Skip to main content
POST
/
api
/
v2
/
bloodhound-users
{
  "data": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "created_at": "2023-11-07T05:31:56Z",
    "updated_at": "2023-11-07T05:31:56Z",
    "deleted_at": {
      "time": "<any>",
      "valid": "<any>"
    },
    "saml_provider_id": {
      "int32": 123,
      "valid": true
    },
    "sso_provider_id": {
      "int32": 123,
      "valid": true
    },
    "AuthSecret": {
      "id": 123,
      "created_at": "2023-11-07T05:31:56Z",
      "updated_at": "2023-11-07T05:31:56Z",
      "deleted_at": {
        "time": "2023-11-07T05:31:56Z",
        "valid": true
      },
      "digest_method": "<string>",
      "expires_at": "2023-11-07T05:31:56Z",
      "totp_activated": true
    },
    "roles": [
      {
        "id": 123,
        "created_at": "2023-11-07T05:31:56Z",
        "updated_at": "2023-11-07T05:31:56Z",
        "deleted_at": {
          "time": "<any>",
          "valid": "<any>"
        },
        "name": "<string>",
        "description": "<string>",
        "permissions": [
          {
            "id": 123,
            "created_at": "2023-11-07T05:31:56Z",
            "updated_at": "2023-11-07T05:31:56Z",
            "deleted_at": {
              "time": "<any>",
              "valid": "<any>"
            },
            "authority": "<string>",
            "name": "<string>"
          }
        ]
      }
    ],
    "first_name": {
      "string": "<string>",
      "valid": true
    },
    "last_name": {
      "string": "<string>",
      "valid": true
    },
    "email_address": {
      "string": "<string>",
      "valid": true
    },
    "principal_name": "<string>",
    "last_login": "2023-11-07T05:31:56Z",
    "is_disabled": true,
    "eula_accepted": true,
    "all_environments": true,
    "environment_targeted_access_control": [
      {
        "user_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
        "environment_id": "<string>"
      }
    ]
  }
}
Applies to BloodHound Enterprise and CE

Authorizations

Authorization
string
header
required

Authorization: Bearer $JWT_TOKEN

Headers

Prefer
integer
default:0

Prefer header, used to specify a custom timeout in seconds using the wait parameter as per RFC7240.

Required range: x >= 0

Body

application/json

The request body for creating a user

  • Option 1
  • Option 2
all_environments
boolean
required

Grants access to all environments for the user. This will clear a user's environment access control list, if it exists

first_name
string
last_name
string
email_address
string<email>
principal
string
roles
integer[]
saml_provider_id
string
deprecated

Deprecated. Use sso_provider_id instead.

sso_provider_id
object

ID of the SSO provider for this user

is_disabled
boolean
environment_targeted_access_control
object

Sets an environment targeted access control on the user. When all_environments is set to true, a user's existing environment control is cleared and they are granted access to all environments. Administrators and Power Users may not have an ETAC list applied to them.

secret
string
needs_password_reset
boolean

Response

OK

data
object