User by ID
Returns the full user object (human or machine) including the profile, email, etc.
Path Parameters
- id string required
User ID of the user you like to get.
Header Parameters
- x-zitadel-orgid string
The default is always the organization of the requesting user. If you like to get users of another organization include the header. Make sure the user has permission to access the requested data.
- 200
- default
OK
- application/json
- application/grpc
- application/grpc-web+proto
- Schema
- Example (from schema)
Schema
user object
id stringdetails object
sequence uint64on read: the sequence of the last event reduced by the projection
on manipulation: the timestamp of the event(s) added by the manipulation
creationDate date-timeon read: the timestamp of the first event of the object
on create: the timestamp of the event(s) added by the manipulation
changeDate date-timeon read: the timestamp of the last event reduced by the projection
on manipulation: the
resourceOwner resource_owner is the organization an object belongs tostate stringPossible values: [
USER_STATE_UNSPECIFIED
,USER_STATE_ACTIVE
,USER_STATE_INACTIVE
,USER_STATE_DELETED
,USER_STATE_LOCKED
,USER_STATE_SUSPEND
,USER_STATE_INITIAL
]Default value:
USER_STATE_UNSPECIFIED
current state of the user
userName stringloginNames string[]preferredLoginName stringhuman object
one of type use human or machine
profile object
firstName stringlastName stringnickName stringdisplayName stringa user can set his display name, if nothing is set ZITADEL computes "first_name last_name"
preferredLanguage stringlanguage tag analog https://tools.ietf.org/html/rfc3066
gender stringPossible values: [
GENDER_UNSPECIFIED
,GENDER_FEMALE
,GENDER_MALE
,GENDER_DIVERSE
]Default value:
GENDER_UNSPECIFIED
the gender of the human
avatarUrl stringavatar URL of the user
email object
email stringemail address of the user. (spec: https://tools.ietf.org/html/rfc2822#section-3.4.1)
isEmailVerified booleanIs true if the user verified his email or if the email is managed outside ZITADEL
phone object
phone stringmobile phone number of the user. (use global pattern of spec https://tools.ietf.org/html/rfc3966)
isPhoneVerified booleanIs true if the user verified his phone or if the phone is managed outside ZITADEL
machine object
one of type use human or machine
name stringdescription stringhasSecret booleanaccessTokenType stringPossible values: [
ACCESS_TOKEN_TYPE_BEARER
,ACCESS_TOKEN_TYPE_JWT
]Default value:
ACCESS_TOKEN_TYPE_BEARER
Type of access token to receive
{
"user": {
"id": "69629023906488334",
"details": {
"sequence": "2",
"creationDate": "2023-05-02",
"changeDate": "2023-05-02",
"resourceOwner": "69629023906488334"
},
"state": "USER_STATE_UNSPECIFIED",
"userName": "gigi-giraffe",
"loginNames": [
"gigi@zitadel.com",
"gigi@zitadel.zitadel.ch"
],
"preferredLoginName": "gigi@zitadel.com",
"human": {
"profile": {
"firstName": "Gigi",
"lastName": "Giraffe",
"nickName": "gigi-giraffe",
"displayName": "Gigi Giraffe",
"preferredLanguage": "en",
"gender": "GENDER_UNSPECIFIED",
"avatarUrl": "https://api.zitadel.ch/assets/v1/avatar-32432jkh4kj32"
},
"email": {
"email": "gigi@zitadel.com",
"isEmailVerified": true
},
"phone": {
"phone": "+41 71 000 00 00",
"isPhoneVerified": true
}
},
"machine": {
"name": "zitadel",
"description": "The one and only IAM",
"hasSecret": "true",
"accessTokenType": "ACCESS_TOKEN_TYPE_BEARER"
}
}
}
- Schema
- Example (from schema)
Schema
user object
id stringdetails object
sequence uint64on read: the sequence of the last event reduced by the projection
on manipulation: the timestamp of the event(s) added by the manipulation
creationDate date-timeon read: the timestamp of the first event of the object
on create: the timestamp of the event(s) added by the manipulation
changeDate date-timeon read: the timestamp of the last event reduced by the projection
on manipulation: the
resourceOwner resource_owner is the organization an object belongs tostate stringPossible values: [
USER_STATE_UNSPECIFIED
,USER_STATE_ACTIVE
,USER_STATE_INACTIVE
,USER_STATE_DELETED
,USER_STATE_LOCKED
,USER_STATE_SUSPEND
,USER_STATE_INITIAL
]Default value:
USER_STATE_UNSPECIFIED
current state of the user
userName stringloginNames string[]preferredLoginName stringhuman object
one of type use human or machine
profile object
firstName stringlastName stringnickName stringdisplayName stringa user can set his display name, if nothing is set ZITADEL computes "first_name last_name"
preferredLanguage stringlanguage tag analog https://tools.ietf.org/html/rfc3066
gender stringPossible values: [
GENDER_UNSPECIFIED
,GENDER_FEMALE
,GENDER_MALE
,GENDER_DIVERSE
]Default value:
GENDER_UNSPECIFIED
the gender of the human
avatarUrl stringavatar URL of the user
email object
email stringemail address of the user. (spec: https://tools.ietf.org/html/rfc2822#section-3.4.1)
isEmailVerified booleanIs true if the user verified his email or if the email is managed outside ZITADEL
