Authentication

The DatAscend application has various endpoints related to authentication, it uses JSON web token based endpoint authentication with the passport-jwt library.

These endpoints can be seen through the available swagger, but here is a quick rundown:

POST /api/v1/users/register

Creates a new user with the provided email and password.

Example Schema:

{
    "da_field_email": "any@user.com",
    "da_field_password": "any password"
}

POST /api/v1/users/login

Logs in a user with the provded email and password.

Example Schema:

{
    "da_field_email": "any@user.com",
    "da_field_password": "any password"
}

PUT /api/v1/users/change-password

Updates the password of the current user.

{
    "oldPassword": "any@user.com",
    "newPassword": "any password",
    "confirmPassword": "the same as newPassword"
}

After authentication, the datascend application uses domains and role based access control to manage what records, objects and actions a user can have access to.

The /api/v1/roles/ endpoints are the ones used to manages roles, and /api/v1/domains/ are the ones used for domains.