Search Organization Users By Organization Id And Roles Search Term Using POST
Search all users who have at least one of the specified roles and/or resource.
Search by resource can be exact match or by resource starting with given term. At most one of the filters resource or resourceStartsWith may be provided.
For all users found by these search criteria the result contains all users roles, no matter if they are part of the search criteria or not.
To search by resource starting with given term provide resourceStartsWith.
If resource is empty then unscoped role assignments will be returned.
When role is provided and resource is null all role assignments will be returned.
When filterResults flag is true the result is filtered by search parameters from the request: resource, resourceStartsWith and roles names.
In this case the result contains just the roles that match the search criteria.
Paginated results - by default start index of results is 1 and default number of search results per page is 200.
Searching access restricted to Organization Owners, Read-only operators and Service Owners (for organizations that have access to the service).
Access Policy
| Role | User Accounts | Service Accounts (Client Credentials Applications) |
|---|---|---|
| Organization Admin | ✔️ | ✔️ |
| Organization Owner | ✔️ | ✔️ |
| Project Admin | ✔️ | ✔️ |
Unique identifier (GUID) of the organization.
Indicates if the response should be filtered by search parameters from the request: resource, resourceStartsWith and roles names (default: false).
{
"excludeRoles": false,
"expandProfile": false,
"includeGroupIdsInRoles": false,
"pageLimit": 0,
"pageStart": 0,
"resource": "string",
"resourceStartsWith": "string",
"rolesSearchTerm": {
"customRoles": [
{
"roleName": "string"
}
],
"orgRoles": [
{
"roleName": "string"
}
],
"serviceRoles": [
{
"serviceDefinitionId": "string",
"serviceRoles": [
{
"roleName": "string"
}
]
}
]
},
"searchType": "string",
"userSearchTerm": "string"
}Indicates if the response should exclude the roles of the user (default: false).
Indicates if the response should be expanded with the user profile (default: false).
Indicates if the inherited roles in the response should indicate group information (default: false).
Maximum number to return in response. Default value is 200.
Start index for querying. Default value is 1.
Resource to search for resource-scoped role assignments.
Resource to search for resource-scoped role assignments starting with given term. This field is deprecated. Consider using "resource" along with "searchType".
Defines the searching capability of the "resource" field value.
The string to be searched within email or firstName or lastName or username.Max search length is 120 characters. If it contains space separated terms, then the searchTerm is matched against possible firstName and lastName combinations. This search term is case insensitive.
OK
{
"itemsPerPage": 25,
"results": [
{
"customRoles": [
{
"createdBy": "string",
"createdDate": "string",
"expiresAt": 3609941597,
"lastUpdatedBy": "string",
"lastUpdatedDate": "string",
"membershipType": "string",
"name": "string",
"resource": "string"
}
],
"orgId": "string",
"organizationRoles": [
{
"createdBy": "string",
"createdDate": "string",
"displayName": "string",
"expiresAt": 3609941597,
"groupIds": [
"string"
],
"groups": [
{
"description": "string",
"displayName": "string",
"domain": "string",
"groupType": "string",
"id": "string",
"ownerOrgId": "string",
"sharedOrgIds": [
"string"
],
"usersCount": 0
}
],
"lastUpdatedBy": "string",
"lastUpdatedDate": "string",
"membershipType": "string",
"name": "string",
"resource": "string"
}
],
"serviceRoles": [
{
"serviceDefinitionId": "string",
"serviceRoleNames": [
"string"
],
"serviceRoles": [
{
"createdBy": "string",
"createdDate": "string",
"expiresAt": 3609941597,
"groupIds": [
"string"
],
"groups": [
{
"description": "string",
"displayName": "string",
"domain": "string",
"groupType": "string",
"id": "string",
"ownerOrgId": "string",
"sharedOrgIds": [
"string"
],
"usersCount": 0
}
],
"lastUpdatedBy": "string",
"lastUpdatedDate": "string",
"membershipType": "string",
"name": "string",
"resource": "string"
}
]
}
],
"user": {
"accessible": false,
"acct": "string",
"domain": "string",
"email": "string",
"firstName": "string",
"idpId": "string",
"lastName": "string",
"userId": "string",
"userProfile": {
"alternativeEmail": "string",
"language": "string",
"locale": "string"
},
"username": "string"
}
}
],
"startIndex": 5,
"totalResults": 2000
}Number of items per page.
Start index of the results.
Total number of results if available
At least one role search term must be specified
{
"cspErrorCode": "string",
"errorCode": "string",
"message": "string",
"moduleCode": 0,
"requestId": "string",
"statusCode": 0
}cspErrorCode
errorCode
message
moduleCode
requestId
statusCode
The user is not authorized to use the API
{
"cspErrorCode": "string",
"errorCode": "string",
"message": "string",
"moduleCode": 0,
"requestId": "string",
"statusCode": 0
}cspErrorCode
errorCode
message
moduleCode
requestId
statusCode
The user is forbidden to use the API
{
"cspErrorCode": "string",
"errorCode": "string",
"message": "string",
"moduleCode": 0,
"requestId": "string",
"statusCode": 0
}cspErrorCode
errorCode
message
moduleCode
requestId
statusCode
Organization with this identifier is not found.
{
"cspErrorCode": "string",
"errorCode": "string",
"message": "string",
"moduleCode": 0,
"requestId": "string",
"statusCode": 0
}cspErrorCode
errorCode
message
moduleCode
requestId
statusCode
The request could not be processed due to a conflict
{
"cspErrorCode": "string",
"errorCode": "string",
"message": "string",
"moduleCode": 0,
"requestId": "string",
"statusCode": 0
}cspErrorCode
errorCode
message
moduleCode
requestId
statusCode
The user has sent too many requests
{
"cspErrorCode": "string",
"errorCode": "string",
"message": "string",
"moduleCode": 0,
"requestId": "string",
"statusCode": 0
}cspErrorCode
errorCode
message
moduleCode
requestId
statusCode
An unexpected error has occurred while processing the request
{
"cspErrorCode": "string",
"errorCode": "string",
"message": "string",
"moduleCode": 0,
"requestId": "string",
"statusCode": 0
}cspErrorCode
errorCode
message
moduleCode
requestId
statusCode