API Reference

Create a new end-user account.

{
  "email": "user@example.com",
  "password": "min8chars"
}

Returns user + session_token (mms_...).

Authenticate an existing user.

{ "email": "...", "password": "..." }

Invalidate a session. Send the session token as Authorization: Bearer mms_....

Get the current user. Requires Authorization: Bearer mms_....

Send a passwordless sign-in email.

{ "email": "user@example.com" }

Verify a magic link token. Returns user + session token.

Create a document. Body is any JSON object. Optionally include an id field; otherwise one is auto-generated.

Get a single document by ID.

Replace a document entirely.

Merge fields into a document. Set a field to null to delete it.

Delete a document.

{
  "filter": {
    "status": "active",
    "age": { "$gte": 21 }
  },
  "sort": [{ "field": "created_at", "order": "desc" }],
  "limit": 20,
  "start_after": "lastDocId"
}

Operators: $eq, $ne, $gt, $gte, $lt, $lte, $in (max 30), $prefix.

Inequality filters work on one field only. Pagination is cursor-based via start_after.

List all collections in the project.

Mint a scoped JWT. Requires API key auth (not a scoped token).

{
  "scope": {
    "todos": { "user_id": "abc123" },
    "*": {}
  },
  "ttl": 3600
}

Scope maps collection names to required field filters. Use * for wildcard. Max TTL: 24 hours.