FusionAuth · Capability

FusionAuth API — Tenant

FusionAuth API — Tenant. 9 operations. Lead operation: Retrieves the password validation rules for a specific tenant. This method requires a tenantId to be provided through the use of a Tenant s. Self-contained Naftiko capability covering one business surface.

FusionAuth API — Tenant is a Naftiko capability published by FusionAuth, one of 33 capabilities the APIs.io network indexes for this provider. It bundles 9 operations across the POST, GET, DELETE, PATCH, and PUT methods rooted at /v1/api/tenant.

The capability includes 3 read-only operations and 6 state-changing operations. Lead operation: Creates a tenant. Can be deployed as a REST endpoint, MCP tool, or Agent Skill via Naftiko.

Tagged areas include FusionAuth and Tenant.

Run with Naftiko FusionAuthTenant

What You Can Do

POST

Createtenant — Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.

/v1/api/tenant

GET

Retrievepasswordvalidationruleswithid — Retrieves the password validation rules for a specific tenant. This method requires a tenantId to be provided through the use of a Tenant s

/v1/api/tenant/password-validation-rules

GET

Retrievepasswordvalidationruleswithtenantidwithid — Retrieves the password validation rules for a specific tenant. This API does not require an API key.

/v1/api/tenant/password-validation-rules/{tenantId}

POST

Searchtenantswithid — Searches tenants with the specified criteria and pagination.

/v1/api/tenant/search

POST

Createtenantwithid — Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.

/v1/api/tenant/{tenantId}

DELETE

Deletetenantwithid — Deletes the tenant based on the given request (sent to the API as JSON). This permanently deletes all information, metrics, reports and data

/v1/api/tenant/{tenantId}

PATCH

Patchtenantwithid — Updates, via PATCH, the tenant with the given Id.

/v1/api/tenant/{tenantId}

GET

Retrievetenantwithid — Retrieves the tenant for the given Id.

/v1/api/tenant/{tenantId}

PUT

Updatetenantwithid — Updates the tenant with the given Id.

/v1/api/tenant/{tenantId}

MCP Tools

fusionauth-createtenant

Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.

fusionauth-retrievepasswordvalidationruleswithid

Retrieves the password validation rules for a specific tenant. This method requires a tenantId to be provided through the use of a Tenant s

read-only idempotent

fusionauth-retrievepasswordvalidationruleswithtenantidwithid

Retrieves the password validation rules for a specific tenant. This API does not require an API key.

read-only idempotent

fusionauth-searchtenantswithid

Searches tenants with the specified criteria and pagination.

fusionauth-createtenantwithid

Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.

fusionauth-deletetenantwithid

Deletes the tenant based on the given request (sent to the API as JSON). This permanently deletes all information, metrics, reports and data

idempotent

fusionauth-patchtenantwithid

Updates, via PATCH, the tenant with the given Id.

fusionauth-retrievetenantwithid

Retrieves the tenant for the given Id.

read-only idempotent

fusionauth-updatetenantwithid

Updates the tenant with the given Id.

