Kinde · Capability
Kinde Management API — Users
Kinde Management API — Users. Covers the full user lifecycle in a Kinde business: list users, create user, get user, update user, delete user, and manage user identities, roles, permissions, properties, organizations, password, and refresh-token revocation. Self-contained Naftiko capability covering one Kinde business surface.
Capability Spec
naftiko: 1.0.0-alpha2
info:
label: Kinde Management API — Users
description: 'Kinde Management API — Users. Covers the full user lifecycle in a Kinde business: list users,
create user, get user, update user, delete user, and manage user identities, roles, permissions, properties,
organizations, password, and refresh-token revocation. Self-contained Naftiko capability covering one Kinde
business surface.'
tags:
- Kinde
- Users
- Identity
created: '2026-05-22'
modified: '2026-05-22'
binds:
- namespace: env
keys:
KINDE_SUBDOMAIN: KINDE_SUBDOMAIN
KINDE_ACCESS_TOKEN: KINDE_ACCESS_TOKEN
capability:
consumes:
- type: http
namespace: kinde-users
baseUri: https://{KINDE_SUBDOMAIN}.kinde.com/api/v1
description: Kinde Management API — Users business capability. Self-contained, no shared references.
resources:
- name: users
path: /users
operations:
- name: getUsers
method: GET
description: List users in the business with optional filters (sort, page_size, user_id, next_token, email, username).
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: page_size
in: query
type: integer
description: Number of results per page.
- name: email
in: query
type: string
description: Filter by email.
- name: createUser
method: POST
description: Create a new user record for the business.
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: body
in: body
type: object
description: User profile, identities, and optional organization assignments.
required: true
- name: user
path: /user
operations:
- name: getUser
method: GET
description: Get a single user by id query parameter.
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: id
in: query
type: string
description: The user id.
required: true
- name: updateUser
method: PATCH
description: Update a user's profile fields.
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: id
in: query
type: string
required: true
- name: body
in: body
type: object
required: true
- name: deleteUser
method: DELETE
description: Delete a user by id.
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: id
in: query
type: string
required: true
- name: users-user_id-refresh_claims
path: /users/{user_id}/refresh_claims
operations:
- name: refreshUserClaims
method: POST
description: Refresh the cached claims for a user.
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: user_id
in: path
type: string
required: true
- name: users-user_id-password
path: /users/{user_id}/password
operations:
- name: setUserPassword
method: PUT
description: Set or reset a user's password.
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: user_id
in: path
type: string
required: true
- name: body
in: body
type: object
required: true