Every protected endpoint in Módulo Horario requires a valid JWT token in theDocumentation Index
Fetch the complete documentation index at: https://mintlify.com/Luisanchez0/modulo_Horario/llms.txt
Use this file to discover all available pages before exploring further.
Authorization header. Tokens are issued at login, signed with HS256, and expire after 24 hours. This page shows you how to get a token, use it in requests, and interpret authentication and authorization errors.
Getting a token
Send a login request
POST your credentials to On success you receive a JSON object containing your token:
/auth/login. The correo field is your registered email address.Include the token in every protected request
Add an A valid token returns your user payload:
Authorization header with the value Bearer <token> to all subsequent requests.Roles and access
Módulo Horario uses two roles. Your role is embedded in the token payload and enforced on every request.DOCENTE
Read access to schedules and resources. Cannot create, update, or delete records.
ADMIN
Full management access. Can create and modify schedules, rooms, subjects, and users. Admin accounts are created separately via
/auth/register-admin and require a server-side X-Admin-Key header.Error reference
| HTTP status | Meaning | What to do |
|---|---|---|
401 Unauthorized | Token is missing, malformed, or expired | Log in again to get a fresh token |
403 Forbidden | Token is valid but your role cannot perform this action | Use an account with the required role |
429 Too Many Requests | More than 5 login attempts per minute from your IP | Wait 60 seconds before retrying |
422 Unprocessable Entity | Request body is invalid (wrong field types, missing fields) | Check your request payload against the schema |