Authentication flow
This section provides the technical specifications and security mechanisms for authenticating with the Koncili API.
The Koncili API uses JWT token-based authentication, with two primary mechanisms:
- Access token: Initial credentials
- Refresh token: Access renewal
Access Token
Endpoint:
- POST: /public/api/auth/token
Requirements:
- Credentials must be base64 encoded.
- Format:
email:password
Important
How to encode your credentials:
- Combine email and password in the following format:
youremail@domain.com:yourpassword - Convert to base64.
Request example:
{ "credentials": "dGVzdGVAZW1haWwuY29tOnNlbmhhMTIz" }
Refresh token
Endpoint:
- POST: /public/api/auth/refresh-token
Characteristics:
- Each renewal generates a new refresh token.
- The previous token is invalidated after renewal.
Important
The access token is valid for 2 hours. Implement a token update process using the refresh token.