Skip to main content
Version: v1.0.0(int)

Platform

Identity, organization lifecycle, membership, invitations, and API tokens. Routes the app shell hits before any tenant-scoped data loads. The whole platform domain is control plane: web-only administration, authenticated with the Firebase token. Login and logout are not endpoints — Firebase handles them client-side; the backend only verifies the resulting token.

Endpoints E001E023. Each maps 1:1 to the L3 workflow with the same number — see the master endpoints table for the flat view.

User — /user

  • E001 POST /user — Create user → W001
  • E002 GET /user — Get user → W002
  • E003 PATCH /user — Update user → W003
  • E004 DELETE /user — Delete user → W004

API tokens (PATs) — /user/api-tokens

  • E005 POST /user/api-tokens — Create API token → W005
  • E006 GET /user/api-tokens — List my API tokens → W006
  • E007 DELETE /user/api-tokens/:id — Revoke API token → W007

Invitations — invitee side — /invitations

  • E008 GET /invitations — List my pending invitations → W008
  • E009 GET /invitations/by-token/:token — Look up invitation by token (public) → W009
  • E010 POST /invitations/accept — Accept invitation → W010
  • E011 POST /invitations/decline — Decline invitation → W011

Organization — /organizations

  • E012 POST /organizations — Create organization → W012
  • E013 GET /organizations/current — Get organization → W013
  • E014 PATCH /organizations/current — Update organization → W014
  • E015 DELETE /organizations/current — Delete organization → W015

Members — /organizations/current/members

  • E016 GET /organizations/current/members — List organization members → W016
  • E017 PATCH /organizations/current/members/:userId — Update user role → W017
  • E018 DELETE /organizations/current/members/:userId — Remove user from organization → W018
  • E019 DELETE /organizations/current/members/me — Leave organization → W019

Org invitations — /organizations/current/invitations

  • E020 POST /organizations/current/invitations — Send invitation → W020
  • E021 POST /organizations/current/invitations/:id/resend — Resend invitation → W021
  • E022 DELETE /organizations/current/invitations/:id — Revoke invitation → W022
  • E023 GET /organizations/current/invitations — List organization invitations → W023