
Adjust access control as needed

See Update File Metadata section for complete documentation.

✨ New Query: `projectAnnouncementsV2`

Added dedicated announcements endpoint with full attachment metadata:

Fetches ONLY announcements (no file events) for better performance
Includes complete attachment details (downloadUrl, encryptionMetadata, etc.)
Efficient pagination with totalCount
Use this instead of projectActivityV2 when you only need announcements

Benefits over projectActivityV2:

Faster response times
Full attachment metadata available
Direct pagination support
No file events to filter through

📊 Pagination Enhancement: `projectActivityV2`

Added pageInfo object to projectActivityV2 results:

{
  pageInfo {
    hasNextPage
    hasPreviousPage
    currentPage
    totalPages
  }
  nodes { ... }
}

Enables proper client-side pagination with total page count.

Breaking Changes

⚠️ Announcement Attachments Type Change (IP-1025)

Affected Queries: projectActivityV2, activitiesV2, searchLabs, projectAnnouncementsV2

What Changed:

Attachments field type: [String!]! → [DataRoomFile!]!
Instead of array of DIDs, you now get full file objects

Before (Old):

"attachments": ["did:kamu:fed01...", "did:kamu:abc23..."]

After (New):

"attachments": [
  {
    "did": "did:kamu:fed01...",
    "path": "/data.pdf",
    "contentType": "application/pdf",
    "accessLevel": "PUBLIC"
  }
]

Why This Change:

✅ Eliminates need for separate API calls to resolve file details
✅ Improves developer experience
✅ Reduces API load and complexity
✅ Type-safe file handling

Migration: Update your code to access file properties directly instead of using DIDs to fetch file details:

// OLD CODE (no longer works)
announcement.attachments.forEach(async (did) => {
  const file = await fetchFile(did); // Extra API call needed
  renderFile(file);
});

// NEW CODE (current)
announcement.attachments.forEach((file) => {
  renderFile(file); // File object already has all details
});

Field Availability:

Activity queries (projectActivityV2, activitiesV2, searchLabs): Minimal fields (6 fields for performance)
Announcements query (projectAnnouncementsV2): Full fields (20+ fields including downloadUrl)

Performance Improvements

🚀 Optimized Activity Query Performance

Reduced attachment fields in activity/search queries to prevent Lambda timeouts:

Minimal Fields (Activity Queries):

Essential: id, did, path, name, contentType, accessLevel
Removed: downloadUrl, encryptionMetadata, contentText, version, contentHash, etc.

Result: Faster response times, no timeout issues

Full Fields Available: Use projectAnnouncementsV2 when you need downloadUrl, encryptionMetadata, or other detailed fields.

Internal Improvements

🔧 Path Field Consistency (IP-1352)

Fixed inconsistency where the path field differed between queries:

Now consistently uses Kamu's native path field
Improved name field priority: dataset.name → description → path-derived

Impact: More consistent file paths across all queries

Last updated: January 2025

PreviousTokenization API

Last updated 0 minutes ago

Overview

Use Cases

Authentication

Obtaining API Key and Service Token

Using Your Credentials

API Endpoints

API Base URL

Step 1: Initiate File Upload

Step 2: Upload File to Storage

Step 3: Finish File Upload

Update File Metadata

Delete File

Create Announcement

Querying Projects and Files

List All Projects

Get Single Project with Files

Get File by Path

Project Activity Feed

Project Announcements (Dedicated Endpoint)

All Announcements (Global Feed)

Searching Labs

Complete Example

Service Token Management

Obtaining Tokens

Extending Token Expiration

Revoking Tokens

Error Handling

Error Response Structure

Common Error Codes

Troubleshooting

File Requirements & Limits

Storage Limits

Supported File Types

Access Levels

Optional Metadata

Advanced: Encrypted File Upload

Encryption Metadata Parameter

Best Practices

Token Security

Storage Management

Metadata Best Practices

Access Control

Search and Discovery

Deprecated Operations

Deprecated Queries

Deprecated Mutations

Migration Guide

Breaking Change 1: createAnnouncement → createAnnouncementV2

Breaking Change 2: Announcement Attachments Type Change

Getting Support

Recent Updates (January 2025)

New Features

🔍 New Query: searchLabs

📝 New Mutation: updateFileMetadataV2

✨ New Query: projectAnnouncementsV2

📊 Pagination Enhancement: projectActivityV2

Breaking Changes

⚠️ Announcement Attachments Type Change (IP-1025)

Performance Improvements

🚀 Optimized Activity Query Performance

Internal Improvements

🔧 Path Field Consistency (IP-1352)

🔍 New Query: `searchLabs`

📝 New Mutation: `updateFileMetadataV2`

✨ New Query: `projectAnnouncementsV2`

📊 Pagination Enhancement: `projectActivityV2`