JWT | St John Technical Documentation

Validate JWT token

post

/jwt/validate

Validate a JWT token and return user information

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Responses

200

Token is valid

application/json

401

Invalid or expired token

application/json

409

Session conflict - another device is logged in

application/json

post

/jwt/validate

POST /v1/jwt/validate HTTP/1.1
Host: api.example.com
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "message": "Token is valid",
  "user": {
    "username": "text",
    "loginType": "EMAIL",
    "sessionId": "text",
    "memberId": "text",
    "iat": 1,
    "exp": 1
  }
}

Verify reset password token

post

/jwt/verify-reset-password

Verify a reset password JWT token

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Body

tokenstringRequired

Reset password JWT token

Responses

200

Token is valid

application/json

401

Unauthorized access

application/json

500

Internal server error

application/json

post

/jwt/verify-reset-password

POST /v1/jwt/verify-reset-password HTTP/1.1
Host: api.example.com
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 16

{
  "token": "text"
}

{
  "success": true,
  "message": "Token is valid",
  "data": {
    "email": "[email protected]",
    "iat": 1,
    "exp": 1
  }
}

Verify registration token

post

/jwt/verify-registration

Verify a registration JWT token and return member data

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Body

tokenstringRequired

Registration JWT token

Responses

200

Token is valid

application/json

400

Invalid token data structure

application/json

401

Unauthorized access

application/json

500

Internal server error

application/json

post

/jwt/verify-registration

POST /v1/jwt/verify-registration HTTP/1.1
Host: api.example.com
Authorization: Bearer YOUR_SECRET_TOKEN
Content-Type: application/json
Accept: */*
Content-Length: 16

{
  "token": "text"
}

{
  "success": true,
  "message": "Token is valid",
  "data": {
    "member": {
      "email": "[email protected]",
      "password": "text",
      "memberCode": "text",
      "title": "text",
      "fullName": "text",
      "gender": "text",
      "occupation": "text",
      "icNo": "text",
      "dateOfBirth": "2026-02-14",
      "race": "text",
      "address1": "text",
      "postcode": "text",
      "state": "text",
      "phoneNo": "text"
    },
    "proveOfMembership": {
      "memberState": "text",
      "area": "text",
      "section": "text",
      "membershipType": "text",
      "dateOfIssue": "2026-02-14",
      "position": "text",
      "rankMarking": "text",
      "dateOfAssignment": "2026-02-14"
    }
  }
}

Get current user from token

get

/jwt/current-user

Extract current user information from JWT token

Authorizations

AuthorizationstringRequired

Bearer authentication header of the form Bearer <token>.

Responses

200

Current user retrieved successfully

application/json

401

Unauthorized access

application/json

500

Internal server error

application/json

get

/jwt/current-user

GET /v1/jwt/current-user HTTP/1.1
Host: api.example.com
Authorization: Bearer YOUR_SECRET_TOKEN
Accept: */*

{
  "success": true,
  "message": "Current user retrieved successfully",
  "data": {
    "username": "text",
    "loginType": "EMAIL",
    "sessionId": "text",
    "memberId": "text"
  }
}

Good night

hashtagValidate JWT token

hashtagVerify reset password token

hashtagVerify registration token

hashtagGet current user from token

Validate JWT token

Verify reset password token

Verify registration token

Get current user from token