/auth/register/invitation
通过有效的租户邀请码完成注册,邀请码由租户管理员生成。注册成功后自动接受邀请并加入租户,返回JWT令牌。参考:OWASP ASVS V2.2。
Request Body
Schema: dto.RegisterByInvitationRequest
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
invitation_code |
string |
Yes | |||
password |
string |
Yes | length: 8–128 | ||
username |
string |
No | length: 3–32 |
Responses
| Status | Description | Schema |
|---|---|---|
| 200 | 注册成功并自动登录 | dto.LoginResponse |
| 400 | 请求参数无效或邀请码已失效 | gitee_com_linmes_authms_base_dto.SimpleResponse |
| 500 | 服务器内部错误 | gitee_com_linmes_authms_base_dto.SimpleResponse |
Referenced Schemas
dto.LoginResponse
用户登录结果
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
access_token |
string |
No | Access token | ||
challenge_token |
string |
No | MFA challenge token (short-lived, requires MFA verification) | ||
expires_in |
integer |
No | Expiration time | ||
mfa_check_reason |
string |
No | MFA触发原因描述 | ||
must_change_password |
boolean |
No | Password must be changed | ||
password_expires_in |
integer |
No | Days until password expires | ||
password_warning |
string |
No | Password warning: expiring/expired_grace/expired | ||
refresh_token |
string |
No | Refresh token | ||
required_mfa_methods |
array of string |
No | MFA推荐方法列表 | ||
requires_mfa |
boolean |
No | 自适应MFA: 需要额外MFA验证 | ||
risk_assessment |
object |
No | Risk assessment | ||
risk_level |
string |
No | 风险等级: low/medium/high | ||
token_type |
string |
No | Token type | ||
user |
object |
No | User info |
dto.RiskAssessmentInfo
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
level |
string |
No | |||
recommended_mfa_methods |
array of string |
No | |||
require_mfa |
boolean |
No | |||
score |
integer |
No |
dto.UserInfo
用户基本信息
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
created_at |
string |
No | Account creation time | ||
email |
string |
No | |||
id |
string |
No | User ID | ||
must_change_password |
boolean |
No | Password must be changed | ||
password_expires_in |
integer |
No | Days until password expires | ||
password_warning |
string |
No | Password warning: expiring/expired_grace/expired | ||
phone |
string |
No | Phone | ||
status |
string |
No | Status | ||
username |
string |
No | Username |
gitee_com_linmes_authms_base_dto.SimpleResponse
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
code |
integer |
No | |||
message |
string |
No | |||
timestamp |
string |
No |