Admin Bootstrap Users

Use this when setting up partners and their initial users.

POST /api/admin/login

Request body:

Field	Type	Required	Notes
`email`	string	Yes	Admin email
`password`	string	Yes	MD5 string

Example:

{
  "email": "admin@company.com",
  "password": "<MD5_PASSWORD_HASH>"
}

Response:

{
  "data": {
    "accessToken": "eyJhbGciOi...",
    "expiration": 604800
  },
  "message": "success"
}

2) Create Partner User (Admin)

Requires:

Authorization: Bearer <admin_jwt>

Endpoint:

POST /api/admin/partners/users

Request body:

Field	Type	Required	Notes
`partnerId`	string	Yes	Mongo ObjectId
`email`	string	Yes	User email
`password`	string	Yes	MD5 string
`firstName`	string	No	Optional
`lastName`	string	No	Optional
`phoneNumber`	string	No	Optional
`role`	string	Yes	`admin` or `user`

Example:

{
  "partnerId": "67a84f588277d6f3bc5ecfff",
  "email": "owner@partner.com",
  "password": "<MD5_PASSWORD_HASH>",
  "firstName": "Owner",
  "lastName": "Partner",
  "role": "admin"
}

3) List Partner Users (Admin)

GET /api/admin/partners/users?partnerId=<partnerId>

partnerId query is optional. If omitted, all users are listed.

4) Delete User (Admin)

DELETE /api/admin/partners/users/:id

Common Errors

400 Email or password is not correct
409 Conflict on duplicate email under same partner
401 Unauthorized for missing/invalid admin JWT

Overview

Core OTA APIs

BRG Radar APIs

PageOne Travel AI Agent API

Partner Management APIs

Admin APIs

Shared Models

2) Create Partner User (Admin)

3) List Partner Users (Admin)

4) Delete User (Admin)

Common Errors

Overview

Core OTA APIs

BRG Radar APIs

PageOne Travel AI Agent API

Partner Management APIs

Admin APIs

Shared Models

​1) Admin Login (Public)

​2) Create Partner User (Admin)

​3) List Partner Users (Admin)

​4) Delete User (Admin)

​Common Errors

1) Admin Login (Public)

2) Create Partner User (Admin)

3) List Partner Users (Admin)

4) Delete User (Admin)

Common Errors