api
api.elonn.local is the shared identity authority for Elonn. Production is api.elonn.com.
This service owns authentication, identity sessions, and the member directory. All other services validate identity through API endpoints and must not connect directly to the elonn_api database.
Owns
- member identity records
- auth tokens (
elonn_api_tokencookie) - account credential validation for CalDAV clients
- member directory
Role in the stack
elonn.localposts login and registration requests hereweb.elonn.localvalidates the shared auth cookie through/identity/meworld.elonn.local,time.elonn.local,social.elonn.local, andadmin.elonn.localvalidate identity through API endpointsworld.elonn.local,messages.elonn.local, andsocial.elonn.localuse/identity/membersfor member selection, open Message recipient lookup, and Social DM recipient lookup
Routes
POST /identity/register
POST /identity/login
GET /identity/me
GET /identity/members
POST /identity/logout
POST /identity/dav/validate
GET /admin/members
POST /admin/members/update
GET /health
GET /ready
Key configuration
| Key | Purpose |
|---|---|
ELONN_API_BASE_URL |
Used by all consuming services to locate this service |
ADMIN_ALLOWED_EMAILS |
Comma-separated operator allowlist for admin routes |