Data model
Jobs
An open role. Carries title, department, location, employment type, KI fit-profile (requirements + knockout criteria), status, and a public careers-page slug. Parent for applications.
job200Fields
Per-field validation rules. Values that violate any constraint are rejected with 400 before they reach the database.
| Field | Type | Constraints |
|---|---|---|
| slug | string | |
| tags | tags | - |
| color | string | max length 24 |
| title | string | max length 200 |
| public | bool | - |
| remote | enum | enum onsite | hybrid | remote |
| status | enum | enum draft | open | paused | closed | filled |
| country | string | max length 80 |
| summary | string | max length 600 |
| benefits | string | max length 4000 |
| currency | string | max length 8 |
| language | string | max length 16 |
| location | string | max length 120 |
| team_ids | list | - |
| closed_at | string | max length 32 |
| headcount | number | - |
| opened_at | string | max length 32 |
| seniority | enum | enum junior | mid | senior | lead | principal |
| department | string | max length 120 |
| salary_max | number | - |
| salary_min | number | - |
| description | string | max length 16000 |
| nice_to_have | string | max length 4000 |
| requirements | string | max length 8000 |
| employment_type | enum | enum full_time | part_time | internship | working_student | freelance | contract |
| ai_screen_prompt | string | max length 4000 |
| responsibilities | string | max length 8000 |
| ai_screen_enabled | bool | - |
| hiring_manager_id | string | max length 64 |
| salary_visibility | enum | enum public | team | private |
| target_close_date | string | max length 32 |
| external_apply_url | url | max length 2048 |
| knockout_questions | list | - |
| screening_questions | list | - |
Mutability
Which fields can you send, and when? Anything without a marker is server-managed - sending it isn't an error, it's silently ignored.
| Field | Create | Patch |
|---|---|---|
| slug | ||
| tags | ||
| color | ||
| title | ||
| public | ||
| remote | ||
| status | ||
| country | ||
| summary | ||
| benefits | ||
| currency | ||
| language | ||
| location | ||
| team_ids | ||
| closed_at | ||
| headcount | ||
| opened_at | ||
| seniority | ||
| department | ||
| salary_max | ||
| salary_min | ||
| description | ||
| nice_to_have | ||
| requirements | ||
| employment_type | ||
| ai_screen_prompt | ||
| responsibilities | ||
| ai_screen_enabled | ||
| hiring_manager_id | ||
| salary_visibility | ||
| target_close_date | ||
| external_apply_url | ||
| knockout_questions | ||
| screening_questions |
Fields marked create-only but not patchable are immutable after creation. Server-managed fields include id, timestamps, ownership, and status.
Filtering & sorting
Combinable on list endpoints. Repeating a filter key produces an IN clause; prefixing a sort key with - reverses direction. Example: ?status=open&status=blocked&sort=-created_at.
Filter keys
data__titledata__departmentdata__locationdata__employment_typedata__senioritydata__remotedata__publicdata__hiring_manager_iddata__tagsstatusis_archivedowned_bycreated_bySort keys
created_atupdated_atdata__titledata__opened_atdata__target_close_dateDefault: created_at
Endpoints
Each endpoint below lists its HTTP method, path, and the PAT scope it needs. Code samples cover curl, JavaScript, TypeScript, Python, Rust, Java, and WebSocket.
/xapi2/data/jobjob:listList objects
Returns a paginated list of objects you can read. Default page size is 20; pass ?limit= to change (capped per type). Use ?after=<id> for keyset pagination on created_at-sorted lists, or ?offset= for offset paging.
curl -H "Authorization: Bearer pat_…" \"https://www.ki-bewerber-management.de/xapi2/data/job?limit=20"
/xapi2/data/job/{id}job:readRead one
Returns the object by id. 404 if it does not exist or you cannot read it (the two cases are intentionally conflated).
curl -H "Authorization: Bearer pat_…" \https://www.ki-bewerber-management.de/xapi2/data/job/OBJECT_ID
/xapi2/data/jobjob:createCreate
Creates a new object. Body is a flat JSON dict of field values. Server-side fields (id, timestamps, ownership) are filled automatically; only fields listed below as creatable are read from the body.
curl -H "Authorization: Bearer pat_…" \-H "Content-Type: application/json" \-X POST https://www.ki-bewerber-management.de/xapi2/data/job \-d '{"name": "…"}'
/xapi2/data/job/{id}job:updateUpdate
Partial update. Only fields included in the body are touched; everything else is preserved. Same allow-list as create, minus the fields that are immutable post-create.
curl -H "Authorization: Bearer pat_…" \-H "Content-Type: application/json" \-X PATCH https://www.ki-bewerber-management.de/xapi2/data/job/OBJECT_ID \-d '{"name": "…"}'
/xapi2/data/job/{id}job:deleteDelete
Removes the object. It vanishes from every default list immediately and stops being returned by read / list.
curl -H "Authorization: Bearer pat_…" \-X DELETE https://www.ki-bewerber-management.de/xapi2/data/job/OBJECT_ID
Use in CLI
The same endpoints are also exposed via the KI BMS CLI. For scripts, CI, and bulk imports it's usually the faster path.
atscli job list --limit 5atscli job get <id>atscli job create --title "Hello"atscli job upsert --unique title --csv items.csvatscli job schema # fields & limits
Full command reference, profiles, CSV import, auto-retry, NDJSON streaming → /docs/cli