Change Updates

Do not miss any Logto API references changes, ever again

Subscribe to the Logto API references changelog to be up to date on recent changes.

RSS

Changelog

Last update:
Compare
21 structure changes including:
17 Additions
4 Modifications
Modified 4
PATCH /api/sign-in-exp
  • Body
  • application/json content type Modified
    • supportEmail property Added
      • string-1, string-2 properties Added
    • supportWebsiteUrl property Added
      • string-1, string-2 properties Added
    • unknownSessionRedirectUrl property Added
      • string-1, string-2 properties Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • supportEmail, supportWebsiteUrl, unknownSessionRedirectUrl properties Added
GET /api/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • supportEmail, supportWebsiteUrl, unknownSessionRedirectUrl properties Added
GET /api/.well-known/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • supportEmail, supportWebsiteUrl, unknownSessionRedirectUrl properties Added
GET /api/.well-known/experience
  • Response
  • 200 response Modified
    • application/json content type Modified
      • supportEmail, supportWebsiteUrl, unknownSessionRedirectUrl properties Added
Added 17
POST /api/verifications/verification-code/verify
POST /api/verifications/verification-code
POST /api/verifications/social/verify
POST /api/verifications/social
POST /api/verifications/password
POST /api/my-account/primary-phone
POST /api/my-account/primary-email
POST /api/my-account/password
POST /api/my-account/identities
PATCH /api/my-account/profile
PATCH /api/my-account
PATCH /api/account-center
GET /api/my-account
GET /api/account-center
DELETE /api/my-account/primary-phone
DELETE /api/my-account/primary-email
DELETE /api/my-account/identities/{target}
1 structure change including:
1 Modification
Modified 1 Breaking
POST /api/users/{userId}/mfa-verifications
  • Body
  • application/json content type Modified
    • alternative Removed
      • Removing a resource is always breaking unless it was deprecated before
        Breaking
    • object-1, object-2, object-3, object-4 alternatives Added
1 structure change including:
1 Modification
Modified 1
POST /api/authn/single-sign-on/saml/{connectorId}
  • Body
  • application/json content type Modified
    • RelayState property Modified
      • Property is no longer required
1 structure change including:
1 Addition
Added 1
GET /api/.well-known/user.openapi.json
3 structure changes including:
3 Additions
Added 3
POST /api/experience/profile
POST /api/experience/verification/verification-code/verify
POST /api/sign-in-exp/default/check-password
6 structure changes including:
2 Breaking changes
4 Additions
2 Modifications
Modified 2 Breaking
POST /api/experience/profile
  • Path went from /api/users/{userId}/profile to /api/experience/profile (same operationId)
    Breaking
  • Verb went from PATCH to POST (same operationId)
    Breaking
  • Body
  • application/json content type Modified
    • object alternative Removed
      • Removing a resource is always breaking unless it was deprecated before
        Breaking
    • object-1, object-2, object-3, object-4, object-5 alternatives Added
  • Path
  • userId path parameter Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • Response
  • 200, 401 responses Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • 204, 422 responses Added
  • Authentication
  • OAuth2 authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
POST /api/experience/verification/verification-code/verify
  • Path went from /api/verification-codes/verify to /api/experience/verification/verification-code/verify (same operationId)
    Breaking
  • Body
  • application/json content type Modified
    • object property Modified
      • Removing polymorphism is always breaking
        Breaking
  • Response
  • 204, 401, 403 responses Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • 200, 404, 501 responses Added
  • Authentication
  • OAuth2 authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
Added 4
DELETE /api/users/{userId}/personal-access-tokens/{name}
GET /api/users/{userId}/personal-access-tokens
PATCH /api/users/{userId}/personal-access-tokens/{name}
POST /api/users/{userId}/personal-access-tokens
33 structure changes including:
2 Breaking changes
27 Additions
6 Modifications
Modified 6 Breaking
POST /api/experience/verification/verification-code/verify
  • Path went from /api/verification-codes/verify to /api/experience/verification/verification-code/verify (same operationId)
    Breaking
  • Body
  • application/json content type Modified
    • object property Modified
      • Removing polymorphism is always breaking
        Breaking
  • Response
  • 204, 401, 403 responses Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • 200, 404, 501 responses Added
  • Authentication
  • OAuth2 authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
POST /api/experience/profile
  • Path went from /api/users/{userId}/profile to /api/experience/profile (same operationId)
    Breaking
  • Verb went from PATCH to POST (same operationId)
    Breaking
  • Body
  • application/json content type Modified
    • object alternative Removed
      • Removing a resource is always breaking unless it was deprecated before
        Breaking
    • object-1, object-2, object-3, object-4, object-5 alternatives Added
  • Path
  • userId path parameter Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • Response
  • 200, 401 responses Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • 204, 422 responses Added
  • Authentication
  • OAuth2 authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
GET /api/logs/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • payload property Modified
GET /api/logs
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/hooks/{id}/recent-logs
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/.well-known/sign-in-exp
  • Operation is now deprecated
Added 27
GET /api/.well-known/experience
POST /api/experience/verification/totp/verify
POST /api/experience/verification/verification-code
POST /api/experience/verification/web-authn/authentication
POST /api/experience/verification/web-authn/authentication/verify
POST /api/experience/verification/web-authn/registration
POST /api/experience/verification/web-authn/registration/verify
POST /api/sign-in-exp/default/custom-ui-assets
PUT /api/experience
PUT /api/experience/interaction-event
PUT /api/experience/profile/password
GET /api/.well-known/experience.openapi.json
GET /api/.well-known/management.openapi.json
GET /api/experience/sso-connectors
POST /api/experience/identification
POST /api/experience/profile/mfa
POST /api/experience/profile/mfa/mfa-skipped
POST /api/experience/submit
POST /api/experience/verification/backup-code/generate
POST /api/experience/verification/backup-code/verify
POST /api/experience/verification/new-password-identity
POST /api/experience/verification/password
POST /api/experience/verification/social/{connectorId}/authorization-uri
POST /api/experience/verification/social/{connectorId}/verify
POST /api/experience/verification/sso/{connectorId}/authorization-uri
POST /api/experience/verification/sso/{connectorId}/verify
POST /api/experience/verification/totp/secret
190 structure changes including:
190 Modifications
Modified 190 Breaking
DELETE /api/applications/{applicationId}/roles/{roleId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/applications/{applicationId}/user-consent-scopes/{scopeType}/{scopeId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/applications/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/applications/{id}/legacy-secret
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/applications/{id}/protected-app-metadata/custom-domains/{domain}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/applications/{id}/secrets/{name}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/applications/{id}/users/{userId}/consent-organizations/{organizationId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/configs/jwt-customizer/{tokenTypePath}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/configs/oidc/{keyType}/{keyId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/connectors/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/custom-phrases/{languageTag}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/domains/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/hooks/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organization-invitations/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organization-roles/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organization-roles/{id}/resource-scopes/{scopeId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organization-roles/{id}/scopes/{organizationScopeId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organization-scopes/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organizations/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organizations/{id}/applications/{applicationId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organizations/{id}/applications/{applicationId}/roles/{organizationRoleId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organizations/{id}/jit/email-domains/{emailDomain}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organizations/{id}/jit/roles/{organizationRoleId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organizations/{id}/jit/sso-connectors/{ssoConnectorId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organizations/{id}/users/{userId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/organizations/{id}/users/{userId}/roles/{organizationRoleId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/resources/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/resources/{resourceId}/scopes/{scopeId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/roles/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/roles/{id}/applications/{applicationId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/roles/{id}/scopes/{scopeId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/roles/{id}/users/{userId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/sso-connectors/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/users/{userId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/users/{userId}/identities/{target}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/users/{userId}/mfa-verifications/{verificationId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
DELETE /api/users/{userId}/roles/{roleId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/applications
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
  • Query
  • search_params query parameter Added
GET /api/applications/{applicationId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
