OAuth

OAuth authentication and session management

📄️ Development mode login

Quick login for local development without real OAuth credentials.

📄️ OAuth callback

Handles OAuth provider callback after user authorization.

📄️ Initiate OAuth login

Redirects user to OAuth provider's authorization page.

📄️ Logout current session

Invalidates the current session's refresh token

📄️ Logout from all devices

Revokes all refresh tokens for the current user.

📄️ Get current user

Returns the currently authenticated user's profile

📄️ List enabled OAuth providers

Returns list of configured and enabled OAuth providers

📄️ Refresh access token

Uses refresh token cookie to obtain new access token

📄️ Get current user profile

Returns the currently authenticated user's profile with linked account info

📄️ Update current user profile

Updates user profile fields. Sets profileCustomized=true

📄️ Delete avatar

Removes the user's avatar image and resets to default

📄️ Upload avatar image

Uploads a new avatar image for the user. Accepts JPEG, PNG, GIF, and WebP.

📄️ Close user account

Permanently closes the user's account. All sessions are invalidated

📄️ Initiate email change

Initiates an email change request. Requires the user's current password

📄️ Verify email change

Completes an email change request by verifying the token.

📄️ List linked OAuth identities

Returns all OAuth providers linked to the current user's account

📄️ Unlink OAuth identity

Removes an OAuth identity from the user's account.

📄️ Update user name

Updates the user's first name and last name.

📄️ Set or change password

Sets or changes the user's password.

📄️ Get password status

Returns whether the user has a password set

📄️ Get WebSocket authentication token

Returns a short-lived token (30 seconds) for WebSocket authentication.