did you also provided a json with:
{
"identifier": "registered.name@email.com",
"password": "same-as-the-one-set",
}
… or a form having same fields?
That api endpoint is for authentication, the response will be a json containg the autorization jwt, once you get it you can use it to authorize access to protected api routes, like: /users/me