PUT /api/my-account/identities
O auth2

Replace (upsert) an identity (social identity) for the user. Creates the identity if absent, replaces it otherwise. Idempotent. Unlike POST, this allows replacing an existing identity for the same social target. When replacing with a different social user ID, previously stored third-party tokens for the old identity are cleared. A logto-verification-id header is required when the user has at least one security verification method: password, primary email, or primary phone. The header can be omitted only when the user has none of these methods. A verification record for the new social identity is always required.

application/json

Body Required

  • newIdentifierVerificationRecordId string Required

    The identifier verification record ID for the new social identity ownership verification.

Responses

  • 204

    The identity was replaced successfully.

  • 400

    The request body is invalid or the social identity field is not editable.

  • 401

    Permission denied, identity verification is required or insufficient scope.

  • 403

    Forbidden

  • 422

    The new verification record is invalid or the identity is already in use.

PUT /api/my-account/identities 
curl \
 --request PUT 'https://[tenant_id].logto.app/api/my-account/identities' \
 --header "Authorization: Bearer $ACCESS_TOKEN" \
 --header "Content-Type: application/json" \
 --data '{"newIdentifierVerificationRecordId":"string"}'
Request examples 
{
  "newIdentifierVerificationRecordId": "string"
}