Skip to content

Python Auth Functions

Jump to bottom
Akshay B edited this page Mar 16, 2026 · 1 revision

Python Auth Functions (Azure Functions)

This document details authentication routes owned by PluckIt.Processor.

Documentation metadata

  • Audience: external contributors
  • Last reviewed: 2026-03-16
  • Scope: authentication contract only

Endpoints

AuthFunctions

  • POST /api/auth/mobile-token
    • Accepts ID-token style payload (id_token/idToken).
    • Performs token validation and session issuance.
    • Returns session material used by the Python runtime and clients that present app-auth tokens.
  • POST /api/auth/refresh
    • Rotates refresh token and returns refreshed session details.
    • Maintains continuity for long-lived app sessions.
  • POST /api/auth/revoke
    • Accepts token/body inputs.
    • Revokes either the provided token or all sessions for a user.

Behavior notes

  • All auth endpoints are part of the Python runtime contract and are intentionally aligned to the canonical token surface described in Authentication and Identity.
  • mobile-token and refresh are session lifecycle endpoints; revoke is an invalidation endpoint for token cleanup and incident response.

Notes

  • This page documents the Python auth route set that is separate from the .NET contract.

Clone this wiki locally