Skip to main content
POST
/
v1
/
auth
/
login
cURL
curl --request POST \
  --url https://api.example.com/v1/auth/login \
  --header 'Content-Type: application/json' \
  --data '
{
  "email": "<string>",
  "password": "<string>",
  "web": true,
  "idpName": "<string>",
  "idpContext": {
    "oauth2Context": {
      "code": "<string>"
    },
    "oidcContext": {
      "code": "<string>"
    }
  },
  "otpCode": "<string>",
  "recoveryCode": "<string>",
  "mfaTempToken": "<string>"
}
'
{
  "token": "<string>",
  "mfaTempToken": "<string>",
  "requireResetPassword": true,
  "user": {
    "name": "<string>",
    "state": "STATE_UNSPECIFIED",
    "email": "<string>",
    "title": "<string>",
    "userType": "USER_TYPE_UNSPECIFIED",
    "mfaEnabled": true,
    "tempOtpSecret": "<string>",
    "tempRecoveryCodes": [
      "<string>"
    ],
    "tempOtpSecretCreatedTime": "2023-11-07T05:31:56Z",
    "phone": "<string>",
    "profile": {
      "lastLoginTime": "2023-11-07T05:31:56Z",
      "lastChangePasswordTime": "2023-11-07T05:31:56Z",
      "source": "<string>"
    },
    "groups": [
      "<string>"
    ],
    "workloadIdentityConfig": {
      "providerType": "PROVIDER_TYPE_UNSPECIFIED",
      "issuerUrl": "<string>",
      "allowedAudiences": [
        "<string>"
      ],
      "subjectPattern": "<string>"
    }
  }
}

Body

application/json
email
string

User's email address.

password
string

User's password for authentication.

web
boolean

If web is set, we will set access token, refresh token, and user to the cookie.

idpName
string

The name of the identity provider. Format: idps/{idp}

idpContext
object

The idp_context is using to get the user information from identity provider.

otpCode
string

The otp_code is used to verify the user's identity by MFA.

recoveryCode
string

The recovery_code is used to recovery the user's identity with MFA.

mfaTempToken
string

The mfa_temp_token is used to verify the user's identity by MFA.

Response

OK

token
string

Access token for authenticated requests.

mfaTempToken
string

Temporary token for MFA verification.

requireResetPassword
boolean

Whether user must reset password before continuing.

user
object

The user from the successful login.