Users Endpoints (2022/06)


These endpoints enable management of users on a network. A user is an instance of a person that is associated with a single network (there can only be one person, but there can be 0 to an infinite number of users on a network).

Base URL for these endpoints:  https://api.bsn.cloud/2022/06/REST/Users

_________________________________________________________________________

GET /

Returns a list of user instances on a network

Required Scope Token

bsn.api.main.users.retrieve

______________________________________________________________

Query String Parameters

marker string optional

A value specifying which page to retrieve. This value is useful if the isTruncated entry in the response body of the previous GET call indicates that the number of user instances exceeds the pageSize.

This parameter is only required if you need more elements in the paged list than the pageSize (100).

 

pageSize int optional

The maximum number of user instances that can be contained in the response body. This defaults to the maximum allowed page size (100).

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • marker value is set to the [PagedList].[NextMarker] property value from the previous BSN.cloud API response.

  • pageSize is set to 1

GET /2022/06/REST/Users/?marker=RY0JlZW4tWW3hcnMsMTcyMU4&pageSize=1 HTTP/1.1 Host: api.bsn.cloud Connection: Keep-Alive Authorization: Bearer {{UserAccessToken}} Accept: application/json, application/vnd.bsn.error+json Accept-Encoding: gzip,deflate

______________________________________________________________

Success Response Body

200: Returns a paged list of User Entity instances on a network. This will return not more than 100 entities along with the information necessary to return any other remaining pages.

Example

{ "items": [ { "id": 12345, "person": { "id": 1234, "login": "JohnDoe@look.biz", "password": null, "firstName": "John", "lastName": "Doe", "creationDate": "2020-07-09T19:05:20.247Z", "lastModifiedDate": "2023-11-29T17:40:54.403Z", "activationDate": "2020-07-09T19:05:38.723Z" }, "description": "Network Administrator", "creationDate": "2020-07-09T19:09:04.98Z", "lastModifiedDate": "2020-08-17T20:49:48.377Z", "lastLoginDate": "2024-01-03T17:55:26.17Z", "isLockedOut": false, "lastLockoutDate": null, "roleName": "Administrators", "permissions": [ { "entityId": 123456, "operationUID": "67b9b0ab-fb5f-36c4-d598-a71aa8998e4e", "principal": { "login": "JohnDoe@look.biz", "type": "User", "id": 12345 }, "isFixed": true, "isInherited": false, "isAllowed": true, "creationDate": "2020-08-17T20:49:48.353Z" } ] }], "totalItemCount": 2, "matchingItemCount": 2, "pageSize": 1, "nextMarker": "F32RY0JlZW4tWW3hcnMuMTcy00", "isTruncated": false, "sortExpression": "[User].[Person].[Login] ASC", "filterExpression": "" }

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request is malformed and therefore invalid

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

POST /

Creates a user instance on a network

Required Scope Token

bsn.api.main.users.create

______________________________________________________________

Request Body

The User Entity

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

POST /2022/06/REST/Users/ HTTP/1.1 Host: api.bsn.cloud Connection: Keep-Alive Authorization: Bearer {{UserAccessToken}} Accept: application/json, application/vnd.bsn.error+json Accept-Encoding: gzip,deflate Content-Type: application/json Content-Length: 468

This is the example request body:

______________________________________________________________

Success Response Body

201: Returns the User Entity created and referenced by the Uri (given by the Location header field) in the response. 

Example

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

415: The server cannot accept the data representation that you sent (as specified in the "Content-Type" header)

5XX: Any 500 code is an internal server error

 

GET /{login}/ 

Returns information for a specified user on a network

Required Scope Token

bsn.api.main.users.retrieve

______________________________________________________________

Segment

login string 

The login information of the user

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • login is set to JaneDoe@brightsign.biz

  • The optional If-Modified-Since header value equals the Last-Modified header value retrieved from the previous GET /login or GET /id response

______________________________________________________________

Success Response with Body

200: Returns the User Entity

Example

This is an example of a successful 200 level response:

Success Response

304: The resource was not modified since the time specified in the “If-Modified-Since” header

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request is malformed and therefore invalid

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

PUT /{login}/ 

Updates information for a specified user on a network

Required Scope Token

bsn.api.main.users.update

______________________________________________________________

Segment

login string 

The login information of the user

______________________________________________________________

Request Body

The User Entity

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • login is set to JaneDoe@brightsign.biz

  • The optional If-Unmodified-Since header value equals the Last-Modified header value retrieved from the GET /id or GET /login response.