  • Query
  • search_params query parameter Added
GET /api/applications/{applicationId}/sign-in-experience
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/applications/{applicationId}/user-consent-scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/applications/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/applications/{id}/organizations
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/applications/{id}/protected-app-metadata/custom-domains
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/applications/{id}/secrets
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/applications/{id}/users/{userId}/consent-organizations
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/configs/admin-console
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/configs/jwt-customizer
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/configs/jwt-customizer/{tokenTypePath}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/configs/oidc/{keyType}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/connector-factories
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/connector-factories/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/connectors
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/connectors/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/custom-phrases
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/custom-phrases/{languageTag}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/dashboard/users/active
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/dashboard/users/new
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/dashboard/users/total
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/domains
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/domains/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/hooks
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/hooks/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/hooks/{id}/recent-logs
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/logs
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/logs/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organization-invitations
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organization-invitations/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organization-roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organization-roles/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organization-roles/{id}/resource-scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organization-roles/{id}/scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organization-scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organization-scopes/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations/{id}/applications
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations/{id}/applications/{applicationId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations/{id}/jit/email-domains
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations/{id}/jit/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations/{id}/jit/sso-connectors
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations/{id}/users
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations/{id}/users/{userId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/organizations/{id}/users/{userId}/scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/resources
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/resources/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/resources/{resourceId}/scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
  • Query
  • search_params query parameter Added
GET /api/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
  • Query
  • search_params query parameter Added
GET /api/roles/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/roles/{id}/applications
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
  • Query
  • search_params query parameter Added
GET /api/roles/{id}/scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
  • Query
  • search_params query parameter Added
GET /api/roles/{id}/users
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
  • Query
  • search_params query parameter Added
GET /api/sign-in-exp
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/sso-connector-providers
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/sso-connectors
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/sso-connectors/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/systems/application
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/user-assets/service-status
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/users
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
  • Query
  • search_params query parameter Added
GET /api/users/{userId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/users/{userId}/custom-data
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/users/{userId}/has-password
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/users/{userId}/mfa-verifications
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/users/{userId}/organizations
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
GET /api/users/{userId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
  • Query
  • search_params query parameter Added
PATCH /api/applications/{applicationId}/custom-data
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/applications/{id}
  • Body
  • application/json content type Modified
    • oidcClientMetadata property Modified
      • redirectUris, postLogoutRedirectUris properties Modified
        • Properties are now required
          Breaking
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/applications/{id}/secrets/{name}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/configs/admin-console
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/configs/jwt-customizer/{tokenTypePath}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/connectors/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/hooks/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/hooks/{id}/signing-key
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/organization-roles/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/organization-scopes/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/organizations/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/resources/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/resources/{id}/is-default
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/resources/{resourceId}/scopes/{scopeId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/roles/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/sign-in-exp
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/sso-connectors/{id}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/users/{userId}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/users/{userId}/custom-data
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/users/{userId}/is-suspended
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/users/{userId}/password
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PATCH /api/users/{userId}/profile
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/applications
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/applications/{applicationId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/applications/{applicationId}/user-consent-scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/applications/{id}/protected-app-metadata/custom-domains
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/applications/{id}/secrets
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/applications/{id}/users/{userId}/consent-organizations
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/configs/jwt-customizer/test
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/configs/oidc/{keyType}/rotate
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/connectors
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/connectors/{connectorId}/authorization-uri
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/connectors/{factoryId}/test
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/domains
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/hooks
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/hooks/{id}/test
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organization-invitations
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organization-invitations/{id}/message
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organization-roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organization-roles/{id}/resource-scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organization-roles/{id}/scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organization-scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations/{id}/applications
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations/{id}/applications/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations/{id}/applications/{applicationId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations/{id}/jit/email-domains
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations/{id}/jit/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations/{id}/jit/sso-connectors
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations/{id}/users
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations/{id}/users/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/organizations/{id}/users/{userId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/resources
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/resources/{resourceId}/scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/roles/{id}/applications
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/roles/{id}/scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/roles/{id}/users
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/sso-connectors
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/subject-tokens
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/user-assets
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/users
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/users/{userId}/identities
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/users/{userId}/mfa-verifications
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/users/{userId}/password/verify
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/users/{userId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/verification-codes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
POST /api/verification-codes/verify
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/applications/{applicationId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/applications/{applicationId}/sign-in-experience
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/applications/{id}/users/{userId}/consent-organizations