phone object
phone stringmobile phone number of the user. (use global pattern of spec https://tools.ietf.org/html/rfc3966)
isPhoneVerified booleanIs true if the user verified his phone or if the phone is managed outside ZITADEL
machine object
one of type use human or machine
name stringdescription stringhasSecret booleanaccessTokenType stringPossible values: [
ACCESS_TOKEN_TYPE_BEARER
,ACCESS_TOKEN_TYPE_JWT
]Default value:
ACCESS_TOKEN_TYPE_BEARER
Type of access token to receive
{
"user": {
"id": "69629023906488334",
"details": {
"sequence": "2",
"creationDate": "2023-05-02",
"changeDate": "2023-05-02",
"resourceOwner": "69629023906488334"
},
"state": "USER_STATE_UNSPECIFIED",
"userName": "gigi-giraffe",
"loginNames": [
"gigi@zitadel.com",
"gigi@zitadel.zitadel.ch"
],
"preferredLoginName": "gigi@zitadel.com",
"human": {
"profile": {
"firstName": "Gigi",
"lastName": "Giraffe",
"nickName": "gigi-giraffe",
"displayName": "Gigi Giraffe",
"preferredLanguage": "en",
"gender": "GENDER_UNSPECIFIED",
"avatarUrl": "https://api.zitadel.ch/assets/v1/avatar-32432jkh4kj32"
},
"email": {
"email": "gigi@zitadel.com",
"isEmailVerified": true
},
"phone": {
"phone": "+41 71 000 00 00",
"isPhoneVerified": true
}
},
"machine": {
"name": "zitadel",
"description": "The one and only IAM",
"hasSecret": "true",
"accessTokenType": "ACCESS_TOKEN_TYPE_BEARER"
}
}
}
- Schema
- Example (from schema)
Schema
user object
id stringdetails object
sequence uint64on read: the sequence of the last event reduced by the projection
on manipulation: the timestamp of the event(s) added by the manipulation
creationDate date-timeon read: the timestamp of the first event of the object
on create: the timestamp of the event(s) added by the manipulation
changeDate date-timeon read: the timestamp of the last event reduced by the projection
on manipulation: the
resourceOwner resource_owner is the organization an object belongs tostate stringPossible values: [
USER_STATE_UNSPECIFIED
,USER_STATE_ACTIVE
,USER_STATE_INACTIVE
,USER_STATE_DELETED
,USER_STATE_LOCKED
,USER_STATE_SUSPEND
,USER_STATE_INITIAL
]Default value:
USER_STATE_UNSPECIFIED
current state of the user
userName stringloginNames string[]preferredLoginName stringhuman object
one of type use human or machine
profile object
firstName stringlastName stringnickName stringdisplayName stringa user can set his display name, if nothing is set ZITADEL computes "first_name last_name"
preferredLanguage stringlanguage tag analog https://tools.ietf.org/html/rfc3066
gender stringPossible values: [
GENDER_UNSPECIFIED
,GENDER_FEMALE
,GENDER_MALE
,GENDER_DIVERSE
]Default value:
GENDER_UNSPECIFIED
the gender of the human
avatarUrl stringavatar URL of the user
email object
email stringemail address of the user. (spec: https://tools.ietf.org/html/rfc2822#section-3.4.1)
isEmailVerified booleanIs true if the user verified his email or if the email is managed outside ZITADEL
phone object
phone stringmobile phone number of the user. (use global pattern of spec https://tools.ietf.org/html/rfc3966)
isPhoneVerified booleanIs true if the user verified his phone or if the phone is managed outside ZITADEL
machine object
one of type use human or machine
name stringdescription stringhasSecret booleanaccessTokenType stringPossible values: [
ACCESS_TOKEN_TYPE_BEARER
,ACCESS_TOKEN_TYPE_JWT
]Default value:
ACCESS_TOKEN_TYPE_BEARER
Type of access token to receive
{
"user": {
"id": "69629023906488334",
"details": {
"sequence": "2",
"creationDate": "2023-05-02",
"changeDate": "2023-05-02",
"resourceOwner": "69629023906488334"
},
"state": "USER_STATE_UNSPECIFIED",
"userName": "gigi-giraffe",
"loginNames": [
"gigi@zitadel.com",
"gigi@zitadel.zitadel.ch"
],
"preferredLoginName": "gigi@zitadel.com",
"human": {
"profile": {
"firstName": "Gigi",
"lastName": "Giraffe",
"nickName": "gigi-giraffe",
"displayName": "Gigi Giraffe",
"preferredLanguage": "en",
"gender": "GENDER_UNSPECIFIED",
"avatarUrl": "https://api.zitadel.ch/assets/v1/avatar-32432jkh4kj32"
},
"email": {
"email": "gigi@zitadel.com",
"isEmailVerified": true
},
"phone": {
"phone": "+41 71 000 00 00",
"isPhoneVerified": true
}
},
"machine": {
"name": "zitadel",
"description": "The one and only IAM",
"hasSecret": "true",
"accessTokenType": "ACCESS_TOKEN_TYPE_BEARER"
}
}
}
An unexpected error response.
- application/json
- application/grpc
- application/grpc-web+proto
- Schema
- Example (from schema)
Schema
- code int32
- message string
details object[]
Array [@type string]
{
"code": 0,
"message": "string",
"details": [
{
"@type": "string"
}
]
}
- Schema
- Example (from schema)
Schema
- code int32
- message string
details object[]
Array [@type string]
{
"code": 0,
"message": "string",
"details": [
{
"@type": "string"
}
]
}
- Schema
- Example (from schema)
Schema
- code int32
- message string
details object[]
Array [@type string]
{
"code": 0,
"message": "string",
"details": [
{
"@type": "string"
}
]
}