Mender Auth Request
POST
/api/devices/v1/authentication/auth_requests
Mender-compatible authentication endpoint.
Accepts two auth modes:
-
X-API-Key header (soc-ota-agent wrapper) — validates the key and returns a text response for backward compatibility.
-
Mender native — the client sends a JSON body with
tenant_tokenset to the API key. The server validates the token and returns a signed JWT that the client uses asAuthorization: Bearer <jwt>on subsequent requests.
The native Mender client (otapulse) uses mode 2. Without this, all Mender API calls fail with 422 because the required X-API-Key header is missing.
Responses
200
Successful Response