Social Media API Docs | Youssef Sherif

1) API Group: Auth

Authentication and account lifecycle endpoints with secure token flow and validation for request payloads.

POST

/auth/signup Create a new user account with Zod-validated input payloads.

POST

/auth/login Authenticate user credentials and issue access/refresh tokens.

POST

/auth/login-gmail Login with Gmail OAuth and create session tokens for trusted clients.

POST

/auth/forget-password Generate password reset flow and send reset instructions to user email.

PATCH

/auth/reset-password Reset account password using a valid reset token.

GET

/auth/refresh-token Issue a new access token using a valid refresh token.

PATCH

/auth/confirm-email Confirm user email address and activate account verification state.

PATCH

/auth/update-password Update current password for logged-in users with security checks.

POST

/auth/logout Invalidate current session token and close active session.

Endpoints to create, fetch, update, and remove posts with clean OOP controllers/services and MongoDB persistence.

POST

/posts Create a new post after Zod schema validation.

GET

/posts Retrieve feed posts with pagination support.

PATCH

/posts/:id Update an existing post with ownership checks.

DEL

/posts/:id Delete a post and related references safely.