4.1.3 Cautions

Currently, API is used for both providing data to the web interface (REST) and user HTTP API requirements. Thus, the data that can be viewed and configured via the web can be available in API despite not being documented.
API now supports just one web interface login at a time. Hence, if a web interface is open and the user logs in to another one, API will log the user out of the first one. This will become obvious when the user enters another request via the web and is forwarded to the login dialogue. This means that the web is used by another user and data might be overwritten.

HTTP API has no such limitation. This means that more users may be authenticated, but mutual data overwriting is not checked and has to be solved by the developer.