N
nextAuth API
Details
- URL
-
https://api.nextauth.com/ - Docs
- https://api.docs.nextauth.com/api/swagger.json
Authentication
Use the nextAuth Management API to create an API key via POST /apikeys/ after you already have sufficient server permissions. The OpenAPI spec describes this as an API key for a specific virtual server sent in header X-apikey; it does not expose a separate public self-service console page for minting keys. See the upstream spec origin swagger.json and the mirrored spec APIs.guru copy.
nextAuth API key + nextAuth role impersonation header discovered
This is an optional impersonation credential component used together with an API key: send the role ID you want to impersonate in header X-su. The spec says this requires the role associated with the API key to have global root or global setrid permissions. The available role IDs are part of nextAuth role management, documented in the API spec swagger.json.