User Management Overview
Production - UserController - 12 endpoints at /api/v1/users
The user management subsystem provides CRUD operations for user accounts, role assignment, account enable/disable, password management, and self-service access requests. All user management endpoints require the X-Tenant-ID header for tenant isolation.
Endpoints Summary
| Method | Endpoint | Description | Auth |
|---|---|---|---|
| POST | /api/v1/users | Create user (admin) | ADMIN |
| GET | /api/v1/users/{userId} | Get user by ID | ADMIN |
| GET | /api/v1/users/me | Get current user | Any |
| GET | /api/v1/users | List users (paginated, searchable) | ADMIN |
| PUT | /api/v1/users/{userId} | Update user | ADMIN |
| PUT | /api/v1/users/me | Update current user | Any |
| PUT | /api/v1/users/{userId}/roles | Update user roles | ADMIN |
| PUT | /api/v1/users/{userId}/enable | Enable user | ADMIN |
| PUT | /api/v1/users/{userId}/disable | Disable user | ADMIN |
| PUT | /api/v1/users/{userId}/unlock | Unlock user | ADMIN |
| DELETE | /api/v1/users/{userId} | Delete user (soft delete) | ADMIN |
| POST | /api/v1/users/me/password | Change own password | Any |
| POST | /api/v1/users/{userId}/reset-password | Admin password reset | ADMIN |
Section Pages
| Page | Description |
|---|---|
| User CRUD | Create, read, update, delete user accounts |
| Role Assignment | Assign and remove roles from users |
| Enable & Disable | Enable, disable, and unlock accounts |
| Account Lockout | Lockout policies and automatic unlock |
| Password Policies | Password requirements, expiration, history |
| Access Requests | Self-service access request workflow |