Function ory_client::apis::v0alpha2_api::initialize_self_service_login_flow_without_browser

pub async fn initialize_self_service_login_flow_without_browser(
    configuration: &Configuration, 
    refresh: Option<bool>, 
    aal: Option<&str>, 
    x_session_token: Option<&str>
) -> Result<SelfServiceLoginFlow, Error<InitializeSelfServiceLoginFlowWithoutBrowserError>>

This endpoint initiates a login flow for API clients that do not use a browser, such as mobile devices, smart TVs, and so on. If a valid provided session cookie or session token is provided, a 400 Bad Request error will be returned unless the URL query parameter ?refresh=true is set. To fetch an existing login flow call /self-service/login/flows?flow=<flow_id>. You MUST NOT use this endpoint in client-side (Single Page Apps, ReactJS, AngularJS) nor server-side (Java Server Pages, NodeJS, PHP, Golang, …) browser applications. Using this endpoint in these applications will make you vulnerable to a variety of CSRF attacks, including CSRF login attacks. In the case of an error, the error.id of the JSON response body can be one of: session_already_available: The user is already signed in. session_aal1_required: Multi-factor auth (e.g. 2fa) was requested but the user has no session yet. security_csrf_violation: Unable to fetch the flow because a CSRF violation occurred. This endpoint MUST ONLY be used in scenarios such as native mobile apps (React Native, Objective C, Swift, Java, …). More information can be found at Ory Kratos User Login and User Registration Documentation.