POST/v1/auth/login

Direct Login

Authenticate users directly with Email and Password to receive a secure JWT access token.

All requests must be sent over HTTPS. Credentials are never stored in plain text and are protected by high-entropy hashing.

Request BodyJSON

emailRequired · String

The user's registered email address.

passwordRequired · String

The user's account password.

401

AUTH_INVALID_CREDENTIALS

Invalid email or password combination.

400

INVALID_REQUEST

Missing required fields in the JSON body.

REQUEST EXAMPLE

// curl -X POST https://api.cbc.id/v1/auth/login{
  "email": "jsmith@example.com",
  "password": "••••••••"
}

Success JSON

200 OK

{
  "success": true,
  "token": "jwt_access_token...",
  "user": {
    "cid": "uuid-string",
    "email": "jsmith@example.com"
  }
}