This is the example request body:

______________________________________________________________

Success Response

204: The user information has been updated

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

412: Precondition failed (the resource changed since the time specified in the “If-Unmodified-Since” header value)

415: The server cannot accept the data representation that you sent (as specified in the "Content-Type" header)

5XX: Any 500 code is an internal server error

 

DELETE /{login}/ 

Deletes the specified user on a network

Required Scope Token

bsn.api.main.users.delete

______________________________________________________________

Segment

login string 

The login information of the user

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • login is set to JohnDoe@host.com

  • The optional If-Unmodified-Since header value equals the Last-Modified header value retrieved from the GET /id or GET /login response.

______________________________________________________________

Success Response

204: The specified user information was successfully deleted

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

412: Precondition failed (the resource changed since the time specified in the “If-Unmodified-Since” header value)

5XX: Any 500 code is an internal server error

 

GET /{id:int}/ 

Returns information for a specified user on a network.

Required Scope Token

bsn.api.main.users.retrieve

______________________________________________________________

Segment

id int  

A unique identifier for a user

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • id is set to 12345

  • The optional If-Modified-Since header value equals the Last-Modified header value retrieved from the previous GET /login or GET /id response

______________________________________________________________

Success Response with Body

200: Returns the User Entity

Example

This is an example of a 200 level response:

Success Response

304: The resource was not modified since the time specified in the “If-Modified-Since” header

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request is malformed and therefore invalid

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

PUT /{id:int}/ 

Update the given user instance

Required Scope Token

bsn.api.main.users.update

______________________________________________________________

Segment

id int 

A unique identifier for a user

______________________________________________________________

Request Body

The User Entity

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • id is set to 12345

  • The optional If-Unmodified-Since header value equals the Last-Modified header value retrieved from the GET /id or GET /login response.

This is the example request body:

______________________________________________________________

Success Response

204: The user information has been updated

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

412: Precondition failed (the resource changed since the time specified in the “If-Unmodified-Since” header value)

415: The server cannot accept the data representation that you sent (as specified in the "Content-Type" header)

5XX: Any 500 code is an internal server error

 

DELETE /{id:int}/ 

Deletes the specified user on a network

Required Scope Token

bsn.api.main.users.delete

______________________________________________________________

Segment

id int 

A unique identifier for a user

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • id is set to 12345

  • The optional If-Unmodified-Since header value equals the Last-Modified header value retrieved from the GET /id or GET /login response.

______________________________________________________________

Success Response

204: The specified user information was successfully deleted

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

412: Precondition failed (the resource changed since the time specified in the “If-Unmodified-Since” header value)

5XX: Any 500 code is an internal server error

 

GET /Operations/ 

Returns the operational permissions granted to roles for specific business operations

Required Scope Token

bsn.api.main.operations.retrieve

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

______________________________________________________________

Success Response Body

200: Returns the Business Operations Entity

Example

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request is malformed and therefore invalid

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

GET /{id:int}/Permissions/ 

Includes object permissions for a given user instance.

Required Scope Token

bsn.api.main.users.retrieve

______________________________________________________________

Segment

id int 

A unique identifier for a user

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • id is set to 12345

______________________________________________________________

Success Response Body

200: Returns an array of Permission entities 

Example

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request is malformed and therefore invalid

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

POST /{id:int}/Permissions/ 

Adds permissions for a specified user on a network

Required Scope Token

bsn.api.main.users.update

______________________________________________________________

Segment

id int 

A unique identifier for a user

______________________________________________________________

Request Body

An array of Permission entities

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • id is set to 12435

This is the example request body:

______________________________________________________________

Success Response

204: The permissions were successfully added to the specified user instance

Failure Response

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

415: The server cannot accept the data representation that you sent (as specified in the "Content-Type" header)

5XX: Any 500 code is an internal server error

 

DELETE /{id:int}/Permissions/ 

Removes permissions for a specified user on a network

Required Scope Token

bsn.api.main.users.update

______________________________________________________________

Segment

id int

A unique identifier for a user

______________________________________________________________

Request Body

An array of Permission entities

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • id is set to 12345

This is the example request body:

______________________________________________________________

Success Response

204: The specified user permissions were successfully deleted

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

GET /{login}/Permissions/  

Includes object permissions for a given user instance.

