Download OpenAPI specification:Download
In business-to-business (B2B) use cases, organizations represent your business customers and partners. You can manage these organizations, and delegate access so they can manage their own membership. Using member APIs, organizations can manage the profiles of their users, control which apps they can access, and federate login to those apps using their own SAML-based identity providers.
Create an organization that represents your business customer or partner. This should be called from the backend, using an admin access token (generated by a management app).
{- "name": "string",
- "domain": "string",
- "app_ids": [
- "string"
], - "enabled": true
}{- "result": {
- "organization_id": "string",
- "app_ids": [
- "string"
], - "name": "string",
- "domain": "string",
- "created_at": 0,
- "updated_at": 0,
- "enabled": true,
- "managed_organizations_by_app": {
- "property1": [
- "string"
], - "property2": [
- "string"
]
}, - "managing_organization_id": "string",
- "logo_url": "string"
}
}Retrieve a list of all organizations. This should be called from the backend, using an admin access token (generated by a management app).
{- "result": [
- {
- "organization_id": "string",
- "app_ids": [
- "string"
], - "name": "string",
- "domain": "string",
- "created_at": 0,
- "updated_at": 0,
- "enabled": true,
- "managed_organizations_by_app": {
- "property1": [
- "string"
], - "property2": [
- "string"
]
}, - "managing_organization_id": "string",
- "logo_url": "string"
}
]
}Retrieve an organization by ID. This should be called from the backend, using an admin access token (generated by a management app)
{- "result": {
- "organization_id": "string",
- "app_ids": [
- "string"
], - "name": "string",
- "domain": "string",
- "created_at": 0,
- "updated_at": 0,
- "enabled": true,
- "managed_organizations_by_app": {
- "property1": [
- "string"
], - "property2": [
- "string"
]
}, - "managing_organization_id": "string",
- "logo_url": "string"
}
}Update an organization's basic configuration. This should be called from the backend, using an admin access token (generated by a management app).
{- "name": "string",
- "domain": "string",
- "enabled": true
}{- "result": {
- "organization_id": "string",
- "app_ids": [
- "string"
], - "name": "string",
- "domain": "string",
- "created_at": 0,
- "updated_at": 0,
- "enabled": true,
- "managed_organizations_by_app": {
- "property1": [
- "string"
], - "property2": [
- "string"
]
}, - "managing_organization_id": "string",
- "logo_url": "string"
}
}Delete an organization. This should be called from the backend, using an admin access token (generated by a management app).
{- "message": "Bad request",
- "error_code": 400
}Add apps to the organization so its members can access them. If the organization already has apps, this can be used to add additional ones. This should be called from the backend, using an admin access token (generated by a management app).
{- "app_ids": [
- "string"
]
}{- "message": "Bad request",
- "error_code": 400
}Remove apps from the organization so its members cannot access them. This should be called from the backend, using an admin access token (generated by a management app).
{- "app_ids": [
- "string"
]
}{- "message": "Bad request",
- "error_code": 400
}Upload the organization logo and update the logo URL in the database. This should be called from the backend, using an admin access token (generated by a management app).
Create a managed organization in context of a specific app. This should be called from the backend, using an admin access token (generated by a management app).
{- "name": "string",
- "domain": "string",
- "enabled": true
}{- "result": {
- "organization_id": "string",
- "app_ids": [
- "string"
], - "name": "string",
- "domain": "string",
- "created_at": 0,
- "updated_at": 0,
- "enabled": true,
- "managed_organizations_by_app": {
- "property1": [
- "string"
], - "property2": [
- "string"
]
}, - "managing_organization_id": "string",
- "logo_url": "string"
}
}Update the role groups of the organization for a specific application, which will replace any existing role groups for the organization. These role groups must first be created for the application. Once added to the organization, roles that belong to these role groups can be assigned to members of the organization to control their access to the application.
{- "role_group_ids": [
- "string"
]
}Retrieves all role groups that were added to the organization for a specific application. Roles that belong to these role groups can be assigned to members of the organization to control their access to the application.
{- "result": {
- "role_groups": [
- {
- "group_id": "string",
- "name": "string",
- "description": "string",
- "roles": [
- {
- "role_id": "string",
- "role_name": "string",
- "permissions": [
- "string"
], - "app_id": "string",
- "description": "string",
- "display_name": "string"
}
], - "display_name": "string"
}
], - "default_organization_roles": [
- {
- "role_id": "string",
- "role_name": "string",
- "permissions": [
- "string"
], - "app_id": "string",
- "description": "string",
- "display_name": "string"
}
]
}
}