search

Login

With auth enabled, you have to retrieve a JWT token before you can access the API calls.

hashtag
Username/password login

Send the username and password, as defined in api.auth.username and api.auth.password, in the body of the request to the /api/login endpoint in order to obtain valid access and refresh JWT.

Example:

curl http://127.0.0.1:8080/api/login \
   -H 'accept: application/json' \
   -H 'Content-Type: application/json' \
   -X POST \
   -d '{
         "username": "YOUR_USERNAME",
         "password": "YOUR_PASSWORD"
      }'

On successful login, the response looks like this:

{
   "access_token": "eyJz93a...k4laUWw",
   "refresh_token": "eyJz93a...k4laUWx"
}

Use the access_token in all subsequent calls to the /api/v3/ endpoints, e.g.

curl http://127.0.0.1:8080/api/ \
   -H 'accept: application/json' \
   -H 'Content-Type: application/json' \
   -H 'Authorization: Bearer eyJz93a...k4laUWw' \
   -X GET

The expiry date is stored in the payload of the access token exp field, or the seconds until it expires is stored in the field exi.

In order to obtain a new access token, use the refresh_token for a call to /api/login/refresh:

After the refresh token expires, you have to login again with your username and password.

Description:

hashtag
Retrieve an access and a refresh token

post

Retrieve valid JWT access and refresh tokens to use for accessing the API. Login either by username/password or Auth0 token

Authorizations
AuthorizationstringRequired
Body
passwordstringRequired
usernamestringRequired
Responses
chevron-right
200

OK

application/json
post
/api/login

hashtag
Auth0 login

Send a valid Auth0 access JWT in the Authorization header to the /api/login endpoint in order to obtain an access and refresh JWT. The Auth0 tenant and the allowed users must be defined in the configuration.

Example:

hashtag
Retrieve an access and a refresh token

post

Retrieve valid JWT access and refresh tokens to use for accessing the API. Login either by username/password or Auth0 token

Authorizations
AuthorizationstringRequired
Body
passwordstringRequired
usernamestringRequired
Responses
chevron-right
200

OK

application/json
post
/api/login

hashtag
JWT refresh

In order to obtain a new access token, use the refresh_token for a call to /api/login/refresh. Example:

On successful login, the response looks like this:

Once the refresh token expires, you have to login again with your username and password, or a valid Auth0 token.

Description:

hashtag
Retrieve a new access token

get

Retrieve a new access token by providing the refresh token

Authorizations
AuthorizationstringRequired
Responses
chevron-right
200

OK

application/json
get
/api/login/refresh
PreviousPrometheus metricsNextConfig

Last updated

Was this helpful?