Users and roles

POST /v1/users

curl -X POST https://api.qustody.io/v1/users \
  -H "Authorization: Bearer $QUSTODY_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "email": "alice@example.com",
    "name": "Alice Doe",
    "external_id": "okta:00u..."
  }'

{
  "id": "usr_01HXYZ...",
  "email": "alice@example.com",
  "name": "Alice Doe",
  "status": "active",
  "created_at": "2026-04-27T10:15:00Z"
}

GET /v1/users?status=active&page=1&per_page=50

GET /v1/users/{id}

PUT /v1/users/{id}

POST /v1/users/{id}/roles

curl -X POST https://api.qustody.io/v1/users/usr_01HXYZ/roles \
  -H "Authorization: Bearer $QUSTODY_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"role_id": "role_approver"}'

DELETE /v1/users/{id}/roles/{roleId}

GET /v1/roles

{
  "roles": [
    {"id": "role_admin", "name": "admin", "description": "Full access"},
    {"id": "role_operator", "name": "operator", "description": "Submit and manage transactions"},
    {"id": "role_viewer", "name": "viewer", "description": "Read-only access"},
    {"id": "role_approver", "name": "approver", "description": "Approve/reject transactions"},
    {"id": "role_compliance_officer", "name": "compliance_officer", "description": "Compliance and audit"}
  ]
}

GET /v1/roles/{id}