Login

curl --request POST \
  --url https://{host}/Agent/Account/Login \
  --header 'Content-Type: application/json' \
  --data '
{
  "userName": "alice",
  "nonce": "random-unique-string-at-least-32-chars",
  "signature": "base64-hmac",
  "seconds": 3600
}
'

{
  "jwt": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
  "expires": "2024-08-02T11:22:11Z"
}

POST

Agent

Account

curl --request POST \
  --url https://{host}/Agent/Account/Login \
  --header 'Content-Type: application/json' \
  --data '
{
  "userName": "alice",
  "nonce": "random-unique-string-at-least-32-chars",
  "signature": "base64-hmac",
  "seconds": 3600
}
'

{
  "jwt": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
  "expires": "2024-08-02T11:22:11Z"
}

Overview

Authenticates a user and returns a JWT. This method is intended for programmatic clients and is an alternative to browser-based login flows.

Authentication

Sign the request using HMAC-SHA256 with the account password as the key. Signature message:

userName:host:nonce

Body

application/json

userName

string

required

nonce

string

required

signature

string

required

seconds

integer

required

Response

200 - application/json

Success

jwt

string

required

expires

string

required

Info Logout

⌘I

Intro

API endpoints

Overview

Authentication

Body

Response

Intro

API endpoints

​Overview

​Authentication

Body

Response

Overview

Authentication