Auth endpoints
| Method | Path (example) | Description | Auth |
|---|---|---|---|
| POST | /auth/login | Sign in, obtain token | No |
| POST | /auth/register | Register | No |
| POST | /auth/forgot-password | Password reset email | No |
| POST | /auth/reset-password | New password (with token) | No |
| GET | /auth/profile | Session profile | Yes |
| DELETE | /auth/users/:id | Delete user | Yes (usually SUPERADMIN) |
Validation (summary)
- Email format, minimum password length (e.g. 8),
trim— see main repodocs/auth-validations.mdfor details
Example: login
bash
curl -X POST "$API/auth/login" \
-H "Content-Type: application/json" \
-d '{"email":"[email protected]","password":"secret"}'