List My Authorizations/Grants

POST 
https://$CUSTOM-DOMAIN/auth/v1/usergrants/me/_search

Returns a list of the authorizations/user grants the authenticated user has. User grants consist of an organization, a project and 1-n roles.

Request

application/json

Body

required

query

object

Object unspecific list filters like offset, limit and asc/desc.

offset uint64

limit int64

Maximum amount of events returned. The default is set to 1000 in https://github.com/zitadel/zitadel/blob/new-eventstore/cmd/zitadel/startup.yaml. If the limit exceeds the maximum configured ZITADEL will throw an error. If no limit is present the default is taken.

asc boolean

default is descending

application/grpc

Body

required

query

object

Object unspecific list filters like offset, limit and asc/desc.

offset uint64

limit int64

Maximum amount of events returned. The default is set to 1000 in https://github.com/zitadel/zitadel/blob/new-eventstore/cmd/zitadel/startup.yaml. If the limit exceeds the maximum configured ZITADEL will throw an error. If no limit is present the default is taken.

asc boolean

default is descending

application/grpc-web+proto

Body

required

query

object

Object unspecific list filters like offset, limit and asc/desc.

offset uint64

limit int64

Maximum amount of events returned. The default is set to 1000 in https://github.com/zitadel/zitadel/blob/new-eventstore/cmd/zitadel/startup.yaml. If the limit exceeds the maximum configured ZITADEL will throw an error. If no limit is present the default is taken.

asc boolean

default is descending

Responses

200

A successful response.

application/json

Schema

Schema

details

object

totalResult uint64

processedSequence uint64

viewTimestamp date-time

the last time the view got updated

result

object[]

Array [

orgId string

projectId string

userId string

roles string[]

orgName string

grantId string

details

object

sequence uint64

on read: the sequence of the last event reduced by the projection

on manipulation: the timestamp of the event(s) added by the manipulation

creationDate date-time

on read: the timestamp of the first event of the object

on create: the timestamp of the event(s) added by the manipulation

changeDate date-time

on read: the timestamp of the last event reduced by the projection

on manipulation: the

resourceOwner resource_owner is the organization an object belongs to (string)

orgDomain string

projectName string

projectGrantId string

roleKeys string[]

userType string

Possible values: [TYPE_UNSPECIFIED, TYPE_HUMAN, TYPE_MACHINE]

Default value: TYPE_UNSPECIFIED

type of the user (human / machine)

state string

Possible values: [USER_GRANT_STATE_UNSPECIFIED, USER_GRANT_STATE_ACTIVE, USER_GRANT_STATE_INACTIVE]

Default value: USER_GRANT_STATE_UNSPECIFIED

current state of the user grant

]

Example (from schema)

{
  "details": {
    "totalResult": "2",
    "processedSequence": "267831",
    "viewTimestamp": "2025-03-25T16:32:58.427Z"
  },
  "result": [
    {
      "orgId": "69629026806489455",
      "projectId": "98729028932384528",
      "userId": "28746028909593987",
      "roles": [
        "RoleKey1",
        "RoleKey2"
      ],
      "orgName": "ZITADEL",
      "grantId": "",
      "details": {
        "sequence": "2",
        "creationDate": "2025-03-25T16:32:58.427Z",
        "changeDate": "2025-03-25T16:32:58.427Z",
        "resourceOwner": "69629023906488334"
      },
      "orgDomain": "zitadel.cloud",
      "projectName": "ZITADEL",
      "projectGrantId": "28746028909586246",
      "roleKeys": [
        "RoleKey1",
        "RoleKey2"
      ],
      "userType": "TYPE_UNSPECIFIED",
      "state": "USER_GRANT_STATE_UNSPECIFIED"
    }
  ]
}

application/grpc

Schema

Schema

details

object

totalResult uint64

processedSequence uint64

viewTimestamp date-time

the last time the view got updated

result

object[]

Array [

orgId string

projectId string

userId string

roles string[]

orgName string

grantId string

details

object

sequence uint64

on read: the sequence of the last event reduced by the projection

on manipulation: the timestamp of the event(s) added by the manipulation

creationDate date-time

on read: the timestamp of the first event of the object

on create: the timestamp of the event(s) added by the manipulation

changeDate date-time

on read: the timestamp of the last event reduced by the projection

on manipulation: the

resourceOwner resource_owner is the organization an object belongs to (string)

orgDomain string

projectName string

projectGrantId string

roleKeys string[]

userType string

Possible values: [TYPE_UNSPECIFIED, TYPE_HUMAN, TYPE_MACHINE]

