Introduction

Welcome to the Gencove developer docs!

Gencove is enabling users to do more with their genomic data by uploading their existing genomic data files from AncestryDNA, 23andMe, etc. and using apps built on top of the Gencove platform.

In case users do not already have their data, they can easily get it by purchasing a Gencove kit.

Developers can create apps that use genomic data in Gencove using our API. Access to invididual user data is requested by providing the user with a unique app URL: app_url.

Once access has been granted by the user, the developer only needs their API key (available in user profile) and a few simple API calls.

The data developers have access to is:

• .vcf file with imputed genotypes (using the 1000 Genomes Phase 3 reference panel)
• The original raw data file, which is either:
  • AncestryDNA, 23andMe, etc. data file
  • .bam file with raw sequencing reads (in case the user ordered a Gencove kit)

Try out the examples on the side and read on to see how you can use our API to start an app and get users on board in no-time.

Also, the full API reference for publicly available endpoints is available here: API reference

Using the API

Create an app

To create an app:

1. Create a free Gencove account on the developer website
2. Create an app by clicking “Create an new app” or going to My Apps -> Create a new app

Authentication

# API key
import requests

response = requests.get(
    'https://rest.gencove.com/welcome-api-key',
    headers={
        'Authorization': 'GENCOVE-API-KEY <your_api_key>'
    }
)

# API key
$ curl -H 'Authorization: GENCOVE-API-KEY <your_api_key>'\
    https://rest.gencove.com/welcome-api-key

The Gencove API has 2 main types of keys:

1. API key, used for programmatic access to Gencove API endpoints
   • The API is accessed by placing your API key in the Authorization header of HTTP requests: Authorization: GENCOVE-API-KEY <api_key>
2. App signing keys, used for signing the JWTs in app_urls given to users
   • Every app has a separate key

Requesting access to user data

Create app_url offline with app signing key

# Assuming PyJWT package is installed
import jwt

token = jwt.encode(
    {
        'app_id': <app_id>,
        'external_id': '<external_id>',
        'subsidy_in_cents': <subsidy>
    }, 
    '<app_signing_key>', 
    algorithm='HS256'
)

app_url = 'https://dl.gencove.com/connect/{}'.format(token)

# Assuming PyJWT Python package is installed
$ TOKEN=$(pyjwt --key=<app_signing_key> encode\
    app_id=<app_id>\
    external_id=<external_id>\
    subsidy_in_cents=<subsidy>)

$ APP_URL="https://dl.gencove.com/connect/$TOKEN"

Create app_url using Gencove API

# Assuming requests package is installed
import requests

response = requests.post(
    'https://rest.gencove.com/apps/jwt',
    headers={
        'Authorization': 'GENCOVE-API-KEY <your_api_key>'
    },
    json={
        'jwt_data': [
            {
                'app_id': <app_id>,
                'external_id': '<external_id>',
                'subsidy_in_cents': <subsidy>
            }
        ]
    }
)

app_url = response['jwt_data'][0]['href']

# Assuming cURL is installed
$ curl -H "Authorization: GENCOVE-API-KEY <your_api_key>"\
    -H "Content-Type: application/json"\
    -X POST\
    -d '{"jwt_data": [{"app_id": <app_id>, "external_id": "<external_id>", "subsidy_in_cents": <subsidy>}]}'\
    https://rest.gencove.com/apps/jwt

The developer requests access to user data by generating a unique app_url for each user and providing it to the user. Once the user visits the app_url and approves, the developer immediately gains access to the data.

Developers can generate app_urls in one of 3 ways:

1. Using the developer website, by going to My Apps -> (App name) -> Generate links
2. Offline, using standard JSON Web Token (JWT) libraries
3. Online, using a helper endpoint on the Gencove API

The structure of the app_url is: https://dl.gencove.com/connect/<JWT>

The main part of the app_url is the JWT, which contains data about the app (app_id) and a unique identifier for the user (external_id). Gencove does not enforce the uniqueness of external_id within an app.

The JWT may also contain an optional subsidy (subsidy_in_cents), which allows the developer to discount Gencove kits for users.

The JWT is signed with the app signing key, which can be obtained from the developer website under My apps -> (app name) -> Show/hide link signing key.

The app_url will take the user to the Gencove website to approve access to their data. In case the user has the Gencove app installed on their device, the app_url will act as a deeplink and open the Gencove app to complete the approval process.

app_url with continue_url

app_url_with_continue = '{}?continue_url={}'.format(app_url, continue_url)

APP_URL_WITH_CONTINUE="$APP_URL?continue_url=$CONTINUE_URL"

Developers may optionally append a continue_url parameter to the app_url, which contains a URL where Gencove directs the user once they have approved access to their data. continue_url must be URL-encoded.

It is useful attribute a unique identifier for each user in order to be able to facilitate dereferencing the user data once it becomes available. In case you do not already have a unique id scheme for users, we recommend using UUIDv4.

