auth-api/README.md

# Auth API

A tiny REST API for auth. Register accounts, auth with api-key or name/password, renew JWT tokens...

## Quick start with docker compose

Migrate database: `docker-compose run --rm db-migrations`

Start the API (on port 4000 by default): `docker-compose up -d`

Point your browser to `http://localhost:4000` to view the swagger API documentation.

## Admin account

On first startup with a clean database, an account with name "admin" and the field "role" with a value "admin" is created with no password, using the API Key from ADMIN_API_KEY in the .env file.

## Special account field: "role"

The account field "role" is a bit special, in that if it contains "admin" as one of its values, that grants access to all methods on all accounts on this service. It might be a good idea to use the field "role" for authorization throughout your services.

## Tests

Run integration tests (Requires migrated database and started API): `docker-compose run --rm tests`

## Some useful cURLs

Obtain an admin GWT: `curl -d '"api-key-goes-here"' -H "Content-Type: application/json" -i http://localhost:4000/auth/api-key`

Use a bearer token to make a call: `curl -H "Content-Type: application/json" -H "Authorization: bearer your-JWT-token-goes-here" -i http://localhost:4000/account/{accountID}`

Create account: `curl -d '{"name": "Bosse", "password": "Hemligt", "fields": [{ "name":"role", "values":["user"]}]}' -H "Content-Type: application/json" -H "Authorization: bearer your-JWT-token-goes-here" -i http://localhost:4000/account`
Added some basic readme info 2021-01-06 19:31:51 +01:00			`# Auth API`

Minor stuff 2022-01-22 15:35:58 +01:00			`A tiny REST API for auth. Register accounts, auth with api-key or name/password, renew JWT tokens...`
Added some basic readme info 2021-01-06 19:31:51 +01:00
Updated README 2021-06-24 01:59:44 +02:00			`## Quick start with docker compose`

			Migrate database: `docker-compose run --rm db-migrations`

Updated readme and stuff 2022-01-22 15:51:14 +01:00			Start the API (on port 4000 by default): `docker-compose up -d`
Updated README 2021-06-24 01:59:44 +02:00
Updated readme and stuff 2022-01-22 15:51:14 +01:00			Point your browser to `http://localhost:4000` to view the swagger API documentation.
Added comment about macOS in README 2021-01-04 16:28:03 +01:00
CSS 2021-01-02 11:56:24 +01:00			`## Admin account`

Protected POST /account and fixed with JWT stuff in general 2021-01-03 18:21:42 +01:00			`On first startup with a clean database, an account with name "admin" and the field "role" with a value "admin" is created with no password, using the API Key from ADMIN_API_KEY in the .env file.`

			`## Special account field: "role"`

			`The account field "role" is a bit special, in that if it contains "admin" as one of its values, that grants access to all methods on all accounts on this service. It might be a good idea to use the field "role" for authorization throughout your services.`
Added some curl examples 2021-01-04 16:23:45 +01:00
Updated readme and stuff 2022-01-22 15:51:14 +01:00			`## Tests`

			Run integration tests (Requires migrated database and started API): `docker-compose run --rm tests`

Added some curl examples 2021-01-04 16:23:45 +01:00			`## Some useful cURLs`

			Obtain an admin GWT: `curl -d '"api-key-goes-here"' -H "Content-Type: application/json" -i http://localhost:4000/auth/api-key`
Loads of updates 2021-06-22 22:52:48 +02:00
Added curl for creating account 2021-01-04 16:47:06 +01:00			Use a bearer token to make a call: `curl -H "Content-Type: application/json" -H "Authorization: bearer your-JWT-token-goes-here" -i http://localhost:4000/account/{accountID}`
Loads of updates 2021-06-22 22:52:48 +02:00
Remvoed test code 2022-02-14 00:17:08 +01:00			Create account: `curl -d '{"name": "Bosse", "password": "Hemligt", "fields": [{ "name":"role", "values":["user"]}]}' -H "Content-Type: application/json" -H "Authorization: bearer your-JWT-token-goes-here" -i http://localhost:4000/account`