Required Scope Token

bsn.api.main.users.retrieve

______________________________________________________________

Segment

login string 

The login information of the user

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • login is set to JohnDoe@brightsign.biz

______________________________________________________________

Success Response Body

200: Returns an array of Permission entities 

Example

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request is malformed and therefore invalid

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

POST /{login}/Permissions/ 

Adds permissions for a specified user on a network

Required Scope Token

bsn.api.main.users.update

______________________________________________________________

Segment

login string 

The login information of the user

______________________________________________________________

Request Body

An array of Permission entities

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • login is set to JohnDoe@brightsign.biz

This is the example request body:

______________________________________________________________

Success Response

204: The permissions were successfully added to the specified user instance

Failure Response

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

415: The server cannot accept the data representation that you sent (as specified in the "Content-Type" header)

5XX: Any 500 code is an internal server error

 

DELETE /{login}/Permissions/ 

Removes permissions for a specified user on a network

Required Scope Token

bsn.api.main.users.update

______________________________________________________________

Segment

login string 

The login information of the user

______________________________________________________________

Request Body

An array of Permission entities

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • login is set to JohnDoe@brightsign.biz

This is the example request body:

______________________________________________________________

Success Response

204: The specified user permissions were successfully deleted

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

GET /{id:int}/Tokens/{token}/ 

Validates the user access or refresh token granted to a specified user

Required Scope Token

bsn.api.main.users.token.validate

______________________________________________________________

Segments

id int 

A unique identifier for a user

token string

A user access or refresh token for a BSN.cloud network

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • id is set to 12345

  • token is set to {{UserAccessToken}}

______________________________________________________________

Success Response Body

200: Returns the Token Info Entity

Example

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request is malformed and therefore invalid

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

DELETE /{id:int}/Tokens/{token}/ 

Revokes user access or refresh tokens for the specified user

Required Scope Token

bsn.api.main.users.token.revoke

______________________________________________________________

Segments

id int

A unique identifier for a user

token string 

The user access or refresh token to use with this endpoint call

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • id is set to 12345

  • token is set to {{UserAccessToken}}

______________________________________________________________

Success Response

204: The user access or refresh token has been successfully revoked from the specified user

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: Either the specified token is invalid, expired, or revoked, or it is issued for another user

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

GET /{login}/Tokens/{token}/ 

Validates the user access or refresh token granted to the specified user

Required Scope Token

bsn.api.main.users.token.validate

______________________________________________________________

Segments

login string 

The login for a user

token string 

A user access or refresh token for a BSN.cloud network

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • login is set to JohnDoe@brightsign.biz

  • token is set to {{UserAccessToken}}

______________________________________________________________

Success Response Body

200: Returns the Token Info Entity

Example

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request is malformed and therefore invalid

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: The server cannot find the requested resource (the path does not exist)

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error

 

DELETE /{login}/Tokens/{token}/ 

Revokes the user access or refresh token granted to the specified user

Required Scope Token

bsn.api.main.users.token.revoke

______________________________________________________________

Segments

login string 

The login for a user

token string 

A user access or refresh token for a BSN.cloud network

______________________________________________________________

Request Example

The example request parameters and headers are set as follows:

  • login is set to JohnDoe@brightsign.biz

  • token is set to {{UserAccessToken}}

______________________________________________________________

Success Response

204: The user access or refresh token has been successfully revoked from the specified user

Failure Response

300: The requested representation could not be returned because it is ambiguous (there are multiple requested representations)

400: The request or request body is malformed and therefore invalid, or it is rejected in accordance with the business rules

401: The access token is invalid or not specified

403: The supplied access token, though valid, doesn't provide access to this method 

404: Either the specified token is invalid, expired, or revoked, or it is issued for another user

406: The server cannot return the data representation that you requested (as specified in the "Accept" header)

5XX: Any 500 code is an internal server error