Authorizations
Session cookie authentication for production deployments. The session token is automatically set as an HTTP-only, secure cookie.
Body
application/json
Authentication
Session
User Management
- GETGet Current User Profile
- PATCHUpdate User Profile
- GETGet User's Organization Memberships
- GETGet User's Workspace Memberships
- GETGet User's Email Addresses
- POSTAdd Email Address
- DELRemove Email Address
- POSTPrepare Email Verification
- POSTVerify Email Address
- POSTMake Email Primary
- GETGet User's Phone Numbers
- POSTAdd Phone Number
- DELRemove Phone Number
- POSTSend Phone Verification SMS
- POSTVerify Phone Number with OTP
- POSTSet Phone Number as Primary
- POSTGenerate New TOTP Authenticator
- POSTVerify TOTP Authenticator Setup
- DELDelete TOTP Authenticator
- POSTGenerate Backup Codes
- POSTRegenerate Backup Codes
- POSTUpload Profile Picture
- POSTUpdate Password
- DELRemove Password
- GETGet Active Sessions
- PATCHSign Out from Specific Session
- DELDisconnect Social Connection
- DELDelete User Account
Organizations
- POSTCreate Organization
- DELDelete Organization
- PATCHUpdate Organization
- DELLeave Organization
- GETGet Organization Members
- DELRemove Organization Member
- PUTAdd Member Role
- DELRemove Member Role
- GETGet Organization Invitations
- POSTInvite Member to Organization
- DELCancel Organization Invitation
- GETGet Organization Roles
- POSTCreate Organization Role
- DELDelete Organization Role
- GETGet Organization Domains
- POSTAdd Organization Domain
- POSTVerify Organization Domain
- DELDelete Organization Domain
- GETGet Organization Billing Addresses
- POSTAdd Organization Billing Address
- PUTUpdate Organization Billing Address
- DELDelete Organization Billing Address
Authentication
Initialize OAuth2 Flow
Start OAuth2 authentication flow with supported providers (Google, GitHub, Microsoft). Returns authorization URL for user redirection.
POST
/
auth
/
oauth2
/
init
Copy
curl --request POST \
--url https://{deploymentHost}/auth/oauth2/init \
--header 'Content-Type: application/json' \
--data '{
"provider": "google"
}'Copy
{
"status": 200,
"message": "",
"data": {
"authorization_url": "https://accounts.google.com/oauth/authorize?client_id=example&redirect_uri=https%3A%2F%2Fyour-deployment.wacht.dev%2Fauth%2Foauth2%2Fcallback&response_type=code&scope=openid+email+profile&state=oauth_state_token_123",
"state": "oauth_state_token_123"
},
"session": {
"signin_attempts": [],
"signins": [],
"signup_attempts": [],
"active_signin": null
},
"errors": []
}Previous
OAuth2 CallbackHandle OAuth2 callback from providers. Processes authorization code and completes authentication flow.
Next
⌘I
Copy
curl --request POST \
--url https://{deploymentHost}/auth/oauth2/init \
--header 'Content-Type: application/json' \
--data '{
"provider": "google"
}'Copy
{
"status": 200,
"message": "",
"data": {
"authorization_url": "https://accounts.google.com/oauth/authorize?client_id=example&redirect_uri=https%3A%2F%2Fyour-deployment.wacht.dev%2Fauth%2Foauth2%2Fcallback&response_type=code&scope=openid+email+profile&state=oauth_state_token_123",
"state": "oauth_state_token_123"
},
"session": {
"signin_attempts": [],
"signins": [],
"signup_attempts": [],
"active_signin": null
},
"errors": []
}