circle-info
Read on newly released AI assisted Insights
flxbl docsarrow-up-right
search
Learn CD Concepts using LabsslackGitHub

Users

hashtag
Get user by email

get

Retrieves detailed information about a specific user by their email address.

    Access control:
    - Self-lookup: Users can always retrieve their own full profile
    - Owner lookup: Owners can view other users but receive limited data (no sensitive auth metadata)
    - Team-specific lookup: Optionally filter by team using the team slug parameter
    
    Returns user profile including account details, team memberships, and appropriate metadata based on access level.
Authorizations
AuthorizationstringRequired
Bearer authentication header of the form Bearer <token>.
Path parameters
emailstringRequired

User email

Query parameters
teamstringOptional

Team slug (optional for self-lookups)

Responses
chevron-right
200

User profile retrieved successfully

application/json
get
/sfp/api/users/{email}

hashtag
Update user details

put

Updates user profile information. Users can update: - Their own profile (self-update) - Other users' profiles if they have owner role

    Updatable fields include:
    - User metadata (first name, last name)
    - Role assignments within teams
    - Team associations
    
    The endpoint validates permissions and ensures users cannot escalate their own privileges. Returns the updated user profile on success.
Authorizations
AuthorizationstringRequired
Bearer authentication header of the form Bearer <token>.
Path parameters
emailstringRequired

User email

Query parameters
teamstringOptional

Team slug (optional)

Body
firstNamestringOptional

First name of the user

Example: John
lastNamestringOptional

Last name of the user

Example: Doe
rolestring · enumOptional

Role of the user in the team

Possible values:
Responses
chevron-right
200

User updated successfully

application/json
put
/sfp/api/users/{email}

hashtag
List users or lookup by GitHub username/email

get

Three modes of operation:

    **Lookup by GitHub** (when lookup=github):
    - Resolves a GitHub username to user profile
    - Use: GET /users?lookup=github&id=<username>
    - Returns full user profile or 404 if not found
    
    **Lookup by Email** (when lookup=email):
    - Looks up user by email address
    - Use: GET /users?lookup=email&id=<email>
    - Returns full user profile or 404 if not found
    
    **List mode** (default):
    - Retrieves a paginated list of users
    - Can filter by team (using team slug) or role
    - Returns user details including email, role, team memberships
Authorizations
AuthorizationstringRequired
Bearer authentication header of the form Bearer <token>.
Query parameters
lookupstring · enumOptional

Lookup mode

Possible values:
idstringOptional

Identifier for lookup (GitHub username or email)

Example: octocat
teamstringOptional

Team slug to filter by

Example: engineering
limitnumberOptional

Number of records to return

Example: 10
offsetnumberOptional

Number of records to skip

Example: 0
rolestring · enumOptional

Filter by role

Possible values:
Responses
chevron-right
200

Users retrieved successfully or lookup successful

application/json
get
/sfp/api/users

hashtag
Get current user profile

get

Retrieves the complete profile of the currently authenticated user. Returns: - User identification (ID, email) - Account details and role - Team memberships - Authentication metadata (first name, last name) - JWT token information if available

    This endpoint is useful for applications to understand the current user's permissions and profile after authentication.
Authorizations
AuthorizationstringRequired
Bearer authentication header of the form Bearer <token>.
Responses
chevron-right
200

User profile retrieved successfully

application/json
get
/sfp/api/users/me

hashtag
Delete a user from a team

delete

Removes a user from a team or from all teams. This endpoint: - Removes the user's team membership(s) - Revokes access to team resources - Optionally removes from all teams if no team is specified - Does not delete the user account itself (user can still log in but won't have team access)

    Only users with owner role can delete users. Users cannot delete themselves. If removing from all teams, the user effectively loses all access to the system.
Authorizations
AuthorizationstringRequired
Bearer authentication header of the form Bearer <token>.
Body
emailstringRequired

Email address of the user to remove

Example: [email protected]
teamstringOptional

Team identifier (slug) to remove the user from. If not provided, user will be removed from all teams.

Example: engineering
Responses
chevron-right
200

User deleted successfully

application/json
delete
/sfp/api/users

hashtag
Create a new user in a team

post

Creates a new user account and adds them to the specified team. This endpoint: - Creates the user in the authentication system - Assigns the specified role (owner, member, or application) - Associates the user with the team - Sends a welcome email with login instructions

    Only users with owner role can create new users. The email must be unique across the system. If the user already exists in another team, they will be added to the specified team with the given role.
Authorizations
AuthorizationstringRequired
Bearer authentication header of the form Bearer <token>.
Body
firstNamestringRequired

First name of the user

Example: John
lastNamestringRequired

Last name of the user

Example: Doe
emailstringRequired

Email address of the user

Example: [email protected]
teamstringRequired

Team identifier (slug) to add the user to

Example: engineering
rolestring · enumRequired

Role of the user in the team

Default: memberPossible values:
Responses
post
/sfp/api/users