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/configs/jwt-customizer/{tokenTypePath}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/custom-phrases/{languageTag}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organization-invitations/{id}/status
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organization-roles/{id}/resource-scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organization-roles/{id}/scopes
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organizations/{id}/applications
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organizations/{id}/applications/{applicationId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organizations/{id}/jit/email-domains
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organizations/{id}/jit/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organizations/{id}/jit/sso-connectors
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organizations/{id}/users
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/organizations/{id}/users/{userId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/users/{userId}/identities/{target}
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
PUT /api/users/{userId}/roles
  • Authentication
  • Management api authentication method Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • OAuth2 authentication method Added
12 structure changes including:
6 Additions
6 Modifications
Modified 6
GET /api/applications
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/applications/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • secret property Modified
        • Property is now deprecated
      • customData property Added
GET /api/organizations/{id}/applications
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/roles/{id}/applications
  • Response
  • 200 response Modified
    • application/json content type Modified
PATCH /api/applications/{id}
  • Body
  • application/json content type Modified
    • customData property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • secret property Modified
        • Property is now deprecated
      • customData property Added
POST /api/applications
  • Body
  • application/json content type Modified
    • customData property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • secret property Modified
        • Property is now deprecated
      • customData property Added
Added 6
DELETE /api/applications/{id}/legacy-secret
DELETE /api/applications/{id}/secrets/{name}
GET /api/applications/{id}/secrets
PATCH /api/applications/{applicationId}/custom-data
PATCH /api/applications/{id}/secrets/{name}
POST /api/applications/{id}/secrets
35 structure changes including:
1 Addition
34 Modifications
Modified 34 Breaking
GET /api/.well-known/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customUiAssetId property Removed
        • Removing a resource is always breaking unless it was deprecated before
          Breaking
      • customUiAssets property Added
POST /api/organizations/{id}/applications/{applicationId}/roles
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organizations/{id}/jit/email-domains
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organizations/{id}/jit/roles
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organizations/{id}/jit/sso-connectors
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organizations/{id}/users
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organizations/{id}/users/roles
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organizations/{id}/users/{userId}/roles
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/resources
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/resources/{resourceId}/scopes
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/roles/{id}/applications
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/roles/{id}/scopes
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/roles/{id}/users
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/users/{userId}/roles
  • Response
  • 201 response Modified
    • application/json content type Added
PUT /api/applications/{applicationId}/sign-in-experience
  • Response
  • 201 response Modified
    • application/json content type Added
PUT /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 201 response Modified
    • application/json content type Added
PUT /api/custom-phrases/{languageTag}
  • Response
  • 201 response Modified
    • application/json content type Added
PUT /api/users/{userId}/identities/{target}
  • Response
  • 201 response Modified
    • application/json content type Added
GET /api/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customUiAssetId property Removed
        • Removing a resource is always breaking unless it was deprecated before
          Breaking
      • customUiAssets property Added
PATCH /api/sign-in-exp
  • Body
  • application/json content type Modified
    • customUiAssetId property Removed
      • Removing a resource is always breaking unless it was deprecated before
        Breaking
    • customUiAssets property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customUiAssetId property Removed
        • Removing a resource is always breaking unless it was deprecated before
          Breaking
      • customUiAssets property Added
POST /api/applications/{applicationId}/roles
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/applications/{applicationId}/user-consent-scopes
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/applications/{id}/protected-app-metadata/custom-domains
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/applications/{id}/users/{userId}/consent-organizations
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/domains
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/hooks
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organization-invitations
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organization-roles
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organization-roles/{id}/resource-scopes
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organization-roles/{id}/scopes
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organization-scopes
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organizations
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organizations/{id}/applications
  • Response
  • 201 response Modified
    • application/json content type Added
POST /api/organizations/{id}/applications/roles
  • Response
  • 201 response Modified
    • application/json content type Added
Added 1
POST /api/subject-tokens
18 structure changes including:
18 Modifications
Modified 18
GET /api/.well-known/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • branding property Modified
  • 400 response Added
  • Query
  • organizationId, appId query parameters Added
GET /api/applications/{applicationId}/sign-in-experience
  • Response
  • 200 response Modified
    • application/json content type Modified
      • branding property Modified
      • color property Added
GET /api/applications/{id}/organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/applications/{id}/users/{userId}/consent-organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
      • organizations property Modified
GET /api/configs/jwt-customizer
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1 alternative Modified
GET /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1 alternative Modified
GET /api/interaction/consent
  • Response
  • 200 response Modified
    • application/json content type Modified
      • application property Modified
GET /api/organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/organizations/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • branding property Added
GET /api/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • branding property Modified
GET /api/users/{userId}/organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
PATCH /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1 alternative Modified
PATCH /api/organizations/{id}
  • Body
  • application/json content type Modified
    • branding property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • branding property Added
PATCH /api/sign-in-exp
  • Body
  • application/json content type Modified
    • branding property Modified
      • darkFavicon property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • branding property Modified
POST /api/configs/jwt-customizer/test
  • Body
  • application/json content type Modified
    • object-1 alternative Modified
      • context property Modified
POST /api/organizations
  • Body
  • application/json content type Modified
    • branding property Added
PUT /api/applications/{applicationId}/sign-in-experience
  • Body
  • application/json content type Modified
    • branding property Modified
      • darkFavicon property Added
    • color property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • branding property Modified
      • color property Added
PUT /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1 alternative Modified
380 structure changes including:
189 Breaking changes
190 Additions
190 Removals
Removed 190 Breaking
GET /api/organization-roles/{id}/resource-scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organization-roles/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organization-roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organization-invitations/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organization-invitations
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/logs/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/logs
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/hooks/{id}/recent-logs
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/hooks/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/hooks
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/domains/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/domains
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/dashboard/users/total
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/dashboard/users/new
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/dashboard/users/active
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/custom-phrases/{languageTag}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/custom-phrases
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/connectors/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/connectors
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/connector-factories/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/connector-factories
