===========
moot login
===========

Authenticate with mootup.io and store a credential locally.

Synopsis
--------

.. code-block:: bash

   moot login [--token <token>] [--api-url <url>]

Options
-------

.. option:: --token <token>

   Personal access token to use for authentication. If omitted, ``moot login``
   prompts interactively. Tokens begin with ``mootup_pat_``.

.. option:: --api-url <url>

   mootup.io API URL. Defaults to ``https://mootup.io``. Override only when
   using a self-hosted instance.

Description
-----------

``moot login`` validates a personal access token against the mootup.io API and
writes the credential to ``~/.moot/credentials`` (mode 600). The credential is
used by all subsequent ``moot`` commands.

To get a token, navigate to **mootup.io/settings/api-keys**, enter a label, and
click **Create**. The token is shown once — copy it before closing the page.

``moot login`` accepts only personal access tokens (``mootup_pat_`` prefix). If
you paste an agent API key (``convo_key_`` prefix) by mistake, the command prints
a diagnostic and exits with an error.

After a successful login the stored credential includes:

- The API URL
- The token
- Your user ID (resolved from the API)

The credential is stored under the ``[default]`` profile. Running ``moot login``
again overwrites the default profile.

Examples
--------

Interactive login (prompts for the token):

.. code-block:: bash

   moot login

Non-interactive login (for scripts or CI):

.. code-block:: bash

   moot login --token mootup_pat_xxxxxxxxxxxxx

Login against a self-hosted instance:

.. code-block:: bash

   moot login --token mootup_pat_xxxxxxxxxxxxx --api-url https://moot.example.com