POST /api/public/v1/auth/login
客户登录接口。使用项目级客户端 API Key(Public API Key)和客户用户名密码获取访问令牌。
鉴权
X-Yuzuca-Key: <PUBLIC_API_KEY>
Content-Type: application/json
请求体
{
"username": "customer_001",
"password": "secret"
}
accessToken 为访问令牌,用于访问需要登录态的接口;refreshToken 为刷新令牌,用于续期客户会话。
成功响应
HTTP 状态码 201:
{
"ok": true,
"requestId": "req_123",
"data": {
"customer": {
"id": 1,
"username": "customer_001",
"enabled": true
},
"accessToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
"refreshToken": "k8j2....",
"accessTokenExpiresAt": "2026-03-21T10:15:00.000Z",
"refreshTokenExpiresAt": "2026-04-20T10:00:00.000Z"
}
}
可能错误
401 INVALID_CREDENTIALS403 CUSTOMER_DISABLED401 SIGNATURE_REQUIRED401 INVALID_SIGNATURE