API walkthrough

This guide walks through how to accomplish common Braintrust use cases with the API. Each example is implemented in a particular language, for legibility, but the API itself is language-agnostic. To learn more about the API, see the full API spec.

Running an experiment

import os
from uuid import uuid4
 
import requests
 
API_URL = "https://api.braintrustdata.com/v1"
headers = {"Authorization": "Bearer " + os.environ["BRAINTRUST_API_KEY"]}
 
if __name__ == "__main__":
    # Create a project, if it does not already exist
    project = requests.post(f"{API_URL}/project", headers=headers, json={"name": "rest_test"}).json()
    print(project)
 
    # Create an experiment. This should always be new
    experiment = requests.post(
        f"{API_URL}/experiment", headers=headers, json={"name": "rest_test", "project_id": project["id"]}
    ).json()
    print(experiment)
 
    # Log some stuff
    for i in range(10):
        resp = requests.post(
            f"{API_URL}/experiment/{experiment['id']}/insert",
            headers=headers,
            json={"events": [{"id": uuid4().hex, "input": 1, "output": 2, "scores": {"accuracy": 0.5}}]},
        )
        if not resp.ok:
            raise Exception(f"Error: {resp.status_code} {resp.text}: {resp.content}")

Downloading a dataset, using pagination

// If you're self-hosting Braintrust, then use your stack's API URL, e.g.
//  https://0o71finhla.execute-api.us-east-1.amazonaws.com/api
export const BRAINTRUST_API_URL = "https://api.braintrustdata.com";
export const API_KEY = process.env.BRAINTRUST_API_KEY;
 
export async function* paginateDataset(args: {
  project: string;
  dataset: string;
  version?: string;
  // Number of rows to fetch per request. You can adjust this to be a lower number
  // if your rows are very large (e.g. several MB each).
  perRequestLimit?: number;
}) {
  const { project, dataset, version, perRequestLimit } = args;
  const headers = {
    Accept: "application/json",
    "Accept-Encoding": "gzip",
    Authorization: `Bearer ${API_KEY}`,
  };
  const fullURL = `${BRAINTRUST_API_URL}/v1/dataset?project_name=${encodeURIComponent(
    project,
  )}&dataset_name=${encodeURIComponent(dataset)}`;
  const ds = await fetch(fullURL, {
    method: "GET",
    headers,
  });
  if (!ds.ok) {
    throw new Error(
      `Error fetching dataset metadata: ${ds.status}: ${await ds.text()}`,
    );
  }
  const dsJSON = await ds.json();
  const dsMetadata = dsJSON.objects[0];
  if (!dsMetadata?.id) {
    throw new Error(`Dataset not found: ${project}/${dataset}`);
  }
 
  let cursor: string | null = null;
  while (true) {
    const body: string = JSON.stringify({
      query: {
        from: {
          op: "function",
          name: { op: "ident", name: ["dataset"] },
          args: [{ op: "literal", value: dsMetadata.id }],
        },
        select: [{ op: "star" }],
        limit: perRequestLimit,
        cursor,
      },
      fmt: "jsonl",
      version,
    });
    const response = await fetch(`${BRAINTRUST_API_URL}/btql`, {
      method: "POST",
      headers,
      body,
    });
    if (!response.ok) {
      throw new Error(
        `Error fetching rows for ${dataset}: ${
          response.status
        }: ${await response.text()}`,
      );
    }
 
    cursor =
      response.headers.get("x-bt-cursor") ??
      response.headers.get("x-amz-meta-bt-cursor");
 
    // Parse jsonl line-by-line
    const allRows = await response.text();
    const rows = allRows.split("\n");
    let rowCount = 0;
    for (const row of rows) {
      if (!row.trim()) {
        continue;
      }
      yield JSON.parse(row);
      rowCount++;
    }
 
    if (rowCount === 0) {
      break;
    }
  }
}
 
async function main() {
  for await (const row of paginateDataset({
    project: "Your project name", // Replace with your project name
    dataset: "Your dataset name", // Replace with your dataset name
    perRequestLimit: 100,
  })) {
    console.log(row);
  }
}
 
main();

Impersonating a user for a request

User impersonation is currently an experimental feature, still in development. The RBAC logic to check privileges throughout the application has not been completely rolled out, so it is not recommended to rely on this feature for production just yet.

