Skip to main content
POST
/
user
/
v1
/
sessions
Mint scoped short-lived session
curl --request POST \
  --url https://api.machines.cash/user/v1/sessions \
  --header 'Content-Type: application/json' \
  --header 'X-User-Key: <api-key>' \
  --data '
{
  "scopes": [
    "cards.read"
  ],
  "ttlSeconds": 900
}
'
{
  "ok": true,
  "data": {},
  "summary": "success"
}

Documentation Index

Fetch the complete documentation index at: https://docs.machines.cash/llms.txt

Use this file to discover all available pages before exploring further.

Authorizations

X-User-Key
string
header
required

User API key header. Legacy X-Consumer-Key is also accepted for backward compatibility.

Body

application/json
scopes
enum<string>[]
Available options:
users.read,
users.write,
kyc.read,
kyc.write,
agreements.read,
agreements.write,
onboarding.read,
onboarding.write,
cards.read,
cards.write,
cards.secrets.read,
folders.read,
folders.write,
balances.read,
contracts.read,
contracts.write,
deposits.read,
deposits.write,
withdrawals.write,
transactions.read,
tokens.read,
encryption.read,
encryption.write,
identity.read,
identity.write,
payments.read,
payments.write,
subscriptions.read,
subscriptions.write,
notifications.read,
notifications.write,
referrals.read,
referrals.write,
bills.read,
bills.write,
support.read,
spotlight.read,
keys.read,
keys.write,
sessions.write
ttlSeconds
integer
Required range: 60 <= x <= 86400
policy
object

Response

Success

sessionToken
string
sessionId
string
expiresAt
string<date-time>
scopes
string[]