Authentication

TaxSplit uses wallet-based authentication with JWT tokens. Obtain a token via the challenge-verify flow, then include it in the Authorization header for authenticated endpoints.

Challenge → verify flow

Request a challenge

Call POST /auth/challenge with the user’s wallet address.

Sign the message

Sign the returned challenge string with the user’s Solana wallet.

Verify the signature

Call POST /auth/verify with the wallet address, signature, and signed message to receive a JWT.

Send the JWT

Include the token in every authenticated request:

Authorization: Bearer <token>

Token expiry

Token expires in: 7 days

Auth endpoints
Error handling

PreviousOverview NextRate limits

Last updated 1 month ago

Good evening

hashtagChallenge → verify flow

hashtagRequest a challenge

hashtagSign the message

hashtagVerify the signature

hashtagSend the JWT

hashtagToken expiry

hashtagRelated