sendico/interface/api/accounts/auth_login.yaml

post:
  tags: [Accounts, Auth]
  summary: Login using email/password and receive pending verification token
  description: |
    Validates account credentials and returns a short-lived `pendingToken`.
    This endpoint does not return final access/refresh tokens; complete verification flow via `/verification/verify`.
  operationId: accountsLogin
  requestBody:
    $ref: ./bodies/auth.yaml#/components/requestBodies/LoginBody
  responses:
    '202':
      description: Pending verification token issued
      content:
        application/json:
          schema:
            allOf:
              - $ref: ../response/response.yaml#/components/schemas/BaseResponse
              - type: object
                properties:
                  data:
                    $ref: ./response/auth.yaml#/components/schemas/PendingLoginData
    '400':
      $ref: ../response/operation.yaml#/components/responses/BadRequest
    '401':
      $ref: ../response/operation.yaml#/components/responses/Unauthorized
    '403':
      $ref: ../response/operation.yaml#/components/responses/Forbidden
    '500':
      $ref: ../response/operation.yaml#/components/responses/InternalServerError