User

User Management and Authentication

PreviousAPI Specifications NextAccess Control

Last updated 1 year ago

Was this helpful?

Create a new User.

To create new User(s) in the system. API supports bulk creation with max limit as defined in the UserReq. Please note that either whole batch succeeds or fails, there's no partial batch success. To create one user, please pass array with one user object.

Users can be created based on the roles. Users with types as SYSTEM and EMPLOYEE can create other users if their RBAC mapping provides them the permission. Users with CITIZEN type can only create themselves, while EMPLOYEE and SYSTEM type users can also create other EMPLOYEES and CITIZENS.

User registration will always be a two step process, where this API will create a non authenticated user (without password) and after verification (using OTP) other user details (including password) can be updated using update user API to complete the user registration process.

post

/_create

Body

RequestInfoobjectrequired

RequestInfo should be used to carry meta information about the requests to the server as described in the fields below. All eGov APIs will use requestinfo as a part of the request body to carry this meta information. Some of this information will be returned back from the server as part of the ResponseInfo in the response body to ensure correlation.

Usersobject[] · min: 1 · max: 100required

Responses

*/*

cURL

JavaScript

Python

HTTP

curl -L \
  --request POST \
  --url '/users/v110/_create' \
  --header 'Content-Type: application/json' \
  --data '{"RequestInfo":{"apiId":"text","ver":"text","ts":1,"action":"text","msgId":"text","userInfo":{"tenantId":"text","userName":"text","primaryrole":[{"name":"text"}],"additionalroles":[{"tenantId":"text","roles":[{"name":"text"}]}]}},"Users":[{"tenantId":"text","userName":"text","name":"text","mobileNumber":"text","active":true,"locale":"text","accountLocked":false,"userDetails":{},"auditDetails":{},"roles":[{"name":"text"}],"gender":["MALE"],"type":["EMPLOYEE"]}]}'

201

400

{
  "ResponseInfo": {
    "apiId": "text",
    "ver": "text",
    "ts": 1,
    "resMsgId": "text",
    "msgId": "text",
    "status": "SUCCESSFUL"
  },
  "Users": [
    {
      "tenantId": "text",
      "id": 1,
      "userName": "text",
      "authToken": "super-secret",
      "salutation": "text",
      "name": "text",
      "mobileNumber": "text",
      "emailId": "text",
      "aadhaarNumber": "text",
      "active": true,
      "pwdExpiryDate": 1,
      "locale": "text",
      "accountLocked": false,
      "userDetails": {},
      "auditDetails": {},
      "roles": [
        {
          "name": "text"
        }
      ],
      "gender": [
        "MALE"
      ],
      "type": [
        "EMPLOYEE"
      ]
    }
  ]
}

User(s) created sucessfully

Update user API

This API will update all user related details based on their type. Following rules apply -

Username cannot be updated once created
Password can only be updated by the user itself (CITIZEN or EMPLOYEE) using reissue OTP issued to them
User can self update mobile number/email by doing OTP verification with old phone/email
An employee can reset another user mobile number/email after OTP/other necessary validation (need specific privilege)

post

/_update

Body

RequestInfoobjectrequired

Usersobject[] · min: 1 · max: 100required

Responses

*/*

cURL

JavaScript

Python

HTTP

curl -L \
  --request POST \
  --url '/users/v110/_update' \
  --header 'Content-Type: application/json' \
  --data '{"RequestInfo":{"apiId":"text","ver":"text","ts":1,"action":"text","msgId":"text","userInfo":{"tenantId":"text","userName":"text","primaryrole":[{"name":"text"}],"additionalroles":[{"tenantId":"text","roles":[{"name":"text"}]}]}},"Users":[{"tenantId":"text","userName":"text","name":"text","mobileNumber":"text","active":true,"locale":"text","accountLocked":false,"userDetails":{},"auditDetails":{},"roles":[{"name":"text"}],"gender":["MALE"],"type":["EMPLOYEE"]}]}'

200

400

{
  "ResponseInfo": {
    "apiId": "text",
    "ver": "text",
    "ts": 1,
    "resMsgId": "text",
    "msgId": "text",
    "status": "SUCCESSFUL"
  },
  "Users": [
    {
      "tenantId": "text",
      "id": 1,
      "userName": "text",
      "authToken": "super-secret",
      "salutation": "text",
      "name": "text",
      "mobileNumber": "text",
      "emailId": "text",
      "aadhaarNumber": "text",
      "active": true,
      "pwdExpiryDate": 1,
      "locale": "text",
      "accountLocked": false,
      "userDetails": {},
      "auditDetails": {},
      "roles": [
        {
          "name": "text"
        }
      ],
      "gender": [
        "MALE"
      ],
      "type": [
        "EMPLOYEE"
      ]
    }
  ]
}

Update user(s) successful

Search the users in the system based on the criterion specified.

