Overview

Backend Kisum Auth API (1.0.0)

OpenAPI document; paths may be regenerated when the API process starts (see internal/openapigen).

• OpenAPI version: 3.0.3

Authentication

bearerAuth

Security scheme type: http

Bearer format: JWT

internalApiKey

Service-to-service credential for backend enforcement calls (Base / module backends calling Auth). Not used by browser clients.

Security scheme type: apiKey

Header parameter name: X-Internal-API-Key

xOrg

Canonical active company context for tenant-scoped access resolution. Required for GET /auth/me/access. Header name must be exactly x-org (lowercase).

Security scheme type: apiKey

Header parameter name: x-org