Security API

Authentication, session management, and password operations.

Operations below are scaffolded from FastAPI introspection. Each operation page renders inline via <OAOperation> once CI populates openapi.json.

Operations

• POST /auth — Authenticate a user and issue a bearer token.
• POST /user/{user_key}/verify — Verify a user's current password.
• GET /whoami — Return the user key from the current session token.
• POST /session — Open a new user session after token issuance.
• DELETE /session/{session_key} — Close an active user session and revoke its token.