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/configs/oidc/{keyType}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/configs/jwt-customizer/{tokenTypePath}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organizations/{id}/users/{userId}/roles/{organizationRoleId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/sso-connectors
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/sso-connector-providers
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/sign-in-exp
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/roles/{id}/users
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/roles/{id}/scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/roles/{id}/applications
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/roles/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/resources/{resourceId}/scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/resources/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/resources
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations/{id}/users/{userId}/scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations/{id}/users/{userId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations/{id}/users
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations/{id}/jit/sso-connectors
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations/{id}/jit/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations/{id}/jit/email-domains
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations/{id}/applications/{applicationId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations/{id}/applications
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organizations
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organization-scopes/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organization-scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/organization-roles/{id}/scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organizations/{id}/users/{userId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organizations/{id}/jit/sso-connectors/{ssoConnectorId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organizations/{id}/jit/roles/{organizationRoleId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organizations/{id}/jit/email-domains/{emailDomain}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organizations/{id}/applications/{applicationId}/roles/{organizationRoleId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organizations/{id}/applications/{applicationId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organizations/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organization-scopes/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organization-roles/{id}/scopes/{organizationScopeId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organization-roles/{id}/resource-scopes/{scopeId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organization-roles/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/organization-invitations/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/hooks/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/domains/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/custom-phrases/{languageTag}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/connectors/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/configs/oidc/{keyType}/{keyId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/configs/jwt-customizer/{tokenTypePath}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/applications/{id}/users/{userId}/consent-organizations/{organizationId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/applications/{id}/protected-app-metadata/custom-domains/{domain}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/applications/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/applications/{applicationId}/user-consent-scopes/{scopeType}/{scopeId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/applications/{applicationId}/roles/{roleId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/configs/jwt-customizer
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/configs/admin-console
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/authn/hasura
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/applications/{id}/users/{userId}/consent-organizations
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/applications/{id}/protected-app-metadata/custom-domains
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/applications/{id}/organizations
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/applications/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/applications/{applicationId}/user-consent-scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/applications/{applicationId}/sign-in-experience
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/applications/{applicationId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/applications
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/.well-known/sign-in-exp
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/.well-known/phrases
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/users/{userId}/roles/{roleId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/users/{userId}/mfa-verifications/{verificationId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/users/{userId}/identities/{target}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/users/{userId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/sso-connectors/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/roles/{id}/users/{userId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/roles/{id}/scopes/{scopeId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/roles/{id}/applications/{applicationId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/roles/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/resources/{resourceId}/scopes/{scopeId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
DELETE /api/resources/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/user-assets
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/sso-connectors
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/roles/{id}/users
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/roles/{id}/scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/roles/{id}/applications
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/resources/{resourceId}/scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/resources
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations/{id}/users/{userId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations/{id}/users/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations/{id}/users
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations/{id}/jit/sso-connectors
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations/{id}/jit/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations/{id}/jit/email-domains
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations/{id}/applications/{applicationId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations/{id}/applications/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations/{id}/applications
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organizations
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organization-scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organization-roles/{id}/scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organization-roles/{id}/resource-scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organization-roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organization-invitations/{id}/message
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/resources/{resourceId}/scopes/{scopeId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/users/{userId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/users/{userId}/identities/{target}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organizations/{id}/users/{userId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organizations/{id}/users
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organizations/{id}/jit/sso-connectors
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organizations/{id}/jit/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organizations/{id}/jit/email-domains
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organizations/{id}/applications/{applicationId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organizations/{id}/applications
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organization-roles/{id}/scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organization-roles/{id}/resource-scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/organization-invitations/{id}/status
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/custom-phrases/{languageTag}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/configs/jwt-customizer/{tokenTypePath}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/applications/{id}/users/{userId}/consent-organizations
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/applications/{applicationId}/sign-in-experience
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PUT /api/applications/{applicationId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/verification-codes/verify
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/verification-codes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/users/{userId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/users/{userId}/password/verify
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/users/{userId}/mfa-verifications
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/users/{userId}/identities
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/users
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/resources/{id}/is-default
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/resources/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/organizations/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/organization-scopes/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/organization-roles/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/hooks/{id}/signing-key
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/hooks/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/connectors/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/configs/jwt-customizer/{tokenTypePath}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/configs/admin-console
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/applications/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/users/{userId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/users/{userId}/organizations
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/users/{userId}/mfa-verifications
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/users/{userId}/has-password
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/users/{userId}/custom-data