idempotent

Capability Spec

naftiko: 1.0.0-alpha2
info:
  label: FusionAuth API — Tenant
  description: 'FusionAuth API — Tenant. 9 operations. Lead operation: Retrieves the password validation rules for a specific tenant. This method requires a tenantId to be provided  through the use of a Tenant s. Self-contained Naftiko capability covering one business surface.'
  tags:
  - FusionAuth
  - Tenant
  created: '2026-05-20'
  modified: '2026-05-20'
binds:
- namespace: env
  keys:
    FUSIONAUTH_API_KEY: FUSIONAUTH_API_KEY
capability:
  consumes:
  - type: http
    namespace: fusionauth-tenant
    baseUri: http://localhost:9011
    description: FusionAuth API — Tenant business capability. Self-contained, no shared references.
    resources:
    - name: api-tenant
      path: /api/tenant
      operations:
      - name: createtenant
        method: POST
        description: Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-FusionAuth-TenantId
          in: header
          type: string
          description: The unique Id of the tenant used to scope this API request. Only required when there is more than one tenant and the API key is not tenant-scoped.
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: false
    - name: api-tenant-password-validation-rules
      path: /api/tenant/password-validation-rules
      operations:
      - name: retrievepasswordvalidationruleswithid
        method: GET
        description: Retrieves the password validation rules for a specific tenant. This method requires a tenantId to be provided  through the use of a Tenant s
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters: []
    - name: api-tenant-password-validation-rules-tenantid
      path: /api/tenant/password-validation-rules/{tenantId}
      operations:
      - name: retrievepasswordvalidationruleswithtenantidwithid
        method: GET
        description: Retrieves the password validation rules for a specific tenant.  This API does not require an API key.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: tenantId
          in: path
          type: string
          description: The Id of the tenant.
          required: true
    - name: api-tenant-search
      path: /api/tenant/search
      operations:
      - name: searchtenantswithid
        method: POST
        description: Searches tenants with the specified criteria and pagination.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: false
    - name: api-tenant-tenantid
      path: /api/tenant/{tenantId}
      operations:
      - name: createtenantwithid
        method: POST
        description: Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: tenantId
          in: path
          type: string
          description: The Id for the tenant. If not provided a secure random UUID will be generated.
          required: true
        - name: X-FusionAuth-TenantId
          in: header
          type: string
          description: The unique Id of the tenant used to scope this API request. Only required when there is more than one tenant and the API key is not tenant-scoped.
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: false
      - name: deletetenantwithid
        method: DELETE
        description: Deletes the tenant based on the given request (sent to the API as JSON). This permanently deletes all information, metrics, reports and data
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: tenantId
          in: path
          type: string
          description: The Id of the tenant to delete.
          required: true
        - name: X-FusionAuth-TenantId
          in: header
          type: string
          description: The unique Id of the tenant used to scope this API request. Only required when there is more than one tenant and the API key is not tenant-scoped.
        - name: async
          in: query
          type: string
          description: query parameter async.
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: false
      - name: patchtenantwithid
        method: PATCH
        description: Updates, via PATCH, the tenant with the given Id.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: tenantId
          in: path
          type: string
          description: The Id of the tenant to update.
          required: true
        - name: X-FusionAuth-TenantId
          in: header
          type: string
          description: The unique Id of the tenant used to scope this API request. Only required when there is more than one tenant and the API key is not tenant-scoped.
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: false
      - name: retrievetenantwithid
        method: GET
        description: Retrieves the tenant for the given Id.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: tenantId
          in: path
          type: string
          description: The Id of the tenant.
          required: true
        - name: X-FusionAuth-TenantId
          in: header
          type: string
          description: The unique Id of the tenant used to scope this API request. Only required when there is more than one tenant and the API key is not tenant-scoped.
      - name: updatetenantwithid
        method: PUT
        description: Updates the tenant with the given Id.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: tenantId
          in: path
          type: string
          description: The Id of the tenant to update.
          required: true
        - name: X-FusionAuth-TenantId
          in: header
          type: string
          description: The unique Id of the tenant used to scope this API request. Only required when there is more than one tenant and the API key is not tenant-scoped.
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: false
  exposes:
  - type: rest
    namespace: fusionauth-tenant-rest
    port: 8080
    description: REST adapter for FusionAuth API — Tenant. One resource per consumed operation, prefixed with /v1.
    resources:
    - path: /v1/api/tenant
      name: api-tenant
      description: REST surface for api-tenant.
      operations:
      - method: POST
        name: createtenant
        description: Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.
        call: fusionauth-tenant.createtenant
        with:
          X-FusionAuth-TenantId: rest.X-FusionAuth-TenantId
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/api/tenant/password-validation-rules
      name: api-tenant-password-validation-rules
      description: REST surface for api-tenant-password-validation-rules.
      operations:
      - method: GET
        name: retrievepasswordvalidationruleswithid
        description: Retrieves the password validation rules for a specific tenant. This method requires a tenantId to be provided  through the use of a Tenant s
