# Log In To Account **POST /Auth/Verify/Login** This process is called for every page requiring the user to be logged in. It looks at the JWT token sent in and returns information about it. Token is usually passed as a cookie. *Secret Hmac and page href Required. Cache Time 1 Hour.* ## Servers - https://api.wrtm.io/v1.0: https://api.wrtm.io/v1.0 () - https://api.whyreadthemanual.com/v1.0: https://api.whyreadthemanual.com/v1.0 () - https://api.wereadthemanual.com/v1.0: https://api.wereadthemanual.com/v1.0 () ## Authentication methods - Authorization key & Authorization date & Authorization hmac ## Parameters ### Body: application/json (object) - **Token** (string) optional jwt token returned from a previous call to /Auth/Verify/Login or /Auth/Verify/Token - **Href** (string) required copy of document.href since referrer is not always accurate - **Username** (string) the username entered - or nothing if already logged in or verifying still logged in - **Password** (string) the password entered - or nothing if already logged in or verifying still logged in ## Responses ### 200 Login successful #### Body: application/json (object) - **Valid** (number) 0 if expired, 1 if not - **Expires** (number) Seconds until the jwt token expires and login is valid. If expired, it returns negative seconds - **Custno** (number) Customer User Number (frequently the same as parent) - **Parent** (number) Parent User Number - **IdLogin** (number) The current user Login Id - **LoginIp** (string) the Ip address of the logged in user - **Message** (string) the message to display on the screen - **FirstName** (string) the First Name of the logged in user - **LastName** (string) the Last Name of the logged in user - **LoginTime** (string) the date/time logged in (YYYYMMDDHHMMSS) - **PrevLogin** (string) the date/time previously logged in (YYYYMMDDHHMMSS) ### 401 User Unauthorized #### Body: application/json (object) - **Valid** (number) 0 if expired, 1 if not - **Expires** (number) Seconds until the jwt token expires and login is valid. If expired, it returns negative seconds - **Username** (string) If they checked to save username, this responds with the last username passed - **Message** (string) debug message for why this failed [Powered by Bump.sh](https://bump.sh)