Skip to content
saas-core

User Self-Service API

These endpoints require authentication via session cookie.

Memberships

Section titled “Memberships”

List My Memberships

Section titled “List My Memberships”
GET /api/me/memberships


Response:
{
  "memberships": [
    {
      "applicationId": "tobby",
      "applicationName": "Acme",
      "status": "active",
      "role": "member",
      "profile": { "company": "Acme" },
      "joinedAt": "2026-06-01T00:00:00Z",
      "lastActiveAt": "2026-06-28T10:00:00Z"
    }
  ]
}

Profile

Section titled “Profile”

Update Application Profile

Section titled “Update Application Profile”
PATCH /api/me/applications/:id/profile


Body: { "profile": { "company": "Acme", "role": "Engineer" } }

Updates the user’s per-application profile (custom fields defined in the application’s auth policy).

Sessions

Section titled “Sessions”

List My Sessions

Section titled “List My Sessions”
GET /api/me/sessions


Response:
{
  "sessions": [
    {
      "id": "s_xxx",
      "device": "Chrome 134 / macOS",
      "ip": "192.168.1.1",
      "created_at": "2026-06-28T00:00:00Z",
      "expires_at": "2026-07-05T00:00:00Z",
      "is_active": true
    }
  ]
}

Revoke a Session

Section titled “Revoke a Session”
DELETE /api/me/sessions/:sid

Remotely sign out a specific device.

Linked Accounts

Section titled “Linked Accounts”

List Linked Accounts

Section titled “List Linked Accounts”
GET /api/me/linked-accounts


Response:
{
  "accounts": [
    { "provider": "google", "email": "[email protected]", "linked_at": "..." },
    { "provider": "credential", "email": "[email protected]", "linked_at": "..." }
  ]
}