To keep the API consistent, rework the endpoint /accounts POST (or any other method) to live under /profiles. The only two that appear to be needed are
/profiles/register POST - create a user record (PUBLICLY ACCESSIBLE, BE CAUTIOUS)
/profiles/me GET - fetch the current user's (login required, get currently logged in user)
/profiles/me PUT - update the current users profile (login required, get currently logged in user)
/profiles/me DELETE - logically deletes the current user and logs out the user
To keep the API consistent, rework the endpoint /accounts POST (or any other method) to live under /profiles. The only two that appear to be needed are
/profiles/register POST - create a user record (PUBLICLY ACCESSIBLE, BE CAUTIOUS) /profiles/me GET - fetch the current user's (login required, get currently logged in user) /profiles/me PUT - update the current users profile (login required, get currently logged in user) /profiles/me DELETE - logically deletes the current user and logs out the user