User impersonation allows a privileged user to perform an operation on behalf of another user, using the impersonated user's identity and permissions. For example, a proxy service may wish to forward requests coming in from individual users to Braintrust without requiring each user to directly specify Braintrust credentials. The privileged service can initiate the request with its own credentials and impersonate the user so that Braintrust runs the operation with the user's permissions.

To this end, all API requests accept a header x-bt-impersonate-user, which you can set to the ID of the user to impersonate. Currently impersonating another user requires that the requesting user has specifically been granted the owner role over all organizations that the impersonated user belongs to. This check guarantees the requesting user has at least the set of permissions that the impersonated user has.

Consider the following code example for configuring ACLs and running a request with user impersonation.

// If you're self-hosting Braintrust, then use your stack's API URL, e.g.
// https://0o71finhla.execute-api.us-east-1.amazonaws.com/api
export const BRAINTRUST_API_URL = "https://api.braintrustdata.com";
export const API_KEY = process.env.BRAINTRUST_API_KEY;
 
async function getOwnerRoleId() {
  const roleResp = await fetch(
    `${BRAINTRUST_API_URL}/v1/role?${new URLSearchParams({ role_name: "owner" })}`,
    method: "GET",
    headers: {
        Authorization: `Bearer ${API_KEY}`,
    }
  );
  if (!roleResp.ok) {
    throw new Error(await roleResp.text());
  }
  const roles = await roleResp.json();
  return roles.objects[0].id;
}
 
async function getUserOrgInfo(orgName: string): { user_id: string; org_id: string } {
  const meResp = await fetch(
    `${BRAINTRUST_API_URL}/api/self/me`,
    method: "POST",
    headers: {
        Authorization: `Bearer ${API_KEY}`,
    },
  );
  if (!meResp.ok) {
    throw new Error(await meResp.text());
  }
  const meInfo = await meResp.json();
  orgInfo = meInfo.organizations.find((x) => x.name === orgName);
  if (!orgInfo) {
    throw new Error(`No organization found with name ${orgName}`);
  }
  return { user_id: meInfo.id, org_id: orgInfo.id };
}
 
async function grantOwnershipRole(orgName: string) {
  const ownerRoleId = await getOwnerRoleId();
  const { user_id, org_id } = await getUserOrgInfo(orgName);
 
  // Grant an 'owner' ACL to the requesting user on the organization. Granting
  // this ACL requires the user to have `create_acls` permission on the org, which
  // means they must already be an owner of the org indirectly.
  const aclResp = await fetch(
    `${BRAINTRUST_API_URL}/v1/acl`,
    method: "POST",
    headers: {
        Authorization: `Bearer ${API_KEY}`,
        "Content-Type": "application/json",
    },
    body: JSON.stringify({
        object_type: "organization",
        object_id: org_id,
        user_id,
        role_id: ownerRoleId,
    }),
  );
  if (!aclResp.ok) {
    throw new Error(await aclResp.text());
  }
}
 
async function getUserIdToImpersonate(email: string) {
  const userResp = await fetch(
    `${BRAINTRUST_API_URL}/v1/user?${new URLSearchParams({ email })}`,
    method: "GET",
    headers: {
        Authorization: `Bearer ${API_KEY}`,
    }
  );
  if (!userResp.ok) {
    throw new Error(await userResp.text());
  }
  const users = await userResp.json();
  return users.objects[0].id;
}
 
async function main() {
  // This only needs to be done once.
  await grantOwnershipRole(process.env.ORG_NAME);
  const impersonateUserId = await getUserIdToImpersonate(process.env.USER_EMAIL);
 
  // This will only succeed if the user being impersonated has permissions to
  // create a project within the org.
  const projectResp = await fetch(
    `${BRAINTRUST_API_URL}/v1/project`,
    method: POST,
    headers: {
        Authorization: `Bearer ${API_KEY}`,
        "Content-Type": "application/json",
        "x-bt-impersonate-user": impersonateUserId,
    },
    body: JSON.stringify({
        name: "my-project",
        org_name: process.env.ORG_NAME,
    }),
  );
  if (!projectResp.ok) {
    throw new Error(await projectResp.text());
  }
  console.log(await projectResp.json());
}

On this page