API Reference
API Overview
Misar ID REST API reference.
API Overview
The Misar ID API follows OAuth 2.0 / OpenID Connect standards.
Base URL: https://id.misar.io
Authentication
All API calls (except the login flow) require an access token:
Authorization: Bearer <access_token>Endpoints
Auth
| Method | Endpoint | Description |
|---|---|---|
| GET | /authorize | Initiate OAuth login flow |
| POST | /token | Exchange code for tokens |
| POST | /token/refresh | Refresh an access token |
| POST | /logout | Revoke session |
User Info
| Method | Endpoint | Description |
|---|---|---|
| GET | /userinfo | Get authenticated user profile |
SSO
| Method | Endpoint | Description |
|---|---|---|
| GET | /api/sso/check | Check session validity (for cross-TLD SSO) |
| POST | /api/sso/exchange | Exchange SSO token for session |
Response Format
All responses are JSON:
{
"data": {},
"error": null
}Error Codes
| Code | Description |
|---|---|
| 401 | Unauthorized — invalid or expired token |
| 403 | Forbidden — insufficient permissions |
| 404 | Not found |
| 429 | Rate limited |