Version: v1
Nauthilus Management API
Contract for the stable protected machine-facing HTTP API subset. Dynamic custom hook aliases remain runtime configuration. Public IdP protocol and browser routes are documented by the public IdP contract.
Authentication
- HTTP: Basic Auth
- HTTP: Bearer Auth
- API Key: sessionCookie
Backchannel Basic authentication.
Security Scheme Type: | http |
|---|---|
HTTP Authorization Scheme: | basic |
Backchannel OIDC bearer token. Some admin endpoints require security or admin scope.
Security Scheme Type: | http |
|---|---|
HTTP Authorization Scheme: | bearer |
Bearer format: | JWT |
Encrypted browser session cookie used by MFA management routes.
Security Scheme Type: | apiKey |
|---|---|
Cookie parameter name: | nauthilus_secure_data |