Approve a pending CLI login grant

Requires Firebase JWT (`[Authorize]`) — only a signed-in user can mint an API key for themselves via this path. The route's `{tenant}` segment is enforced by `TenantMiddleware`: the signed-in user must have access to it.

Authorization

Bearer

AuthorizationBearer <token>

JWT Authorization header using the Bearer scheme. Enter 'Bearer' [space] and then your token.

In: header

Path Parameters

grantCode*string

The one-time grant code from the URL the CLI opened.

tenant*string

The tenant identifier

Request Body

preset?string|null

Named preset to mint the CLI key with. One of runner, builder, read-only, admin. When null or empty, defaults to runner — the least-privilege option that still lets a CLI session invoke a deployed agent.

[key: string]?never

Response Body

curl -X POST "https://api.fruxon.com/v1/tenants/string/cliAuth/string:approve" \
  -H "Content-Type: application/json" \
  -d '{}'

curl -X POST "https://api.fruxon.com/v1/tenants/string/cliAuth/string:approve" \  -H "Content-Type: application/json" \  -d '{}'

Empty

{
  "type": "string",
  "title": "string",
  "status": 0,
  "detail": "string",
  "instance": "string",
  "property1": null,
  "property2": null
}

{
  "type": "string",
  "title": "string",
  "status": 0,
  "detail": "string",
  "instance": "string",
  "property1": null,
  "property2": null
}

{
  "type": "string",
  "title": "string",
  "status": 0,
  "detail": "string",
  "instance": "string",
  "property1": null,
  "property2": null
}

{
  "type": "string",
  "title": "string",
  "status": 0,
  "detail": "string",
  "instance": "string",
  "property1": null,
  "property2": null
}

Approve a pending CLI login grant

Authorization

Path Parameters

Request Body

Response Body

204

400

401

403

404