SailPoint · Capability

Identity Security Cloud V3 API — Identities

Identity Security Cloud V3 API — Identities. 7 operations. Lead operation: List identity profiles. Self-contained Naftiko capability covering one Sailpoint business surface.

Run with Naftiko SailpointIdentities

What You Can Do

GET
Listidentityprofiles — List identity profiles
/v1/identity-profiles
POST
Createidentityprofile — Create an identity profile
/v1/identity-profiles
GET
Getidentityprofile — Get an identity profile
/v1/identity-profiles/{identity-profile-id}
PATCH
Updateidentityprofile — Update an identity profile
/v1/identity-profiles/{identity-profile-id}
DELETE
Deleteidentityprofile — Delete an identity profile
/v1/identity-profiles/{identity-profile-id}
GET
Getpublicidentities — List public identities
/v1/public-identities
GET
Getpublicidentity — Get a public identity
/v1/public-identities/{id}

MCP Tools

list-identity-profiles

List identity profiles

read-only idempotent
create-identity-profile

Create an identity profile

get-identity-profile

Get an identity profile

read-only idempotent
update-identity-profile

Update an identity profile

idempotent
delete-identity-profile

Delete an identity profile

idempotent
list-public-identities

List public identities

read-only idempotent
get-public-identity

Get a public identity

read-only idempotent

Capability Spec

identity-security-cloud-v3-identities.yaml Raw ↑ 
naftiko: 1.0.0-alpha2
info:
  label: Identity Security Cloud V3 API — Identities
  description: 'Identity Security Cloud V3 API — Identities. 7 operations. Lead operation: List identity profiles. Self-contained
    Naftiko capability covering one Sailpoint business surface.'
  tags:
  - Sailpoint
  - Identities
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    SAILPOINT_API_KEY: SAILPOINT_API_KEY
capability:
  consumes:
  - type: http
    namespace: identity-security-cloud-v3-identities
    baseUri: https://{tenant}.api.identitynow.com/v3
    description: Identity Security Cloud V3 API — Identities business capability. Self-contained, no shared references.
    resources:
    - name: identity-profiles
      path: /identity-profiles
      operations:
      - name: listidentityprofiles
        method: GET
        description: List identity profiles
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: filters
          in: query
          type: string
          description: 'Filter results using the standard syntax. Filtering is supported for the following fields: id (eq,
            in), name (eq, sw), priority (eq, gt, lt, ge, le).'
        - name: sorters
          in: query
          type: string
          description: 'Sort results using the standard syntax. Sorting is supported for the following fields: name, priority,
            created, modified.'
      - name: createidentityprofile
        method: POST
        description: Create an identity profile
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: identity-profiles-identity-profile-id
      path: /identity-profiles/{identity-profile-id}
      operations:
      - name: getidentityprofile
        method: GET
        description: Get an identity profile
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: identity-profile-id
          in: path
          type: string
          description: The identity profile ID.
          required: true
      - name: updateidentityprofile
        method: PATCH
        description: Update an identity profile
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: identity-profile-id
          in: path
          type: string
          description: The identity profile ID.
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
      - name: deleteidentityprofile
        method: DELETE
        description: Delete an identity profile
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: identity-profile-id
          in: path
          type: string
          description: The identity profile ID.
          required: true
    - name: public-identities
      path: /public-identities
      operations:
      - name: getpublicidentities
        method: GET
        description: List public identities
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: add-core-filters
          in: query
          type: boolean
          description: Set to true to exclude incomplete identities and uncorrelated accounts from the results.
        - name: filters
          in: query
          type: string
          description: 'Filter results using the standard syntax described in V3 API Standard Collection Parameters. Filtering
            is supported for the following fields and operators: id ('
        - name: sorters
          in: query
          type: string
          description: 'Sort results using the standard syntax. Sorting is supported for the following fields: name, alias,
            email.'
    - name: public-identities-id
      path: /public-identities/{id}
      operations:
      - name: getpublicidentity
        method: GET
        description: Get a public identity
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: id
          in: path
          type: string
          description: The identity ID.
          required: true
    authentication:
      type: bearer
      token: '{{env.SAILPOINT_API_KEY}}'
  exposes:
  - type: rest
    namespace: identity-security-cloud-v3-identities-rest
    port: 8080
