# Authenticate user and return access and refresh tokens

Authenticate user with credentials and return an accessToken (JWT), refreshToken, and user info on success.

Endpoint: POST /auth/login
Version: 1.0.0
Security: BearerAuth

## Request fields (application/json):

  - `username` (string, required)
    Example: "test@email.com"

  - `password` (string, required)
    Example: "Ni*nsl$k3n("

## Response 200 fields (application/json):

  - `username` (string)
    Example: "test@email.com"

  - `accessToken` (string)
    Example: "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."

  - `refreshToken` (string)
    Example: "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."

  - `expirationTimeInUTC` (string)
    Example: "2024-02-29T15:09:14.242875589"

  - `roles` (array)

  - `tenantId` (string)
    Example: "tenant123"

  - `services` (array)

## Response 400 fields (application/json):

  - `error` (string)
    Example: "Invalid credentials"