> ## Documentation Index > Fetch the complete documentation index at: https://docs.finhub.cloud/llms.txt > Use this file to discover all available pages before exploring further. # Authenticate user > Authenticates a user with email/password and returns a JWT session token. Sandbox test credentials: admin@finhub.cloud / Admin123! ## OpenAPI ````yaml /openapi.yaml post /api/auth/login openapi: 3.1.0 info: title: Business BFF API version: 1.0.0 description: Backend for Frontend - Business Panels Orchestration Layer servers: - url: https://sandbox.finhub.cloud description: Sandbox Environment security: [] tags: - name: AML description: Anti-Money Laundering checks and transaction monitoring - name: Admin - Consent Management description: Operations for managing consent templates and definitions - name: B2B Customer - Organization description: B2B organization registration and management - name: B2C Customer - Individual description: Individual customer registration and lifecycle management - name: BFF Admin - Tenant Initialization description: Lazy tenant initialization for fast startup - name: Catalog Hierarchy description: Hierarchical catalog management APIs - name: Catalog-Process Mapping description: APIs for catalog-process relationship management - name: Consent description: Payment consent creation and approval - name: Draft Management - name: External Events description: Kafka-to-HTTP bridge event ingestion and query - name: FinCard Virtual - Webhooks description: FinCard Virtual Card Webhook receiver - name: FinCard Virtual Account description: FinCard Virtual Card Account API proxy - name: FinCard Virtual Card Holder description: FinCard Virtual Card Holder API proxy - name: FinCard Virtual Cards description: FinCard Virtual Card API proxy - name: FinCard Virtual Common description: FinCard Virtual Card Common API proxy - name: FinCard Virtual Wallet description: FinCard Virtual Card Wallet API v2 proxy - name: FinTrans - Operations description: Financial transaction operations - name: Internal Webhooks description: Internal service-to-service webhook trigger (HMAC-secured) - name: MFE Preload description: MFE preload endpoints for SSR optimization - name: MFE Registry description: MFE Registry management endpoints - name: Payment Consent Management description: Operations for managing payment consents and validation - name: Person description: Person details for process context - name: Products description: Product Catalog Management API - name: Reference Data description: Shared reference data (countries, etc.) - name: Tenant Lifecycle description: Tenant mode transitions and lifecycle management - name: Tenant Registration description: Self-registration and tenant onboarding - name: Transfers description: Transfer prepare/execute aliases for muse-proxy compatibility - name: Verification description: Customer verification (KYC/KYB/AML) management - name: Wallet description: Wallet operations and balance management - name: Webhooks description: Webhook subscription and delivery management paths: /api/auth/login: post: tags: - Login Resource summary: Authenticate user description: >- Authenticates a user with email/password and returns a JWT session token. Sandbox test credentials: admin@finhub.cloud / Admin123! parameters: - name: User-Agent in: header schema: type: string - name: X-Forwarded-For in: header schema: type: string example: 127.0.0.1 - name: X-Tenant-ID in: header schema: type: string example: tenant-demo-001 - name: sec-ch-ua-platform in: header schema: type: string - name: X-Forwarded-From in: header description: Client source identifier schema: type: string example: client-app - name: platform in: header description: Client platform schema: type: string example: mobile - name: deviceId in: header description: Device identifier schema: type: string example: device-demo-001 requestBody: content: application/json: schema: $ref: '#/components/schemas/LoginRequest' required: true responses: '200': description: OK content: application/json: schema: $ref: '#/components/schemas/BaseResponseLoginResponse' components: schemas: LoginRequest: type: object properties: email: type: string examples: - admin@example.test description: Login email example: admin@example.test password: type: string examples: - SecurePass123! description: Login password example: SecurePass123! tenantId: type: string examples: - tenant-demo-001 description: Tenant identifier example: tenant-demo-001 captchaToken: type: string examples: - captcha-token-sample description: Optional captcha token example: captcha-token-sample BaseResponseLoginResponse: type: object description: Standard API response wrapper properties: code: type: integer format: int32 examples: - 200 description: HTTP-style status code example: 200 data: $ref: '#/components/schemas/LoginResponse' type: object examples: - id: 123e4567-e89b-12d3-a456-426614174000 description: Response payload object example: id: 123e4567-e89b-12d3-a456-426614174000 message: type: string examples: - Success description: Result message example: Success LoginResponse: type: object properties: accessToken: type: string examples: - eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.sample description: Access token JWT example: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.sample refreshToken: type: string examples: - refresh-token-sample description: Refresh token example: refresh-token-sample expiresIn: type: integer format: int64 examples: - 3600 description: Token expiry in seconds example: 3600 tokenType: type: string examples: - Bearer description: Token type example: Bearer ````