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/users/{userId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/users
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/user-assets/service-status
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/systems/application
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/swagger.json
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/status
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
GET /api/sso-connectors/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/organization-invitations
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/hooks/{id}/test
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/hooks
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/domains
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/connectors/{factoryId}/test
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/connectors/{connectorId}/authorization-uri
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/connectors
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/configs/oidc/{keyType}/rotate
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/configs/jwt-customizer/test
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/authn/single-sign-on/saml/{connectorId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/authn/saml/{connectorId}
POST /api/applications/{id}/users/{userId}/consent-organizations
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/applications/{id}/protected-app-metadata/custom-domains
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/applications/{applicationId}/user-consent-scopes
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/applications/{applicationId}/roles
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
POST /api/applications
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/users/{userId}/profile
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/users/{userId}/password
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/users/{userId}/is-suspended
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/users/{userId}/custom-data
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/users/{userId}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/sso-connectors/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/sign-in-exp
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
PATCH /api/roles/{id}
  • Removing a resource is always breaking unless it was deprecated before
    Breaking
Added 190
GET /api/organization-roles/{id}/resource-scopes
GET /api/organization-roles/{id}
GET /api/organization-roles
GET /api/organization-invitations/{id}
GET /api/organization-invitations
GET /api/logs/{id}
GET /api/logs
GET /api/hooks/{id}/recent-logs
GET /api/hooks/{id}
GET /api/hooks
GET /api/domains/{id}
GET /api/domains
GET /api/dashboard/users/total
GET /api/dashboard/users/new
GET /api/dashboard/users/active
GET /api/custom-phrases/{languageTag}
GET /api/custom-phrases
GET /api/connectors/{id}
GET /api/connectors
GET /api/connector-factories/{id}
GET /api/connector-factories
GET /api/configs/oidc/{keyType}
GET /api/configs/jwt-customizer/{tokenTypePath}
DELETE /api/organizations/{id}/users/{userId}/roles/{organizationRoleId}
GET /api/sso-connectors
GET /api/sso-connector-providers
GET /api/sign-in-exp
GET /api/roles/{id}/users
GET /api/roles/{id}/scopes
GET /api/roles/{id}/applications
GET /api/roles/{id}
GET /api/roles
GET /api/resources/{resourceId}/scopes
GET /api/resources/{id}
GET /api/resources
GET /api/organizations/{id}/users/{userId}/scopes
GET /api/organizations/{id}/users/{userId}/roles
GET /api/organizations/{id}/users
GET /api/organizations/{id}/jit/sso-connectors
GET /api/organizations/{id}/jit/roles
GET /api/organizations/{id}/jit/email-domains
GET /api/organizations/{id}/applications/{applicationId}/roles
GET /api/organizations/{id}/applications
GET /api/organizations/{id}
GET /api/organizations
GET /api/organization-scopes/{id}
GET /api/organization-scopes
GET /api/organization-roles/{id}/scopes
DELETE /api/organizations/{id}/users/{userId}
DELETE /api/organizations/{id}/jit/sso-connectors/{ssoConnectorId}
DELETE /api/organizations/{id}/jit/roles/{organizationRoleId}
DELETE /api/organizations/{id}/jit/email-domains/{emailDomain}
DELETE /api/organizations/{id}/applications/{applicationId}/roles/{organizationRoleId}
DELETE /api/organizations/{id}/applications/{applicationId}
DELETE /api/organizations/{id}
DELETE /api/organization-scopes/{id}
DELETE /api/organization-roles/{id}/scopes/{organizationScopeId}
DELETE /api/organization-roles/{id}/resource-scopes/{scopeId}
DELETE /api/organization-roles/{id}
DELETE /api/organization-invitations/{id}
DELETE /api/hooks/{id}
DELETE /api/domains/{id}
DELETE /api/custom-phrases/{languageTag}
DELETE /api/connectors/{id}
DELETE /api/configs/oidc/{keyType}/{keyId}
DELETE /api/configs/jwt-customizer/{tokenTypePath}
DELETE /api/applications/{id}/users/{userId}/consent-organizations/{organizationId}
DELETE /api/applications/{id}/protected-app-metadata/custom-domains/{domain}
DELETE /api/applications/{id}
DELETE /api/applications/{applicationId}/user-consent-scopes/{scopeType}/{scopeId}
DELETE /api/applications/{applicationId}/roles/{roleId}
GET /api/configs/jwt-customizer
GET /api/configs/admin-console
GET /api/authn/hasura
GET /api/applications/{id}/users/{userId}/consent-organizations
GET /api/applications/{id}/protected-app-metadata/custom-domains
GET /api/applications/{id}/organizations
GET /api/applications/{id}
GET /api/applications/{applicationId}/user-consent-scopes
GET /api/applications/{applicationId}/sign-in-experience
GET /api/applications/{applicationId}/roles
GET /api/applications
GET /api/.well-known/sign-in-exp
GET /api/.well-known/phrases
DELETE /api/users/{userId}/roles/{roleId}
DELETE /api/users/{userId}/mfa-verifications/{verificationId}
DELETE /api/users/{userId}/identities/{target}
DELETE /api/users/{userId}
DELETE /api/sso-connectors/{id}
DELETE /api/roles/{id}/users/{userId}
DELETE /api/roles/{id}/scopes/{scopeId}
DELETE /api/roles/{id}/applications/{applicationId}
DELETE /api/roles/{id}
DELETE /api/resources/{resourceId}/scopes/{scopeId}
DELETE /api/resources/{id}
POST /api/user-assets
POST /api/sso-connectors
POST /api/roles/{id}/users
POST /api/roles/{id}/scopes
POST /api/roles/{id}/applications
POST /api/roles
POST /api/resources/{resourceId}/scopes
POST /api/resources
POST /api/organizations/{id}/users/{userId}/roles
POST /api/organizations/{id}/users/roles
POST /api/organizations/{id}/users
POST /api/organizations/{id}/jit/sso-connectors
POST /api/organizations/{id}/jit/roles
POST /api/organizations/{id}/jit/email-domains
POST /api/organizations/{id}/applications/{applicationId}/roles
POST /api/organizations/{id}/applications/roles
POST /api/organizations/{id}/applications
POST /api/organizations
POST /api/organization-scopes
POST /api/organization-roles/{id}/scopes
POST /api/organization-roles/{id}/resource-scopes
POST /api/organization-roles
POST /api/organization-invitations/{id}/message
PATCH /api/resources/{resourceId}/scopes/{scopeId}
PUT /api/users/{userId}/roles
PUT /api/users/{userId}/identities/{target}
PUT /api/organizations/{id}/users/{userId}/roles
PUT /api/organizations/{id}/users
PUT /api/organizations/{id}/jit/sso-connectors
PUT /api/organizations/{id}/jit/roles
PUT /api/organizations/{id}/jit/email-domains
PUT /api/organizations/{id}/applications/{applicationId}/roles
PUT /api/organizations/{id}/applications
PUT /api/organization-roles/{id}/scopes
PUT /api/organization-roles/{id}/resource-scopes
PUT /api/organization-invitations/{id}/status
PUT /api/custom-phrases/{languageTag}
PUT /api/configs/jwt-customizer/{tokenTypePath}
PUT /api/applications/{id}/users/{userId}/consent-organizations
PUT /api/applications/{applicationId}/sign-in-experience
PUT /api/applications/{applicationId}/roles
POST /api/verification-codes/verify
POST /api/verification-codes
POST /api/users/{userId}/roles
POST /api/users/{userId}/password/verify
POST /api/users/{userId}/mfa-verifications
POST /api/users/{userId}/identities
POST /api/users
PATCH /api/resources/{id}/is-default
PATCH /api/resources/{id}
PATCH /api/organizations/{id}
PATCH /api/organization-scopes/{id}
PATCH /api/organization-roles/{id}
PATCH /api/hooks/{id}/signing-key
PATCH /api/hooks/{id}
PATCH /api/connectors/{id}
PATCH /api/configs/jwt-customizer/{tokenTypePath}
PATCH /api/configs/admin-console
PATCH /api/applications/{id}
GET /api/users/{userId}/roles
GET /api/users/{userId}/organizations
GET /api/users/{userId}/mfa-verifications
GET /api/users/{userId}/has-password
GET /api/users/{userId}/custom-data
GET /api/users/{userId}
GET /api/users
GET /api/user-assets/service-status
GET /api/systems/application
GET /api/swagger.json
GET /api/status
GET /api/sso-connectors/{id}
POST /api/organization-invitations
POST /api/hooks/{id}/test
POST /api/hooks
POST /api/domains
POST /api/connectors/{factoryId}/test
POST /api/connectors/{connectorId}/authorization-uri
POST /api/connectors
POST /api/configs/oidc/{keyType}/rotate
POST /api/configs/jwt-customizer/test
POST /api/authn/single-sign-on/saml/{connectorId}
POST /api/authn/saml/{connectorId}
POST /api/applications/{id}/users/{userId}/consent-organizations
POST /api/applications/{id}/protected-app-metadata/custom-domains
POST /api/applications/{applicationId}/user-consent-scopes
POST /api/applications/{applicationId}/roles
POST /api/applications
PATCH /api/users/{userId}/profile
PATCH /api/users/{userId}/password
PATCH /api/users/{userId}/is-suspended
PATCH /api/users/{userId}/custom-data
PATCH /api/users/{userId}
PATCH /api/sso-connectors/{id}
PATCH /api/sign-in-exp
PATCH /api/roles/{id}
184 structure changes including:
14 Additions
170 Modifications
Modified 170 Breaking
PATCH /api/hooks/{id}/signing-key
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PATCH /api/organization-roles/{id}
  • Body
  • application/json content type Modified
    • tenantId, type properties Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId, type properties Added
  • Authentication
  • Management api authentication method Added
PATCH /api/organization-scopes/{id}
  • Body
  • application/json content type Modified
    • tenantId property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PATCH /api/organizations/{id}
  • Body
  • application/json content type Modified
    • tenantId property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PATCH /api/resources/{id}
  • Body
  • application/json content type Modified
    • tenantId property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PATCH /api/resources/{id}/is-default
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PATCH /api/resources/{resourceId}/scopes/{scopeId}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PATCH /api/roles/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PATCH /api/sign-in-exp
