Authenticate and receive JWT tokens
POST
/api/auth/login
Login with email and password. Returns JWT access token and refresh token in both response body and secure cookies. Use GET /api/users/me to fetch user profile after authentication.
Request Body
application/json
JSON "email": "user@example.com", "password": "SecurePass123"
{
}
Responses
Login successful
application/json
JSON "token": "eyJ0eXAiOiJKV1QiLCJhbGc...", "refreshToken": "def502004f2c7e8a...", "mfaRequired": true, "challengeToken": "string"
{
}
