Bootstrap Otentikasi dan Token
Tujuan: memperoleh token bearer dan memverifikasi perilaku endpoint autentikasi sebelum memanggil API Inbox Manager.
Catatan batas:
- Alur ini memanggil endpoint di
auth.inbox-manager.com. - Rute tersebut bukan bagian dari OpenAPI
api.inbox-manager.com.
Aliran UI
- Pengguna membuka formulir pendaftaran atau masuk.
- UI mengirimkan kredensial ke
https://auth.inbox-manager.com/auth/sign-upatau/auth/sign-in. - UI menyimpan token akses dan konteks akun yang dikembalikan.
- UI meminta token cakupan akun melalui
POST /api/accounts/:account_id/tokenbila diperlukan. - UI menggunakan token yang dikembalikan sebagai
Authorization: Bearer <token>untukapi.inbox-manager.com.
Alur Perpustakaan Klien
const auth = new AuthClient({ baseUrl: "https://auth.inbox-manager.com" });
const session = await auth.signIn({
email,
password,
clientId: "cid_inbox_manager",
});
const accountToken = await auth.issueAccountToken({
accountId: session.profile.active_membership.account_id,
bearerToken: session.tokens.access_token,
audience: "https://api.inbox-manager.com",
});
const api = new InboxManagerClient({
baseUrl: "https://api.inbox-manager.com",
bearerToken: accountToken.access_token,
});Alur HTTP/curl
AUTH_BASE_URL="https://auth.inbox-manager.com"
ORIGIN="https://app.inbox-manager.com"
CLIENT_ID="cid_inbox_manager"
curl -sS "${AUTH_BASE_URL}/.well-known/jwks.json"
curl -sS -X POST "${AUTH_BASE_URL}/auth/sign-in" \
-H "origin: ${ORIGIN}" \
-H "content-type: application/json" \
--data "{\"client_id\":\"${CLIENT_ID}\",\"email\":\"${EMAIL}\",\"password\":\"${PASSWORD}\",\"csrf_token\":\"${CSRF_TOKEN}\"}"
curl -sS -X POST "${AUTH_BASE_URL}/api/accounts/${ACCOUNT_ID}/token" \
-H "authorization: Bearer ${ACCESS_TOKEN}" \
-H "content-type: application/json" \
--data '{"audience":"https://api.inbox-manager.com"}'Skrip Validasi
scripts/auth_probe.shscripts/auth_bootstrap_accounts.sh