Before do anything you must authenticate in Aip Gate with an user and password, and a Json web token is returned. We follow the Json webtokens as the standard way to deal with auth. The token has a lifetime tat can be configured (default is 7 days).
{
"token": "Bearer <your-awkful-token-here>
}
We have 2 routes to deal with auth.
POST /auth/login. Return a valid token if a valid user+password is supplied as body of request.POST /auth/logout. Invalidate the token used in the request.