I am creating a REST api, closely following apigee suggestions, using nouns not verbs, api version baked into the url, two api paths per collection, GET POST PUT DELETE usage, etc.
I am working on the login system, but unsure of the proper REST way to login users. I am not working on security at this point, just the login pattern or flow. (Later we will be adding 2 step oAuth, with an HMAC, etc)
Possible Options
- A POST to something like
https://api...com/v1/login.json - A PUT to something like
https://api...com/v1/users.json - Something I have not though of…
What is the proper REST style for logging in users?