Check session

POST 
/v1/auth

Validate session and get player account info

Required headers:

• X-Payload-Signature — HMAC-SHA256 hex signature of the request body
• Session — JWT token identifying the authenticated player

Responses

200

Successful Response

401

Invalid or expired session token.

403

HMAC signature verification failed.

5XX

Server error — the platform retries up to 3 times with exponential backoff before treating the request as failed.