# Auth (/api/reference/auth)



The Auth endpoints mint and exchange Harmont session tokens. They are
the only endpoints in this API where the request is *unauthenticated*
on purpose; everything else takes a `Bearer` header from one of these.

{/* This file was generated by Fumadocs. Do not edit this file directly. Any changes should be made by running the generation command again. */}

<APIPage document="&#x22;./openapi.json&#x22;" webhooks="[]" operations="[{&#x22;path&#x22;:&#x22;/api/v0/auth/cli/claim&#x22;,&#x22;method&#x22;:&#x22;post&#x22;},{&#x22;path&#x22;:&#x22;/api/v0/auth/cli/code&#x22;,&#x22;method&#x22;:&#x22;post&#x22;},{&#x22;path&#x22;:&#x22;/api/v0/auth/cli/redeem&#x22;,&#x22;method&#x22;:&#x22;post&#x22;},{&#x22;path&#x22;:&#x22;/api/v0/auth/cli/transfer&#x22;,&#x22;method&#x22;:&#x22;post&#x22;},{&#x22;path&#x22;:&#x22;/api/v0/auth/logout&#x22;,&#x22;method&#x22;:&#x22;post&#x22;}]" />