Given a username and a password return an API token

Changes the password of an authenticated user.

Create a new token. See web service documentation for more info.

Takes a `deregistration` token to delete the authenticated user.

Creates a deregistration token which is to be passed to `delete-account`.

Login the user using their username and password. Returns their new API token.
If :token is present in `service`, it will get added to the Authorization header
so that the anonymously saved lists gets merged into the users account.

Logout the authenticated user, invalidating the token provided in their
Authorization header.

Commence authentication for logging in using OAuth 2.0 with specified
provider.  Will return a URL to redirect to the external login page.
Remember to append a `redirect_uri` parameter to the URL before redirecting.
This should be an endpoint which will be redirected to after signing in at
the third-party, passing parameters required for the `oauth2callback`.
Note that the redirect URL might be checked against a whitelist.

Complete authentication for logging in using OAuth 2.0. Requires parameters
state and code, which are received when redirecting back from the external
login service in `oauth2authenticator`, in addition to provider which should
be identical to the one passed to `oauth2authenticator`.

Reset the user's password using the token received from
`request-password-reset` and newPassword.

Register a new user account.

Sends a password reset email to the user containing a specified redirectUrl
with a token appended as a query string.

Given a token return user information