# REST API

Base URL: `/api`

Public endpoints:

- `POST /tokens` creates a Sanctum token for approved users.
- `POST /otp/request` issues a 6-digit OTP for SMS or email verification.
- `POST /otp/verify` verifies an OTP before login or sensitive flows.
- `POST /leads` submits a pending lead.
- `POST /loan-calculator` returns EMI, total interest, total repayment and processing cost.
- `GET /bank-comparison` compares active bank rates by loan type.

Authenticated endpoints:

- `GET /user`
- `GET /clients`
- `GET /loans`

Use `Authorization: Bearer <token>` for authenticated calls.