Webhooks

{
    "event": "app_member_join",
    "data": {
          "app_id": 1,
          "member_id": 2,
          "external_id": "member_100003",
          "subsidy_in_cents": 0,
          "participating": true,
          "jwt_log": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhcHBfaWQiOjEsImV4dGVybmFsX2lkIjoibWVtYmVyXzEwMDAwMSIsInN1YnNpZHlfaW5fY2VudHMiOjB9.TR4FVXDxdD0EL-LaHOaoOKQhv1N8UN0eYdvlt3nQ5ao"
    }
}

The developer can also define a webhook URL, where app events are submitted via HTTP POST requests. The content of the webhook contains:

1. Type of event, event
2. Data describing the event in more detail, data

Currently, there are 4 types of events:

1. app_member_join: generated when a user approves the app for access to their data by using the app_url
2. app_member_leave: generated when a user revokes access to their data via profile settings
3. app_member_rejoin: generated when a user re-approves access to their data via profile settings
4. app_member_results_ready: generated when user data becomes available when it was not available before. This webhook is only generated when the app is approved for access to user data.
5. test: generated when validating the webhook URL. If a webhook_url is defined when creating or updating an app, the Gencove backend will attempt to validate the URL by generating a HTTP POST request with this event type.

Webhooks are only active when the app is in the enabled state.

In general, user data availability (and updates) should be checked on app_member_join, app_member_rejoin and app_member_results_ready webhooks.

Listing your apps

import requests

response = requests.get(
    'https://rest.gencove.com/apps',
    headers={
        'Authorization': 'GENCOVE-API-KEY <your_api_key>'
    }
)

$ curl -H "Authorization: GENCOVE-API-KEY <your_api_key>"\
    https://rest.gencove.com/apps

Your apps can be listed with a GET HTTP request to /apps

Info about a single app

import requests

response = requests.get(
    'https://rest.gencove.com/apps/<app_id>',
    headers={
        'Authorization': 'GENCOVE-API-KEY <your_api_key>'
    }
)

response = requests.get(
    'https://rest.gencove.com/apps/<app_id>/stats',
    headers={
        'Authorization': 'GENCOVE-API-KEY <your_api_key>'
    }
)

$ curl -H "Authorization: GENCOVE-API-KEY <your_api_key>"\
    https://rest.gencove.com/apps/<app_id>

$ curl -H "Authorization: GENCOVE-API-KEY <your_api_key>"\
    https://rest.gencove.com/apps/<app_id>/stats

Data and stats for a specific app can be listed with GET HTTP requests to /apps/<app_id> and /apps/<app_id>/stats, respectively.

Listing app users

import requests

response = requests.get(
    'https://rest.gencove.com/apps/<app_id>/members',
    headers={
        'Authorization': 'GENCOVE-API-KEY <your_api_key>'
    }
)

$ curl -H "Authorization: GENCOVE-API-KEY <your_api_key>"\
    https://rest.gencove.com/apps/<app_id>/members

App users can be listed with a GET HTTP request to /apps/<app_id>/members

Info about a specific user

import requests

response = requests.get(
    'https://rest.gencove.com/apps/<app_id>/members/<member_id>',
    headers={
        'Authorization': 'GENCOVE-API-KEY <your_api_key>'
    }
)

$ curl -H "Authorization: GENCOVE-API-KEY <your_api_key>"\
    https://rest.gencove.com/apps/<app_id>/members/<member_id>

Info about a single user can be listed with a GET HTTP request to /apps/<app_id>/members/<member_id>

Accessing user genomic data

import requests

response = requests.post(
    'https://rest.gencove.com/apps/<int:app_id>/raw-data',
    headers={
        'Authorization': 'GENCOVE-API-KEY <your_api_key>'
    },
    json={
        'member_ids': [<member_id_1>, <member_id_2>, ..., <member_id_N>]
    }
)

$ curl -H "Authorization: GENCOVE-API-KEY <your_api_key>"\
    -H "Content-Type: application/json"\
    -X POST\
    -d '{"member_ids": [<member_id_1>, <member_id_2>, ..., <member_id_N>]}'\
    https://rest.gencove.com/apps/<int:app_id>/raw-data

Users’ genomic data can be accessed by POSTing a list of member_ids to /apps/<int:app_id>/raw-data .

The endpoint will return a list of objects containing the following data for each member_id:

1. member_id - Gencove member id (unique)
2. external_id - the external id provided in JWT when requesting access to user data
3. app_id - the app id
4. vcf_url_s3 - a presigned URL for downloading the imputed .vcf file
5. snp_url_s3 - a presigned URL for downloading the original AncestryDNA, 23andMe, etc. data file
6. bam_url_s3 - a presigned URL for downloading the raw .bam file (if the user got their genomic data through Gencove)
7. bai_url_s3 - a presigned URL for downloading the .bam file index
8. fastq_nongrch37_url_s3 - a presigned URL for downloading the .fastq file with non-human reads
9. ancestry_url_s3 - a presigned URL for downloading a .json file with the output of Gencove’s ancestry analysis
10. microbiome_url_s3 - a presigned URL for downloading a .json file with the output of Gencove’s microbiome analysis

The presigned download URLs expire after 2 days, but there is not a limit on the number of generated presigned URLs.

Testing environment

Developers may use the Gencove staging environment for development and testing.

The staging developer website URL is: https://app-staging.gencove.com

The staging API URL is: https://rest-staging.gencove.com

API Reference

The full API reference for publicly available endpoints is available here: API reference

Terms

We reserve the right to remove your access to our API for any reason at our sole discretion. We will provide a more detailed description of our expectations in due course. However, overall we expect that:

1. you will not mislead users into disclosing their data under false pretenses
2. you will have a clear policy on how users can opt out of your use of their data should they change their minds about sharing it with you.

FAQ

User FAQ

Support

Contact us at support@gencove.com