Exchange a cookie session for raw Supabase tokens

curl --request POST \
  --url https://api.mnemom.ai/v1/auth/cli-exchange \
  --cookie mnemom_session=

{
  "access_token": "<string>",
  "refresh_token": "<string>",
  "expires_in": 123,
  "user_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "user_email": "[email protected]"
}

POST

auth

cli-exchange

Exchange a cookie session for raw Supabase tokens

curl --request POST \
  --url https://api.mnemom.ai/v1/auth/cli-exchange \
  --cookie mnemom_session=

{
  "access_token": "<string>",
  "refresh_token": "<string>",
  "expires_in": 123,
  "user_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "user_email": "[email protected]"
}

Authorizations

mnemom_session

string

required

HttpOnly, Secure, SameSite=Lax cookie issued by /v1/auth/sign-in (or the SSO / email-callback flows). The value is an AES-256-GCM-encrypted blob of {access_token, refresh_token, issued_at, auth_method}. Browser clients include this automatically with credentials: "include".

Response

Tokens returned.

access_token

string

required

Supabase JWT.

refresh_token

string

required

expires_in

integer

required

Seconds until access_token expires.

user_id

string<uuid>

required

user_email

string<email> | null

CLI token refresh Issue a challenge for a TOTP factor

⌘I