JWT | St John Technical Documentation

Validate JWT token

post

/jwt/validate

Validate a JWT token and return user information

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Responses

200

Token is valid

application/json

401

Invalid or expired token

application/json

409

Session conflict - another device is logged in

application/json

post

/jwt/validate

POST /v1/jwt/validate HTTP/1.1
Host: api.example.com
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "message": "Token is valid",
  "user": {
    "username": "text",
    "loginType": "EMAIL",
    "sessionId": "text",
    "memberId": "text",
    "iat": 1,
    "exp": 1
  }
}

Verify reset password token

post

/jwt/verify-reset-password

Verify a reset password JWT token

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Body

tokenstringRequired

Reset password JWT token

Responses

200

Token is valid

application/json

401

Unauthorized access

application/json

500

Internal server error

application/json

post

/jwt/verify-reset-password

POST /v1/jwt/verify-reset-password HTTP/1.1
Host: api.example.com
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 16

{
  "token": "text"
}

{
  "success": true,
  "message": "Token is valid",
  "data": {
    "email": "[email protected]",
    "iat": 1,
    "exp": 1
  }
}

Verify registration token

post

/jwt/verify-registration

Verify a registration JWT token and return member data

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Body

tokenstringRequired

Registration JWT token

Responses

200

Token is valid

application/json

400

Invalid token data structure

application/json

401

Unauthorized access

application/json

500

Internal server error

application/json

post

/jwt/verify-registration

POST /v1/jwt/verify-registration HTTP/1.1
Host: api.example.com
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 16

{
  "token": "text"
}

{
  "success": true,
  "message": "Token is valid",
  "data": {
    "member": {
      "email": "[email protected]",
      "password": "text",
      "memberCode": "text",
      "title": "text",
      "fullName": "text",
      "gender": "text",
      "occupation": "text",
      "icNo": "text",
      "dateOfBirth": "2025-12-16",
      "race": "text",
      "address1": "text",
      "postcode": "text",
      "state": "text",
      "phoneNo": "text"
    },
    "proveOfMembership": {
      "memberState": "text",
      "area": "text",
      "section": "text",
      "membershipType": "text",
      "dateOfIssue": "2025-12-16",
      "position": "text",
      "rankMarking": "text",
      "dateOfAssignment": "2025-12-16"
    }
  }
}

Get current user from token

get

/jwt/current-user

Extract current user information from JWT token

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Responses

200

Current user retrieved successfully

application/json

401

Unauthorized access

application/json

500

Internal server error

application/json

get

/jwt/current-user

GET /v1/jwt/current-user HTTP/1.1
Host: api.example.com
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "success": true,
  "message": "Current user retrieved successfully",
  "data": {
    "username": "text",
    "loginType": "EMAIL",
    "sessionId": "text",
    "memberId": "text"
  }
}

Good night

Validate JWT token

Verify reset password token

Verify registration token

Get current user from token