API
Authorization

Login Mutation

In order to initiate user login you have to use following mutation:

mutation Login($input: UsersPermissionsLoginInput!) {
  login(input: $input) {
    jwt
    status
  }
}

with following payload:

{
  "input": {
    "identifier": "<user_email_or_phone>",
    "password": "<user_password_if_email_sent>"
  }
}

Depending on result, you can receive following statuses:

  • OK - success, jwt should contain token
  • OTP_REQUIRED - SMS/Email was send to the user, jwt is null
  • BLOCKED - user is blocked and is not allowed to login
  • MFA_NOT_SUPPORTED - mfa is not enabled and user should use email flow

Response:

{
  "data": {
    "login": {
      "jwt": "<user_access_token>",
      "status": "<status>"
    }
  }
}

In case of OTP_REQUIRED you have to send second request for same mutation but different input that will contain OTP code (6 digits):

If using phone

{
  "input": {
    "identifier": "<user_phone>",
    "otp": <otp_code>
  }
}

If using email

{
  "input": {
    "identifier": "<user_email>",
    "password": "<user_password",
    "otp": <otp_code>
  }
}
ArchitectureRegistration