Default value: TYPE_UNSPECIFIED

type of the user (human / machine)

state string

Possible values: [USER_GRANT_STATE_UNSPECIFIED, USER_GRANT_STATE_ACTIVE, USER_GRANT_STATE_INACTIVE]

Default value: USER_GRANT_STATE_UNSPECIFIED

current state of the user grant

]

Example (from schema)

{
  "details": {
    "totalResult": "2",
    "processedSequence": "267831",
    "viewTimestamp": "2025-03-25T16:32:58.428Z"
  },
  "result": [
    {
      "orgId": "69629026806489455",
      "projectId": "98729028932384528",
      "userId": "28746028909593987",
      "roles": [
        "RoleKey1",
        "RoleKey2"
      ],
      "orgName": "ZITADEL",
      "grantId": "",
      "details": {
        "sequence": "2",
        "creationDate": "2025-03-25T16:32:58.428Z",
        "changeDate": "2025-03-25T16:32:58.428Z",
        "resourceOwner": "69629023906488334"
      },
      "orgDomain": "zitadel.cloud",
      "projectName": "ZITADEL",
      "projectGrantId": "28746028909586246",
      "roleKeys": [
        "RoleKey1",
        "RoleKey2"
      ],
      "userType": "TYPE_UNSPECIFIED",
      "state": "USER_GRANT_STATE_UNSPECIFIED"
    }
  ]
}

application/grpc-web+proto

Schema

Schema

details

object

totalResult uint64

processedSequence uint64

viewTimestamp date-time

the last time the view got updated

result

object[]

Array [

orgId string

projectId string

userId string

roles string[]

orgName string

grantId string

details

object

sequence uint64

on read: the sequence of the last event reduced by the projection

on manipulation: the timestamp of the event(s) added by the manipulation

creationDate date-time

on read: the timestamp of the first event of the object

on create: the timestamp of the event(s) added by the manipulation

changeDate date-time

on read: the timestamp of the last event reduced by the projection

on manipulation: the

resourceOwner resource_owner is the organization an object belongs to (string)

orgDomain string

projectName string

projectGrantId string

roleKeys string[]

userType string

Possible values: [TYPE_UNSPECIFIED, TYPE_HUMAN, TYPE_MACHINE]

Default value: TYPE_UNSPECIFIED

type of the user (human / machine)

state string

Possible values: [USER_GRANT_STATE_UNSPECIFIED, USER_GRANT_STATE_ACTIVE, USER_GRANT_STATE_INACTIVE]

Default value: USER_GRANT_STATE_UNSPECIFIED

current state of the user grant

]

Example (from schema)

{
  "details": {
    "totalResult": "2",
    "processedSequence": "267831",
    "viewTimestamp": "2025-03-25T16:32:58.428Z"
  },
  "result": [
    {
      "orgId": "69629026806489455",
      "projectId": "98729028932384528",
      "userId": "28746028909593987",
      "roles": [
        "RoleKey1",
        "RoleKey2"
      ],
      "orgName": "ZITADEL",
      "grantId": "",
      "details": {
        "sequence": "2",
        "creationDate": "2025-03-25T16:32:58.429Z",
        "changeDate": "2025-03-25T16:32:58.429Z",
        "resourceOwner": "69629023906488334"
      },
      "orgDomain": "zitadel.cloud",
      "projectName": "ZITADEL",
      "projectGrantId": "28746028909586246",
      "roleKeys": [
        "RoleKey1",
        "RoleKey2"
      ],
      "userType": "TYPE_UNSPECIFIED",
      "state": "USER_GRANT_STATE_UNSPECIFIED"
    }
  ]
}

default

An unexpected error response.

application/json

Schema

Schema

code int32
message string

details

object[]

Array [

@type string

]

Example (from schema)

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

application/grpc

Schema

Schema

code int32
message string

details

object[]

Array [

@type string

]

Example (from schema)

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

application/grpc-web+proto

Schema

Schema

code int32
message string

details

object[]

Array [

@type string

]

Example (from schema)

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

• curl
• python
• go
• nodejs
• ruby
• csharp
• php
• java
• powershell

• CURL

curl -L 'https://$CUSTOM-DOMAIN/auth/v1/usergrants/me/_search' \
-H 'Content-Type: application/json' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>' \
-d '{
  "query": {
    "offset": "0",
    "limit": 100,
    "asc": true
  }
}'

Request Collapse all

Base URL

https://$CUSTOM-DOMAIN/auth/v1

Auth

Bearer Token

Body required

Content-Type

application/jsonapplication/grpcapplication/grpc-web+proto

{
  "query": {
    "offset": "0",
    "limit": 100,
    "asc": true
  }
}

ResponseClear

Click the Send API Request button above and see the response here!