Whoami
Return the resolved authentication context for the current credential.
Useful for verifying that a Bearer JWT or API key is valid and discovering
which workspace and permission scopes it grants — call this first when
debugging authentication issues or bootstrapping an SDK integration.
The `auth_kind` field indicates whether the credential is a session token
(`clerk`) or a programmatic key (`api_key`). For API keys, `workspace_id`
and `api_key_id` are always populated; for session tokens, `workspace_id`
reflects the `X-Workspace-Id` header value (if present) and `api_key_id`
is `null`. The `scopes` list is sorted and deduplicated.
Authentication
AuthorizationBearer
Clerk JWT token
OR
AuthorizationBearer
Onepin live API key (op_live_...). Test and public keys are reserved in Phase 1.
Response
Successful Response
data
meta
Errors
422
Unprocessable Entity Error

