---
title: "Authentication API Technical Reference"
description: "The Authentication API accepts a user email address and password and returns a user session token to use with other API endpoints."
meta_title: "Authentication API Technical Reference"
audience: developers
lastUpdated: "2025-11-06T01:07:50.000Z"
---

The Authentication API accepts a user email address and password and returns a user session token to use with other API endpoints (such as the [Types API](https://prismic.io/docs/custom-types-api.md)).

***

The endpoint URL for the Authentication API is `https://auth.prismic.io/login` and the method is POST.

In your request headers, set `Content-Type` to `application/json`.

In the request body, include a email and password properties, like so:

```json
{
  "email": "john.doe@your-website.com",
  "password": "yourPassword"
}
```

If the request is successful, you will receive a `200` response containing the user session token.