Authenticates the user by the username/email and password specified. To finish user authentication, get the user JWT by sending the Generate JWT request.
response_type required | string Grant type used in your project that has the enabled OAuth 2.0 protocol. Must be |
client_id required | integer Your application ID. Get it after creating an OAuth 2.0 client. |
state required | string Value used for additional user verification. Often used to mitigate CSRF Attacks. The value will be returned in the response. Must be longer than 8 symbols. |
audience | string Identification parameter of the application the token was issued for. Parameter value will be passed in the |
scope | string Scope is a mechanism in OAuth 2.0 to limit an application’s access to a user’s account. Can be:
If you process your own values of the |
redirect_uri | string URL to redirect the user to after account confirmation, successful authentication, or password reset confirmation. To set up this parameter, contact your Customer Success Manager or email to csm@xsolla.com. Notice
The parameter is required if you have more than one redirect URI in your project settings. |
OK
Bad Request
Unauthorized
Not Found
Unprocessable Entity
Too Many Requests
{- "password": "password123",
- "username": "John"
}
{- "login_url": "string"
}