POST /auth/login — authenticate and get a JWT

The login endpoint verifies a teacher or administrator’s credentials and returns a short-lived JWT. Include the token in subsequent requests as Authorization: Bearer <token>. The endpoint is rate-limited to 5 requests per minute per IP in production (enforced by Nginx); a 429 response means you have been throttled. Base URL: http://localhost:8001

Request

correo

string

required

The account’s email address.

password

string

required

The account’s plain-text password. It is compared against the stored bcrypt hash server-side.

Response

200 — success
401 — invalid credentials
429 — rate limited

token

string

Signed JWT. Decode it to inspect the payload: id, correo, and rol (DOCENTE or ADMIN).

Returned when the email does not exist or the password does not match.

{ "detail": "Credenciales inválidas" }

Returned when more than 5 login attempts are made within a 60-second window from the same IP.

{ "detail": "Demasiadas solicitudes. Intenta de nuevo más tarde." }

Examples

curl -s -X POST http://localhost:8001/auth/login \
  -H "Content-Type: application/json" \
  -d '{
    "correo": "[email protected]",
    "password": "s3cr3t0!"
  }'

The JWT payload contains id, correo, and rol. Store the token in memory rather than localStorage to reduce XSS exposure.

After 5 failed attempts in one minute the endpoint returns 429. Wait 60 seconds before retrying.

POST /auth/register — create a teacher account

Auto-generate your docs

Request
Response
Examples

Build docs developers (and LLMs) love

Get started for free Talk to us

Authentication

Schedule Service

Catalog Services

POST /auth/login — authenticate and get a JWT

Request

Response

Examples

Build docs developers (and LLMs) love

Authentication

Schedule Service

Catalog Services

Documentation Index

​Request

​Response

​Examples

Build docs developers (and LLMs) love

Request

Response

Examples