Authentication
TinyOps uses session-based authentication via NextAuth. All API endpoints require an active session.
Endpoints
POST
/api/auth/signinSign in with email or GitHub OAuth.
GET
/api/auth/sessionAuth requiredGet the current session details.
POST
/api/auth/signoutAuth requiredSign out and invalidate the session.
Required headers
All authenticated requests must include the session cookie. The cookie is set automatically when you sign in through the dashboard.
API tokens for programmatic access are on the roadmap. For now, all API access requires a browser session.