Login - Publive Docs

curl --request POST \
  --url https://cms.thepublive.com/publisher/{publisher_id}/reader/login/ \
  --header 'Authorization: Basic <encoded-value>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "email": "<string>",
  "password": "<string>",
  "g-recaptcha-response": "<string>",
  "client": "<string>"
}
'

{
  "status": "ok",
  "message": "User sign in success",
  "token": "abc123def456",
  "user_id": 42,
  "email": "alice@example.com"
}

POST

publisher

{publisher_id}

reader

curl --request POST \
  --url https://cms.thepublive.com/publisher/{publisher_id}/reader/login/ \
  --header 'Authorization: Basic <encoded-value>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "email": "<string>",
  "password": "<string>",
  "g-recaptcha-response": "<string>",
  "client": "<string>"
}
'

{
  "status": "ok",
  "message": "User sign in success",
  "token": "abc123def456",
  "user_id": 42,
  "email": "alice@example.com"
}

Authenticates a reader and returns an opaque session token. Supports two flows — email/password and OAuth (Google, Facebook) — on the same endpoint. The active flow is determined by the presence of the client field.

publisher_id

string

required

Your Publisher ID

Use Content-Type: application/json for OAuth logins. For email/password, both application/json and form encoding are accepted.

Email / password flow — omit client

string

required

Reader’s email address. Normalized to lowercase before forwarding.

password

string

required

Reader’s password.

g-recaptcha-response

string

reCAPTCHA token from the client widget. Only applicable to this flow. Required when your publisher has a login_captcha.secret_key configured.

OAuth flow — include client to switch to this path. password is not accepted in this flow.

client

string

OAuth provider. Accepted values: google, facebook. Presence of this field activates the OAuth flow.

string

Email from the OAuth provider. Required when using OAuth. Normalized to lowercase.

Google OAuth — extra fields

Field	Type	Description
`sub`	string	Google subject identifier
`name`	string	Full name
`given_name`	string	First name
`family_name`	string	Last name
`picture`	string	Profile photo URL
`email_verified`	boolean	Whether Google has verified the email
`hd`	string	Hosted domain (G Suite accounts)

The full raw body is forwarded to the backend as JSON.

Facebook OAuth — extra fields

Field	Type	Description
`id`	string	Facebook user ID
`name`	string	Full name
`first_name`	string	First name
`last_name`	string	Last name
`picture`	object	Profile picture object

The full raw body is forwarded to the backend as JSON.

{
  "status": "ok",
  "message": "User sign in success",
  "token": "abc123def456",
  "user_id": 42,
  "email": "alice@example.com"
}

Last modified on June 5, 2026

Overview

Logout