Search and get user(s) based on defined search criteria. Currently search parameters are only allowed as HTTP query params. In case multiple parameters are passed user will be searched as an AND combination of all the parameters. Maximum result size is restricted based on the maxlength of Users as defined in UserRes model.

By default results will be sorted by UserName

post

/_search

Query parameters

userNamestring · max: 64

The unique user name of the User.

activeboolean · varchar · default: true

True will be set in cases where only active users are needed and False will be set when inactive users are needed and no value will be set when all users are needed.

idinteger[]

List of Unique Id of User

userTypestring · max: 64

Defines the type of user. Possible values are as per type enum defined in User object.

roleCodesstring[]

roles assigned to the user(roleCodes).Search response will have all users having all roles specified in the request.

includeDetailsboolean

parameter to indicate whether UserDetails should be included as a part of User object in the response

pageSizeinteger · max: 100 · default: 20

Number of records returned.

pageNumberinteger · default: 1

Page number

sortstring[] · default: +name

User results will be sorted by name ascending by default if this parameter is not provided.

Responses

*/*

cURL

JavaScript

Python

HTTP

curl -L \
  --request POST \
  --url '/users/v110/_search'

200

400

{
  "ResponseInfo": {
    "apiId": "text",
    "ver": "text",
    "ts": 1,
    "resMsgId": "text",
    "msgId": "text",
    "status": "SUCCESSFUL"
  },
  "Users": [
    {
      "tenantId": "text",
      "id": 1,
      "userName": "text",
      "authToken": "super-secret",
      "salutation": "text",
      "name": "text",
      "mobileNumber": "text",
      "emailId": "text",
      "aadhaarNumber": "text",
      "active": true,
      "pwdExpiryDate": 1,
      "locale": "text",
      "accountLocked": false,
      "userDetails": {},
      "auditDetails": {},
      "roles": [
        {
          "name": "text"
        }
      ],
      "gender": [
        "MALE"
      ],
      "type": [
        "EMPLOYEE"
      ]
    }
  ]
}

Successful response

The user can update his password after login

This API used for update the password after login

post

/password/_update

Body

RequestInfoobject

existingPasswordstringrequired

Existing password

newPasswordstringrequired

New password

tenantIdstringrequired

Unique Identifier of the tenant to which user primarily belongs

Responses

*/*

cURL

JavaScript

Python

HTTP

curl -L \
  --request POST \
  --url '/users/v110/password/_update' \
  --header 'Content-Type: application/json' \
  --data '{"RequestInfo":{"apiId":"text","ver":"text","ts":1,"action":"text","msgId":"text","userInfo":{"tenantId":"text","userName":"text","primaryrole":[{"name":"text"}],"additionalroles":[{"tenantId":"text","roles":[{"name":"text"}]}]}},"existingPassword":"text","newPassword":"text","tenantId":"text"}'

200

400

{
  "ResponseInfo": {
    "apiId": "text",
    "ver": "text",
    "ts": 1,
    "resMsgId": "text",
    "msgId": "text",
    "status": "SUCCESSFUL"
  }
}

Updated password successful

This API act as reset password or forgot password before login

This API used for reset the password when user forgot his password by getting otp Reference through registerd mobile number,

post

/password/nologin/_update

Body

RequestInfoobject

otpReferencestringrequired

otp reference number which sent to registered mobile

userNamestringrequired

Registered User name

newPasswordstringrequired

New password

tenantIdstringrequired

Unique Identifier of the tenant to which user primarily belongs

Responses

*/*

cURL

JavaScript

Python

HTTP

curl -L \
  --request POST \
  --url '/users/v110/password/nologin/_update' \
  --header 'Content-Type: application/json' \
  --data '{"RequestInfo":{"apiId":"text","ver":"text","ts":1,"action":"text","msgId":"text","userInfo":{"tenantId":"text","userName":"text","primaryrole":[{"name":"text"}],"additionalroles":[{"tenantId":"text","roles":[{"name":"text"}]}]}},"otpReference":"text","userName":"text","newPassword":"text","tenantId":"text"}'

200

400

{
  "ResponseInfo": {
    "apiId": "text",
    "ver": "text",
    "ts": 1,
    "resMsgId": "text",
    "msgId": "text",
    "status": "SUCCESSFUL"
  }
}

Updated password successful