Server is running with cookie domain: .polyanalitika.ru
Login form - returns JWT token in header, cookie, and response body
POST /login - Accepts any credentials, uses username as JWT subject
Returns user info and permissions. Requires valid Authorization header.
Header: Authorization: Bearer <token>
Checks that token is the last issued token for that user.
Search users in registry with filtering and pagination
Query parameters: limit (default: 10), page (default: 1), sort (default: username)
Request body:
{
"status": ["ACTIVE", "BLOCKED"],
"roles": ["bi_user", "analyst"]
}Response: Returns paginated list of users with total counts
List all last issued tokens (debug endpoint)
Verify a token. Requires Authorization header.
# 1. Login to get a token
curl -X POST http://localhost:5001/login \
-H "Content-Type: application/json" \
-d '{"username": "user10", "password": "any"}'
# 2. Use the token to get info
curl -X GET http://localhost:5001/info \
-H "Authorization: Bearer <token_from_step_1>"
# 3. Get user10's info
curl -X GET http://localhost:5001/info \
-H "Authorization: Bearer <token_from_step_3>"
# 4. Search users with filters
curl -X POST "http://localhost:5001/api/v1/admin/common/users/search/reestr?limit=5&page=1&sort=username" \
-H "Authorization: Bearer <your_token_here>" \
-H "Content-Type: application/json" \
-d '{
"status": ["ACTIVE"],
"roles": ["bi_user"]
}'