    description: REST adapter for Identity Security Cloud V3 API — Identities. One Spectral-compliant resource per consumed
      operation, prefixed with /v1.
    resources:
    - path: /v1/identity-profiles
      name: identity-profiles
      description: REST surface for identity-profiles.
      operations:
      - method: GET
        name: listidentityprofiles
        description: List identity profiles
        call: identity-security-cloud-v3-identities.listidentityprofiles
        with:
          filters: rest.filters
          sorters: rest.sorters
        outputParameters:
        - type: object
          mapping: $.
      - method: POST
        name: createidentityprofile
        description: Create an identity profile
        call: identity-security-cloud-v3-identities.createidentityprofile
        with:
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/identity-profiles/{identity-profile-id}
      name: identity-profiles-identity-profile-id
      description: REST surface for identity-profiles-identity-profile-id.
      operations:
      - method: GET
        name: getidentityprofile
        description: Get an identity profile
        call: identity-security-cloud-v3-identities.getidentityprofile
        with:
          identity-profile-id: rest.identity-profile-id
        outputParameters:
        - type: object
          mapping: $.
      - method: PATCH
        name: updateidentityprofile
        description: Update an identity profile
        call: identity-security-cloud-v3-identities.updateidentityprofile
        with:
          identity-profile-id: rest.identity-profile-id
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
      - method: DELETE
        name: deleteidentityprofile
        description: Delete an identity profile
        call: identity-security-cloud-v3-identities.deleteidentityprofile
        with:
          identity-profile-id: rest.identity-profile-id
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/public-identities
      name: public-identities
      description: REST surface for public-identities.
      operations:
      - method: GET
        name: getpublicidentities
        description: List public identities
        call: identity-security-cloud-v3-identities.getpublicidentities
        with:
          add-core-filters: rest.add-core-filters
          filters: rest.filters
          sorters: rest.sorters
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/public-identities/{id}
      name: public-identities-id
      description: REST surface for public-identities-id.
      operations:
      - method: GET
        name: getpublicidentity
        description: Get a public identity
        call: identity-security-cloud-v3-identities.getpublicidentity
        with:
          id: rest.id
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: identity-security-cloud-v3-identities-mcp
    port: 9090
    transport: http
    description: MCP adapter for Identity Security Cloud V3 API — Identities. One tool per consumed operation, routed inline
      through this capability's consumes block.
    tools:
    - name: list-identity-profiles
      description: List identity profiles
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: identity-security-cloud-v3-identities.listidentityprofiles
      with:
        filters: tools.filters
        sorters: tools.sorters
      outputParameters:
      - type: object
        mapping: $.
    - name: create-identity-profile
      description: Create an identity profile
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: identity-security-cloud-v3-identities.createidentityprofile
      with:
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: get-identity-profile
      description: Get an identity profile
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: identity-security-cloud-v3-identities.getidentityprofile
      with:
        identity-profile-id: tools.identity-profile-id
      outputParameters:
      - type: object
        mapping: $.
    - name: update-identity-profile
      description: Update an identity profile
      hints:
        readOnly: false
        destructive: false
        idempotent: true
      call: identity-security-cloud-v3-identities.updateidentityprofile
      with:
        identity-profile-id: tools.identity-profile-id
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: delete-identity-profile
      description: Delete an identity profile
      hints:
        readOnly: false
        destructive: true
        idempotent: true
      call: identity-security-cloud-v3-identities.deleteidentityprofile
      with:
        identity-profile-id: tools.identity-profile-id
      outputParameters:
      - type: object
        mapping: $.
    - name: list-public-identities
      description: List public identities
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: identity-security-cloud-v3-identities.getpublicidentities
      with:
        add-core-filters: tools.add-core-filters
        filters: tools.filters
        sorters: tools.sorters
      outputParameters:
      - type: object
        mapping: $.
    - name: get-public-identity
      description: Get a public identity
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: identity-security-cloud-v3-identities.getpublicidentity
      with:
        id: tools.id
      outputParameters:
      - type: object
        mapping: $.