Auth
Browser-facing authentication endpoints (OIDC / SAML). The frontend calls /auth/discover to find the right SSO provider for an email domain, then /auth/login to redirect to the IdP; /auth/me returns the authenticated identity for whatever session cookie or bearer token is presented.
Discover SSO configuration for an email address.
Authorization
api_key AuthorizationBearer <token>
API key authentication using Bearer token format
In: header
Query Parameters
email*string
Email address to discover SSO configuration for
Response Body
application/json
application/json
application/json
curl -X GET "https://loading/auth/discover?email=string"{
"domain_verification_status": {},
"domain_verified": true,
"enforcement_mode": "optional",
"has_sso": true,
"idp_name": "string",
"org_id": "a40f5d1f-d889-42e9-94ea-b9b33585fc6b",
"org_name": "string",
"org_slug": "string",
"provider_type": "oidc",
"sso_required": true,
"verified_at": "2019-08-24T14:15:22Z"
}{
"error": {
"code": "budget_exceeded",
"message": "Budget limit exceeded for monthly period",
"param": null,
"request_id": "550e8400-e29b-41d4-a716-446655440000",
"type": "invalid_request_error"
}
}{
"error": {
"code": "budget_exceeded",
"message": "Budget limit exceeded for monthly period",
"param": null,
"request_id": "550e8400-e29b-41d4-a716-446655440000",
"type": "invalid_request_error"
}
}Get current user identity.
Authorization
api_key AuthorizationBearer <token>
API key authentication using Bearer token format
In: header
Response Body
application/json
application/json
curl -X GET "https://loading/auth/me"{
"email": "string",
"external_id": "string",
"idp_groups": [
"string"
],
"name": "string",
"roles": [
"string"
],
"user_id": "a169451c-8525-4352-b8ca-070dd449a1a5"
}{
"error": {
"code": "budget_exceeded",
"message": "Budget limit exceeded for monthly period",
"param": null,
"request_id": "550e8400-e29b-41d4-a716-446655440000",
"type": "invalid_request_error"
}
}