  • Body
  • application/json content type Modified
    • tenantId, agreeToTermsPolicy properties Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId, agreeToTermsPolicy properties Added
  • Authentication
  • Management api authentication method Added
PATCH /api/sso-connectors/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PATCH /api/users/{userId}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • ssoIdentities property Modified
  • Authentication
  • Management api authentication method Added
PATCH /api/users/{userId}/custom-data
  • Authentication
  • Management api authentication method Added
PATCH /api/users/{userId}/is-suspended
  • Response
  • 200 response Modified
    • application/json content type Modified
      • ssoIdentities property Modified
  • Authentication
  • Management api authentication method Added
PATCH /api/users/{userId}/password
  • Response
  • 200 response Modified
    • application/json content type Modified
      • ssoIdentities property Modified
  • Authentication
  • Management api authentication method Added
PATCH /api/users/{userId}/profile
  • Authentication
  • Management api authentication method Added
POST /api/applications
  • Body
  • application/json content type Modified
    • customClientMetadata property Modified
      • tenantId property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customClientMetadata property Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
POST /api/applications/{applicationId}/roles
  • Authentication
  • Management api authentication method Added
POST /api/applications/{applicationId}/user-consent-scopes
  • Authentication
  • Management api authentication method Added
POST /api/applications/{id}/protected-app-metadata/custom-domains
  • Authentication
  • Management api authentication method Added
POST /api/applications/{id}/users/{userId}/consent-organizations
  • Authentication
  • Management api authentication method Added
POST /api/configs/jwt-customizer/test
  • Body
  • application/json content type Modified
    • object-1 alternative Modified
      • context property Modified
  • Authentication
  • Management api authentication method Added
POST /api/configs/oidc/{keyType}/rotate
  • Authentication
  • Management api authentication method Added
POST /api/connectors
  • Response
  • 200 response Modified
    • application/json content type Modified
      • formItems property Modified
  • Authentication
  • Management api authentication method Added
GET /api/roles
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/roles/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/roles/{id}/applications
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/roles/{id}/scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/roles/{id}/users
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId, agreeToTermsPolicy properties Added
  • Authentication
  • Management api authentication method Added
GET /api/sso-connector-providers
  • Authentication
  • Management api authentication method Added
GET /api/sso-connectors
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/sso-connectors/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/systems/application
  • Authentication
  • Management api authentication method Added
GET /api/user-assets/service-status
  • Authentication
  • Management api authentication method Added
GET /api/users
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/users/{userId}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • ssoIdentities property Modified
  • Authentication
  • Management api authentication method Added
GET /api/users/{userId}/custom-data
  • Authentication
  • Management api authentication method Added
GET /api/users/{userId}/has-password
  • Authentication
  • Management api authentication method Added
GET /api/users/{userId}/mfa-verifications
  • Authentication
  • Management api authentication method Added
GET /api/users/{userId}/organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/users/{userId}/roles
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
PATCH /api/applications/{id}
  • Body
  • application/json content type Modified
    • customClientMetadata property Modified
      • tenantId property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customClientMetadata property Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PATCH /api/configs/admin-console
  • Authentication
  • Management api authentication method Added
PATCH /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1 alternative Modified
  • Authentication
  • Management api authentication method Added
PATCH /api/connectors/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • formItems property Modified
  • Authentication
  • Management api authentication method Added
PATCH /api/hooks/{id}
  • Body
  • application/json content type Modified
    • tenantId property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
POST /api/sso-connectors
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
POST /api/user-assets
  • Authentication
  • Management api authentication method Added
POST /api/users
  • Response
  • 200 response Modified
    • application/json content type Modified
      • ssoIdentities property Modified
  • Authentication
  • Management api authentication method Added
POST /api/users/{userId}/identities
  • Authentication
  • Management api authentication method Added
POST /api/users/{userId}/mfa-verifications
  • Authentication
  • Management api authentication method Added
POST /api/users/{userId}/password/verify
  • Authentication
  • Management api authentication method Added
POST /api/users/{userId}/roles
  • Authentication
  • Management api authentication method Added
POST /api/verification-codes
  • Authentication
  • Management api authentication method Added
POST /api/verification-codes/verify
  • Authentication
  • Management api authentication method Added
PUT /api/applications/{applicationId}/roles
  • Authentication
  • Management api authentication method Added
PUT /api/applications/{applicationId}/sign-in-experience
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PUT /api/applications/{id}/users/{userId}/consent-organizations
  • Authentication
  • Management api authentication method Added
PUT /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1 alternative Modified
  • Authentication
  • Management api authentication method Added
PUT /api/custom-phrases/{languageTag}
  • Authentication
  • Management api authentication method Added
PUT /api/organization-invitations/{id}/status
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
PUT /api/organization-roles/{id}/resource-scopes
  • Authentication
  • Management api authentication method Added
PUT /api/organization-roles/{id}/scopes
  • Authentication
  • Management api authentication method Added
PUT /api/organizations/{id}/jit/email-domains
  • Authentication
  • Management api authentication method Added
PUT /api/organizations/{id}/jit/roles
  • Authentication
  • Management api authentication method Added
PUT /api/organizations/{id}/users
  • Authentication
  • Management api authentication method Added
PUT /api/organizations/{id}/users/{userId}/roles
  • Authentication
  • Management api authentication method Added
PUT /api/users/{userId}/identities/{target}
  • Authentication
  • Management api authentication method Added
PUT /api/users/{userId}/roles
  • Authentication
  • Management api authentication method Added
POST /api/connectors/{connectorId}/authorization-uri
  • Authentication
  • Management api authentication method Added
POST /api/connectors/{factoryId}/test
  • Authentication
  • Management api authentication method Added
POST /api/domains
  • Authentication
  • Management api authentication method Added
POST /api/hooks
  • Body
  • application/json content type Modified
    • tenantId property Added
  • Authentication
  • Management api authentication method Added
POST /api/hooks/{id}/test
  • Authentication
  • Management api authentication method Added
POST /api/organization-invitations
  • Authentication
  • Management api authentication method Added
POST /api/organization-invitations/{id}/message
  • Authentication
  • Management api authentication method Added
POST /api/organization-roles
  • Body
  • application/json content type Modified
    • tenantId, type properties Added
  • Authentication
  • Management api authentication method Added
POST /api/organization-roles/{id}/resource-scopes
  • Authentication
  • Management api authentication method Added
POST /api/organization-roles/{id}/scopes
  • Authentication
  • Management api authentication method Added
POST /api/organization-scopes
  • Body
  • application/json content type Modified
    • tenantId property Added
  • Authentication
  • Management api authentication method Added
POST /api/organizations
  • Body
  • application/json content type Modified
    • tenantId property Added
  • Authentication
  • Management api authentication method Added
POST /api/organizations/{id}/jit/email-domains
  • Authentication
  • Management api authentication method Added
POST /api/organizations/{id}/jit/roles
  • Authentication
  • Management api authentication method Added
POST /api/organizations/{id}/users
  • Authentication
  • Management api authentication method Added
POST /api/organizations/{id}/users/roles
  • Authentication
  • Management api authentication method Added
POST /api/organizations/{id}/users/{userId}/roles
  • Authentication
  • Management api authentication method Added
POST /api/resources
  • Body
  • application/json content type Modified
    • tenantId property Added
  • Authentication
  • Management api authentication method Added
POST /api/resources/{resourceId}/scopes
  • Authentication
  • Management api authentication method Added
POST /api/roles
  • Body
  • application/json content type Modified
    • tenantId property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
POST /api/roles/{id}/applications
  • Authentication
  • Management api authentication method Added
POST /api/roles/{id}/scopes
  • Authentication
  • Management api authentication method Added
POST /api/roles/{id}/users
  • Authentication
  • Management api authentication method Added
DELETE /api/applications/{applicationId}/roles/{roleId}
  • Authentication
  • Management api authentication method Added
DELETE /api/organizations/{id}/users/{userId}/roles/{organizationRoleId}
  • Path went from /api/organizations/{id}/users/{userId}/roles/{roleId} to /api/organizations/{id}/users/{userId}/roles/{organizationRoleId} (same operationId)
  • Path
  • roleId path parameter Removed
    • Removing a resource is always breaking unless it was deprecated before
      Breaking
  • organizationRoleId path parameter Added
