Identity Security Live Test Environment

Test every authentication and security endpoint in real-time with demo users.

Not Logged In
Demo Access
[email protected]
Admin Full system access
[email protected]
User Standard user access
[email protected]
Demo Admin Demo account with Admin
This is the live testing environment. Want to learn more about the product? Visit the Identity Security product page β†’
No Auth Required
Register New User
POST /api/authentication/register
πŸ“˜ Show expected request body
{
  "email": "string (required) - valid email",
  "password": "string (required) - min 6 chars, at least 1 uppercase, 1 digit",
  "tenantId": "string (required) - tenant identifier"
}
Request preview will appear here
Click to test...
Requires Auth
Login
POST /api/authentication/login
πŸ“˜ Show expected request body
{
  "email": "string (required)",
  "password": "string (required)"
}
Request preview will appear here
Click to test...
Requires Auth
Get Current User
GET /api/authentication/me

No parameters – uses the current session.

Click to test...
Requires Auth
Get Active Sessions
GET /api/session

No parameters.

Click to test...
Requires Auth
Logout
POST /api/authentication/logout

No request body – revokes current session.

Click to test...
Create API Key
POST /api/apikeys
πŸ“˜ Show expected request body
{
  "name": "string (required) - e.g., 'My App'",
  "scopes": "array[string] (optional) - e.g., ['read','write']",
  "allowedIPs": "array[string] (optional) - IP/CIDR whitelist"
}
Request preview will appear here
Response will appear here...
List API Keys
GET /api/apikeys

No parameters – lists all keys for the current user.

Response will appear here...
Rotate API Key
POST /api/apikeys/{id}/rotate
πŸ“˜ Show expected request body
{
  "id": "string (path) - the key ID to rotate"
}
No request body required.
Response will appear here...
Setup MFA
POST /api/mfa/setup

Simulated QR Code – in production, scan with authenticator app.

JBSWY3DPEHPK3PXP

Call this endpoint to generate a new MFA secret.

Response will appear here...
Verify MFA Code
POST /api/mfa/verify
πŸ“˜ Show expected request body
{
  "code": "string (required) - 6-digit code"
}
Response will appear here...
Disable MFA
POST /api/mfa/disable

No request body.

Response will appear here...
Get All Sessions
GET /api/session

No parameters.

Response will appear here...
Get Devices
GET /api/authentication/devices

No parameters.

Response will appear here...
Revoke Session
POST /api/session/{id}/revoke
πŸ“˜ Show expected parameters
Path parameter: id (string, required)
No request body.
Response will appear here...
Create Audit Log
POST /api/auditlogs
πŸ“˜ Show expected request body
{
  "action": "string (required) - e.g., 'user.login'",
  "resource": "string (optional) - resource affected",
  "resourceId": "string (optional)",
  "changes": "object (optional) - any metadata"
}
Response will appear here...
Get Tenant Logs
GET /api/auditlogs/tenant/demo

Path parameter: tenantId (demo). No query params.

Response will appear here...
Get Audit Stats
GET /api/auditlogs/stats/demo

Path parameter: tenantId (demo).

Response will appear here...
SSO provider management is available in the Admin Dashboard. Configure Google, Azure AD, Okta, or custom SAML providers.
Get SSO Providers
GET /api/ssoproviders

No parameters.

Response will appear here...
Get Policies
GET /api/policies

No parameters.

Response will appear here...
Get Roles
GET /api/roles

No parameters.

Response will appear here...