Create User

Recent Requests
Log in to see full request history
TimeStatusUser Agent
Retrieving recent requests…
LoadingLoading…

Allows you to create a new user and grant them access to the Capillary platform. The API creates the user account and automatically assigns them a role and access group based on the orgRole value passed in the request. Once the user is created, their role and access group setup is triggered automatically on the platform.

This API is primarily used by identity providers such as Microsoft Entra ID (Azure AD) to automate user onboarding. A Bearer token tied to a specific org is required, the org is derived from the token, so all users created through a token are onboarded under that org.

Example request

curl --location 'https://eu.api.capillarytech.com/launchpad/api/v2/Users' \
--header 'Authorization: Bearer a7ba38a39712dff766414c43ef23dbf3c8d5138fd9db3ec3916b09a7a48da0c3' \
--header 'Content-Type: application/json' \
--data-raw '{
      "schemas": [
        "urn:ietf:params:scim:schemas:core:2.0:User",
        "urn:ietf:params:scim:schemas:extension:enterprise:2.0:User",
        "urn:ietf:params:scim:schemas:extension:capillary:2.0:User"
      ],
      "userName": "[email protected]",
      "externalId": "",
      "displayName": "Cap demo",
      "name": {
        "givenName": "Cap",
        "familyName": "demo"
      },
      "emails": [
        {
          "value": "[email protected]",
          "type": "work",
          "primary": true
        }
      ],
      "active": true,
      "phoneNumbers": [],
      "urn:ietf:params:scim:schemas:extension:enterprise:2.0:User": {},
      "urn:ietf:params:scim:schemas:extension:capillary:2.0:User": {},
      "orgRole": "org_level"
    }'

Prerequisites

  • A valid SCIM bearer token for your organization, generated using the Create SCIM Token API. Pass it in the request header as Authorization: Bearer {token}.

Header information

HeaderRequiredDescription
AuthorizationYesBearer token generated when setting up SCIM for your organization. Pass the token value returned by the Create SCIM Token API.
Content-TypeYesMust be application/scim+json.
AcceptNoSet to application/json to receive JSON responses.

Body parameters

FieldTypeRequiredDescription
schemasarrayYesTells the API what type of data is being sent. Must include "urn:ietf:params:scim:schemas:core:2.0:User". If you are also sending enterprise or Capillary extension fields, add their respective URNs here as well.
userNamestringYesThe user's unique identifier, typically their email address. This is used as the login identity and as the email when setting up the user on the platform.
nameobjectOptionalThe user's full name.
.givenNamestringOptionalThe user's first name. Used as the first name when setting up the user on the platform.
.familyNamestringOptionalThe user's last name. Used as the last name when setting up the user on the platform.
.middleNamestringOptionalThe user's middle name.
displayNamestringOptionalThe name shown for the user on the platform. If not provided, it is automatically constructed from givenName and familyName. If both are absent, userName is used instead.
emailsarrayOptionalThe user's email addresses.
.valuestringOptionalThe email address.
.primarybooleanOptionalSet to true to mark this as the user's primary email address.
phoneNumbersarrayOptionalThe user's phone numbers.
.valuestringOptionalThe phone number. A number with type: "fax" can be used to pass a role in orgKey:role format as an alternate way to assign access.
.typestringOptionalThe type of phone number. Supported values: work, mobile, fax, home, other.
.primarybooleanOptionalSet to true to mark this as the user's primary phone number.
activebooleanOptionalIndicates whether the user account should be active upon creation. Defaults to true.
externalIdstringOptionalThe user's ID in the identity provider (e.g. Azure AD object ID). Used to identify and match the user during future sync operations. Must be unique per org.
urn:ietf:params:scim:schemas:extension:enterprise:2.0:UserobjectOptionalEnterprise-level attributes for the user. Add this URN to schemas when sending these fields.
..orgRolestringOptionalThe role to assign to the user in your Capillary organization. The accepted values are the role names configured in your organization, the same values used as displayName when creating SCIM groups. If not provided, defaults to org_level.

Example response

{
  "schemas": [
    "urn:ietf:params:scim:schemas:core:2.0:User"
  ],
  "id": "scim-1780291539381",
  "userName": "[email protected]",
  "name": {
    "givenName": "Cap",
    "familyName": "demo"
  },
  "displayName": "Cap demo",
  "emails": [
    {
      "value": "[email protected]",
      "type": "work",
      "primary": true
    }
  ],
  "active": true
}

Response parameters

FieldTypeDescription
schemasarrayList of schema URNs that describe the structure of the response. Indicates which core and extension schemas are present in the returned user object.
idstringUnique ID assigned to the user by Capillary upon creation. This ID is used to identify the user in all subsequent SCIM operations such as update or delete.
userNamestringThe unique identifier of the created user, typically their email address. This is the same value passed in the request.
displayNamestringThe name displayed for the user on the platform. Returned as provided in the request, or auto-constructed from givenName and familyName if not explicitly passed.
name.givenNamestringThe first name of the created user.
name.familyNamestringThe last name of the created user.
emailsarrayThe email addresses associated with the created user, as provided in the request.
emails.valuestringThe email address of the user.
emails.primarybooleanIndicates whether this is the user's primary email address.
activebooleanIndicates whether the created user account is active. Returns true unless explicitly set to false in the request.
externalIdstring or nullThe user's ID from the identity provider (e.g. Azure AD). Returned as null if not provided in the request.
urn:ietf:params:scim:schemas:extension:enterprise:2.0:UserobjectEnterprise extension fields for the created user. Fields not provided in the request are returned as null.
..orgRolestringThe role assigned to the user on the platform, as derived from the request. Returned as null if no valid role was provided.

Error codes

CodeTypeDescription
400ErroruserName is missing or blank.
401ErrorAuthorization header is missing or does not start with Bearer.
403ErrorToken is invalid or inactive.
409ErrorA user with the same userName or externalId already exists for this org.

Body Params
schemas
array of strings
schemas
string
string
string
name
object
emails
array of objects
emails
boolean
phoneNumbers
array of strings
phoneNumbers
urn:ietf:params:scim:schemas:extension:enterprise:2.0:User
object
urn:ietf:params:scim:schemas:extension:capillary:2.0:User
object
Response

Language
URL
LoadingLoading…
Response
Click Try It! to start a request and see the response here! Or choose an example:
application/json