  • Authentication
  • Management api authentication method Added
DELETE /api/resources/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/resources/{resourceId}/scopes/{scopeId}
  • Authentication
  • Management api authentication method Added
DELETE /api/roles/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/roles/{id}/applications/{applicationId}
  • Authentication
  • Management api authentication method Added
DELETE /api/roles/{id}/scopes/{scopeId}
  • Authentication
  • Management api authentication method Added
DELETE /api/roles/{id}/users/{userId}
  • Authentication
  • Management api authentication method Added
DELETE /api/sso-connectors/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/users/{userId}
  • Authentication
  • Management api authentication method Added
DELETE /api/users/{userId}/identities/{target}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • ssoIdentities property Modified
  • Authentication
  • Management api authentication method Added
DELETE /api/users/{userId}/mfa-verifications/{verificationId}
  • Authentication
  • Management api authentication method Added
DELETE /api/users/{userId}/roles/{roleId}
  • Authentication
  • Management api authentication method Added
GET /api/.well-known/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • socialConnectors property Modified
      • tenantId, agreeToTermsPolicy, googleOneTap properties Added
GET /api/applications
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Query
  • excludeOrganizationId query parameter Added
  • Authentication
  • Management api authentication method Added
GET /api/applications/{applicationId}/roles
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/applications/{applicationId}/sign-in-experience
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/applications/{applicationId}/user-consent-scopes
  • Authentication
  • Management api authentication method Added
GET /api/applications/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customClientMetadata property Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/applications/{id}/protected-app-metadata/custom-domains
  • Authentication
  • Management api authentication method Added
DELETE /api/applications/{applicationId}/user-consent-scopes/{scopeType}/{scopeId}
  • Authentication
  • Management api authentication method Added
DELETE /api/applications/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/applications/{id}/protected-app-metadata/custom-domains/{domain}
  • Authentication
  • Management api authentication method Added
DELETE /api/applications/{id}/users/{userId}/consent-organizations/{organizationId}
  • Authentication
  • Management api authentication method Added
DELETE /api/configs/jwt-customizer/{tokenTypePath}
  • Authentication
  • Management api authentication method Added
DELETE /api/configs/oidc/{keyType}/{keyId}
  • Authentication
  • Management api authentication method Added
DELETE /api/connectors/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/custom-phrases/{languageTag}
  • Authentication
  • Management api authentication method Added
DELETE /api/domains/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/hooks/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/organization-invitations/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/organization-roles/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/organization-roles/{id}/resource-scopes/{scopeId}
  • Authentication
  • Management api authentication method Added
DELETE /api/organization-roles/{id}/scopes/{organizationScopeId}
  • Authentication
  • Management api authentication method Added
DELETE /api/organization-scopes/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/organizations/{id}
  • Authentication
  • Management api authentication method Added
DELETE /api/organizations/{id}/jit/email-domains/{emailDomain}
  • Authentication
  • Management api authentication method Added
DELETE /api/organizations/{id}/jit/roles/{organizationRoleId}
  • Authentication
  • Management api authentication method Added
DELETE /api/organizations/{id}/users/{userId}
  • Authentication
  • Management api authentication method Added
GET /api/applications/{id}/users/{userId}/consent-organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
      • organizations property Modified
  • Authentication
  • Management api authentication method Added
GET /api/logs/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/organization-invitations
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/organization-invitations/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/organization-roles
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/organization-roles/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId, type properties Added
  • Authentication
  • Management api authentication method Added
GET /api/organization-roles/{id}/resource-scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/organization-roles/{id}/scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/organization-scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/organization-scopes/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/organizations/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/organizations/{id}/jit/email-domains
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/organizations/{id}/jit/roles
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/organizations/{id}/users
  • Authentication
  • Management api authentication method Added
GET /api/organizations/{id}/users/{userId}/roles
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/organizations/{id}/users/{userId}/scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/resources
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/resources/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/resources/{resourceId}/scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/configs/admin-console
  • Authentication
  • Management api authentication method Added
GET /api/configs/jwt-customizer
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1 alternative Modified
  • Authentication
  • Management api authentication method Added
GET /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1 alternative Modified
  • Authentication
  • Management api authentication method Added
GET /api/configs/oidc/{keyType}
  • Authentication
  • Management api authentication method Added
GET /api/connector-factories
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/connector-factories/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • formItems property Modified
  • Authentication
  • Management api authentication method Added
GET /api/connectors
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/connectors/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • formItems property Modified
  • Authentication
  • Management api authentication method Added
GET /api/custom-phrases
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/logs
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/hooks/{id}/recent-logs
  • Authentication
  • Management api authentication method Added
GET /api/hooks/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
GET /api/hooks
  • Response
  • 200 response Modified
    • application/json content type Modified
  • Authentication
  • Management api authentication method Added
GET /api/domains/{id}
  • Authentication
  • Management api authentication method Added
GET /api/domains
  • Authentication
  • Management api authentication method Added
GET /api/dashboard/users/total
  • Authentication
  • Management api authentication method Added
GET /api/dashboard/users/new
  • Authentication
  • Management api authentication method Added
GET /api/dashboard/users/active
  • Authentication
  • Management api authentication method Added
GET /api/custom-phrases/{languageTag}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • tenantId property Added
  • Authentication
  • Management api authentication method Added
Added 14
DELETE /api/organizations/{id}/applications/{applicationId}
DELETE /api/organizations/{id}/applications/{applicationId}/roles/{organizationRoleId}
DELETE /api/organizations/{id}/jit/sso-connectors/{ssoConnectorId}
GET /api/applications/{id}/organizations
GET /api/organizations/{id}/applications
GET /api/organizations/{id}/applications/{applicationId}/roles
GET /api/organizations/{id}/jit/sso-connectors
POST /api/organizations/{id}/applications
POST /api/organizations/{id}/applications/roles
POST /api/organizations/{id}/applications/{applicationId}/roles
POST /api/organizations/{id}/jit/sso-connectors
PUT /api/organizations/{id}/applications
PUT /api/organizations/{id}/applications/{applicationId}/roles
PUT /api/organizations/{id}/jit/sso-connectors
28 structure changes including:
8 Additions
20 Modifications
Modified 20
POST /api/organizations
  • Body
  • application/json content type Modified
    • isMfaRequired property Added
POST /api/connectors
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customData, fromEmail properties Added
POST /api/applications
  • Body
  • application/json content type Modified
    • oidcClientMetadata property Modified
      • backchannelLogoutUri, backchannelLogoutSessionRequired properties Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • oidcClientMetadata property Modified
PATCH /api/sign-in-exp
  • Body
  • application/json content type Modified
    • socialSignIn property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • socialSignIn property Added
PATCH /api/organizations/{id}
  • Body
  • application/json content type Modified
    • isMfaRequired property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • isMfaRequired property Added
PATCH /api/connectors/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customData, fromEmail properties Added
PATCH /api/applications/{id}
  • Body
  • application/json content type Modified
    • oidcClientMetadata property Modified
      • backchannelLogoutUri, backchannelLogoutSessionRequired properties Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • oidcClientMetadata property Modified
GET /api/users/{userId}/organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • socialSignIn property Added
GET /api/roles/{id}/applications
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/organizations/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • isMfaRequired property Added
GET /api/organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/connectors/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customData, fromEmail properties Added
GET /api/connectors
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/connector-factories/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customData, fromEmail properties Added
