Create Session - Authsignal

POST

sessions

Create session

curl --request POST \
  --url https://api.authsignal.com/v1/sessions \
  --header 'Authorization: Basic <encoded-value>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "token": "eyJhbGciOiJ...",
  "clientId": "64818035-68c3-4087-a449-bdd176a166c4"
}
'

{
  "accessToken": "<string>",
  "refreshToken": "<string>"
}

Authorizations

Authorization

string

header

required

Use your Authsignal Server API secret key as the username and leave the password empty. The secret key can be found in the API Keys section of the Authsignal Portal settings page.

Body

application/json

token

string

required

The client token obtained after completing a challenge.

clientId

string

required

The ID of the app client for which the access token and refresh token should be issued.

Response

accessToken

string

required

An access token which can be used to authenticate requests.

refreshToken

string

required

A refresh token which can be exchanged for a new access token and refresh token.

Validate SessionValidate a session for a given access token. This will ensure both that the token signature is valid and that the token has not been revoked.

⌘I

Create session

curl --request POST \
  --url https://api.authsignal.com/v1/sessions \
  --header 'Authorization: Basic <encoded-value>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "token": "eyJhbGciOiJ...",
  "clientId": "64818035-68c3-4087-a449-bdd176a166c4"
}
'

{
  "accessToken": "<string>",
  "refreshToken": "<string>"
}