        call: fusionauth-tenant.retrievepasswordvalidationruleswithid
        with: {}
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/api/tenant/password-validation-rules/{tenantId}
      name: api-tenant-password-validation-rules-tenantid
      description: REST surface for api-tenant-password-validation-rules-tenantid.
      operations:
      - method: GET
        name: retrievepasswordvalidationruleswithtenantidwithid
        description: Retrieves the password validation rules for a specific tenant.  This API does not require an API key.
        call: fusionauth-tenant.retrievepasswordvalidationruleswithtenantidwithid
        with:
          tenantId: rest.tenantId
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/api/tenant/search
      name: api-tenant-search
      description: REST surface for api-tenant-search.
      operations:
      - method: POST
        name: searchtenantswithid
        description: Searches tenants with the specified criteria and pagination.
        call: fusionauth-tenant.searchtenantswithid
        with:
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/api/tenant/{tenantId}
      name: api-tenant-tenantid
      description: REST surface for api-tenant-tenantid.
      operations:
      - method: POST
        name: createtenantwithid
        description: Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.
        call: fusionauth-tenant.createtenantwithid
        with:
          tenantId: rest.tenantId
          X-FusionAuth-TenantId: rest.X-FusionAuth-TenantId
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
      - method: DELETE
        name: deletetenantwithid
        description: Deletes the tenant based on the given request (sent to the API as JSON). This permanently deletes all information, metrics, reports and data
        call: fusionauth-tenant.deletetenantwithid
        with:
          tenantId: rest.tenantId
          X-FusionAuth-TenantId: rest.X-FusionAuth-TenantId
          async: rest.async
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
      - method: PATCH
        name: patchtenantwithid
        description: Updates, via PATCH, the tenant with the given Id.
        call: fusionauth-tenant.patchtenantwithid
        with:
          tenantId: rest.tenantId
          X-FusionAuth-TenantId: rest.X-FusionAuth-TenantId
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
      - method: GET
        name: retrievetenantwithid
        description: Retrieves the tenant for the given Id.
        call: fusionauth-tenant.retrievetenantwithid
        with:
          tenantId: rest.tenantId
          X-FusionAuth-TenantId: rest.X-FusionAuth-TenantId
        outputParameters:
        - type: object
          mapping: $.
      - method: PUT
        name: updatetenantwithid
        description: Updates the tenant with the given Id.
        call: fusionauth-tenant.updatetenantwithid
        with:
          tenantId: rest.tenantId
          X-FusionAuth-TenantId: rest.X-FusionAuth-TenantId
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: fusionauth-tenant-mcp
    port: 9090
    transport: http
    description: MCP adapter for FusionAuth API — Tenant. One tool per consumed operation, routed inline through this capability's consumes block.
    tools:
    - name: fusionauth-createtenant
      description: Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: fusionauth-tenant.createtenant
      with:
        X-FusionAuth-TenantId: tools.X-FusionAuth-TenantId
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: fusionauth-retrievepasswordvalidationruleswithid
      description: Retrieves the password validation rules for a specific tenant. This method requires a tenantId to be provided  through the use of a Tenant s
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: fusionauth-tenant.retrievepasswordvalidationruleswithid
      with: {}
      outputParameters:
      - type: object
        mapping: $.
    - name: fusionauth-retrievepasswordvalidationruleswithtenantidwithid
      description: Retrieves the password validation rules for a specific tenant.  This API does not require an API key.
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: fusionauth-tenant.retrievepasswordvalidationruleswithtenantidwithid
      with:
        tenantId: tools.tenantId
      outputParameters:
      - type: object
        mapping: $.
    - name: fusionauth-searchtenantswithid
      description: Searches tenants with the specified criteria and pagination.
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: fusionauth-tenant.searchtenantswithid
      with:
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: fusionauth-createtenantwithid
      description: Creates a tenant. You can optionally specify an Id for the tenant, if not provided one will be generated.
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: fusionauth-tenant.createtenantwithid
      with:
        tenantId: tools.tenantId
        X-FusionAuth-TenantId: tools.X-FusionAuth-TenantId
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: fusionauth-deletetenantwithid
      description: Deletes the tenant based on the given request (sent to the API as JSON). This permanently deletes all information, metrics, reports and data
      hints:
        readOnly: false
        destructive: true
        idempotent: true
      call: fusionauth-tenant.deletetenantwithid
      with:
        tenantId: tools.tenantId
        X-FusionAuth-TenantId: tools.X-FusionAuth-TenantId
        async: tools.async
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: fusionauth-patchtenantwithid
      description: Updates, via PATCH, the tenant with the given Id.
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: fusionauth-tenant.patchtenantwithid
      with:
        tenantId: tools.tenantId
        X-FusionAuth-TenantId: tools.X-FusionAuth-TenantId
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: fusionauth-retrievetenantwithid
      description: Retrieves the tenant for the given Id.
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: fusionauth-tenant.retrievetenantwithid
      with:
        tenantId: tools.tenantId
        X-FusionAuth-TenantId: tools.X-FusionAuth-TenantId
      outputParameters:
      - type: object
        mapping: $.
    - name: fusionauth-updatetenantwithid
      description: Updates the tenant with the given Id.
      hints:
        readOnly: false
        destructive: false
        idempotent: true
      call: fusionauth-tenant.updatetenantwithid
      with:
        tenantId: tools.tenantId
        X-FusionAuth-TenantId: tools.X-FusionAuth-TenantId
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.