GET /api/connector-factories
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/applications/{id}/users/{userId}/consent-organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
      • organizations property Modified
GET /api/applications/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • oidcClientMetadata property Modified
GET /api/applications
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/.well-known/sign-in-exp
  • Response
  • 200 response Modified
    • application/json content type Modified
      • socialConnectors property Modified
      • socialSignIn property Added
Added 8
PUT /api/organizations/{id}/jit/roles
PUT /api/organizations/{id}/jit/email-domains
POST /api/organizations/{id}/jit/roles
POST /api/organizations/{id}/jit/email-domains
GET /api/organizations/{id}/jit/roles
GET /api/organizations/{id}/jit/email-domains
DELETE /api/organizations/{id}/jit/roles/{organizationRoleId}
DELETE /api/organizations/{id}/jit/email-domains/{emailDomain}
9 structure changes including:
9 Modifications
Modified 9 Breaking
GET /api/applications/{applicationId}/roles
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/roles
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/roles/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • isDefault property Added
GET /api/users/{userId}/roles
  • Response
  • 200 response Modified
    • application/json content type Modified
PATCH /api/roles/{id}
  • Body
  • application/json content type Modified
    • isDefault property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • isDefault property Added
POST /api/interaction/single-sign-on/{connectorId}/authentication
  • Response
  • 500 response Added
POST /api/interaction/single-sign-on/{connectorId}/registration
  • Response
  • 500 response Added
POST /api/roles
  • Body
  • application/json content type Modified
    • isDefault property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • isDefault property Added
POST /api/roles/{id}/scopes
  • Response
  • 200 response Modified
    • application/json content type Removed
      • Removing a resource is always breaking unless it was deprecated before
        Breaking
  • 201 response Added
9 structure changes including:
4 Additions
5 Modifications
Modified 5 Breaking
GET /api/applications/{applicationId}/user-consent-scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
      • organizationResourceScopes property Modified
        • Full types is now array[object]
        • Property is now required
          Breaking
GET /api/interaction/consent
  • Response
  • 200 response Modified
    • application/json content type Modified
      • organizations, missingResourceScopes properties Modified
GET /api/organization-roles
  • Response
  • 200 response Modified
    • application/json content type Modified
POST /api/hooks
  • Body
  • application/json content type Modified
    • event property Modified
      • Full types went from string | null to string
      • event property Modified
        • Full types went from string | null to string
POST /api/organization-roles
  • Body
  • application/json content type Modified
    • resourceScopeIds property Modified
      • Full types is now array[string]
      • Property is now required
        Breaking
      • resourceScopeIds property Modified
        • Full types is now array[string]
        • Property is now required
          Breaking
Added 4
DELETE /api/organization-roles/{id}/resource-scopes/{scopeId}
GET /api/organization-roles/{id}/resource-scopes
POST /api/organization-roles/{id}/resource-scopes
PUT /api/organization-roles/{id}/resource-scopes
2 structure changes including:
2 Modifications
Modified 2
GET /api/applications/{applicationId}/user-consent-scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
      • organizationResourceScopes property Added
POST /api/applications/{applicationId}/user-consent-scopes
  • Body
  • application/json content type Modified
    • organizationResourceScopes property Added
6 structure changes including:
6 Modifications
Modified 6
GET /api/applications/{id}/users/{userId}/consent-organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
      • organizations property Modified
GET /api/organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/organizations/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customData property Added
GET /api/users/{userId}/organizations
  • Response
  • 200 response Modified
    • application/json content type Modified
PATCH /api/organizations/{id}
  • Body
  • application/json content type Modified
    • customData property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • customData property Added
POST /api/organizations
  • Body
  • application/json content type Modified
    • customData property Added
11 structure changes including:
7 Additions
4 Modifications
Modified 4
GET /api/configs/jwt-customizer
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1, object-2 alternatives Modified
GET /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1, object-2 alternatives Modified
PATCH /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1, object-2 alternatives Modified
PUT /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1, object-2 alternatives Modified
Added 7
DELETE /api/organization-invitations/{id}
GET /api/organization-invitations
GET /api/organization-invitations/{id}
GET /api/organizations/{id}/users/{userId}/scopes
POST /api/organization-invitations
POST /api/organization-invitations/{id}/message
PUT /api/organization-invitations/{id}/status
33 structure changes including:
4 Additions
29 Modifications
Modified 29 Breaking
DELETE /api/users/{userId}/identities/{target}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • identities property Modified
      • updatedAt, profile properties Added
GET /api/sso-connectors/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • providerType property Added
GET /api/users
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/users/{userId}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • identities property Modified
      • updatedAt, profile properties Added
PATCH /api/configs/admin-console
  • Body
  • application/json content type Modified
    • checkedChargeNotification property Modified
      • tenantMember property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • checkedChargeNotification property Modified
PATCH /api/resources/{resourceId}/scopes/{scopeId}
  • Body
  • application/json content type Modified
    • description property Modified
      • Full types went from string to string | null
      • description property Modified
        • Full types went from string to string | null
  • Response
  • 200 response Modified
    • application/json content type Modified
      • description property Modified
        • Full types went from string to string | null
PATCH /api/sso-connectors/{id}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • providerType property Added
PATCH /api/users/{userId}
  • Body
  • application/json content type Modified
    • profile property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • identities property Modified
      • updatedAt, profile properties Added
PATCH /api/users/{userId}/is-suspended
  • Response
  • 200 response Modified
    • application/json content type Modified
      • identities property Modified
      • updatedAt, profile properties Added
PATCH /api/users/{userId}/password
  • Response
  • 200 response Modified
    • application/json content type Modified
      • identities property Modified
      • updatedAt, profile properties Added
POST /api/organization-roles
  • Body
  • application/json content type Modified
    • resourceScopeIds property Added
POST /api/resources/{resourceId}/scopes
  • Body
  • application/json content type Modified
    • description property Modified
      • Full types went from string to string | null
      • Property is no longer required
      • description property Modified
        • Full types went from string to string | null
        • Property is no longer required
POST /api/roles/{id}/scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
POST /api/users
  • Body
  • application/json content type Modified
    • profile property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • identities property Modified
      • updatedAt, profile properties Added
POST /api/users/{userId}/identities
  • Response
  • 200 response Modified
    • application/json content type Modified
      • Additional properties: property Modified
PUT /api/configs/jwt-customizer/{tokenTypePath}
  • Body
  • application/json content type Modified
    • envVars property Removed
      • Removing a resource is always breaking unless it was deprecated before
        Breaking
    • environmentVariables property Added
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1, object-2 alternatives Modified
PUT /api/users/{userId}/identities/{target}
  • Body
  • application/json content type Modified
    • details property Modified
      • Additional properties: property Removed
        • Removing a resource is always breaking unless it was deprecated before
          Breaking
  • Response
  • 200 response Modified
    • application/json content type Modified
      • Additional properties: property Modified
GET /api/applications/{applicationId}/user-consent-scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
      • resourceScopes property Modified
GET /api/configs/admin-console
  • Response
  • 200 response Modified
    • application/json content type Modified
      • checkedChargeNotification property Modified
GET /api/configs/jwt-customizer/{tokenTypePath}
  • Response
  • 200 response Modified
    • application/json content type Modified
      • object-1, object-2 alternatives Modified
GET /api/interaction/consent
  • Response
  • 200 response Modified
    • application/json content type Modified
      • missingResourceScopes property Modified
GET /api/organization-roles
  • Query
  • q query parameter Added
  • Response
  • 400 response Added
GET /api/organizations/{id}/users
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/resources
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/resources/{resourceId}/scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/roles/{id}/scopes
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/roles/{id}/users
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/sso-connector-providers
  • Response
  • 200 response Modified
    • application/json content type Modified
GET /api/sso-connectors
  • Response
  • 200 response Modified
    • application/json content type Modified
Added 4
POST /api/configs/jwt-customizer/test
PATCH /api/users/{userId}/profile
PATCH /api/configs/jwt-customizer/{tokenTypePath}
GET /api/configs/jwt-customizer