POST `/auth/id-token/signin`

使用外部OIDC Provider签发的ID Token进行跨系统SSO登录，验证id_token后返回本地JWT令牌

身份认证 None application/json

Request Body

Field	Type	Required	Example	Constraints	Description
`id_token`	`string`	No
`provider`	`string`	No

Responses

Status	Description	Schema
200	登录成功	`dto.LoginResponse`

Referenced Schemas

dto.LoginResponse

用户登录结果

Field	Type	Required	Example	Constraints	Description
`access_token`	`string`	No			Access token
`challenge_token`	`string`	No			MFA challenge token (short-lived, requires MFA verification)
`expires_in`	`integer`	No			Expiration time
`mfa_check_reason`	`string`	No			MFA触发原因描述
`must_change_password`	`boolean`	No			Password must be changed
`password_expires_in`	`integer`	No			Days until password expires
`password_warning`	`string`	No			Password warning: expiring/expired_grace/expired
`refresh_token`	`string`	No			Refresh token
`required_mfa_methods`	array of string	No			MFA推荐方法列表
`requires_mfa`	`boolean`	No			自适应MFA: 需要额外MFA验证
`risk_assessment`	`object`	No			Risk assessment
`risk_level`	`string`	No			风险等级: low/medium/high
`token_type`	`string`	No			Token type
`user`	`object`	No			User info

dto.RiskAssessmentInfo

Field	Type	Required	Example	Constraints	Description
`level`	`string`	No
`recommended_mfa_methods`	array of string	No
`require_mfa`	`boolean`	No
`score`	`integer`	No

dto.UserInfo

用户基本信息

Field	Type	Required	Example	Constraints	Description
`created_at`	`string`	No			Account creation time
`email`	`string`	No			Email
`id`	`string`	No			User ID
`must_change_password`	`boolean`	No			Password must be changed
`password_expires_in`	`integer`	No			Days until password expires
`password_warning`	`string`	No			Password warning: expiring/expired_grace/expired
`phone`	`string`	No			Phone
`status`	`string`	No			Status
`username`	`string`	No			Username

Try this API in Scalar → Download OpenAPI spec (JSON) ↓

↑