API Reference · v0.1.0
Auth you don't
have to think about.
The complete, interactive reference for the Identra authentication platform — 225 endpoints across 25 categories. Read the contract, build the request, and send it live, all from this page.
Base URL
Every request is made against your Identra API origin. In development that's usually localhost; in production it's your custom domain.
http://localhost:8080Your first request
curl "http://localhost:8080/v1/access-reviews/018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f/items" \
-H "x-application-id: $IDENTRA_APP_ID" \
-H "Authorization: Bearer $IDENTRA_API_KEY"What makes the API predictable
Two credentials, no ceremony
A publishable application id for the browser; a secret API key for your server. Tokens are verified locally — no network on the hot path.
Default-deny, fail closed
Every endpoint is scoped to one application and authorized before it runs. Secrets are shown once, hashed at rest, and never returned.
One consistent envelope
Every response — success or error — is the same shape: success, data, error, meta. Parse it once.
Predictable by design
Flat, machine-checked contract. This reference is generated straight from the API, so it never drifts from what ships.
Official SDKs
10Drop-in auth UI and headless hooks for React, Next.js, Svelte, Vue & React Native — plus server SDKs for Node, Go, Python & Ruby that verify tokens locally.
Explore the SDKsComponent playground
Render the drop-in components live, theme them with your brand colors and radius, switch frameworks, and copy the generated code straight into your app.
Open the playgroundBrowse by category
All endpointsHealth & metadata
End-user management
API key management
End-user authentication
Sessions & tokens
JWKS & OIDC discovery
Organizations & memberships
Webhook endpoints & delivery status
Audit log (event-stream projection)
Roles & permissions (RBAC)
Fine-grained authorization (ReBAC: relationships & checks)
Extensibility hooks (synchronous signed callbacks)
Feature catalog, entitlements & gating
Account linking, merging & progressive profiling
Invitations, waitlists & self-serve org-join
Usage metering, flat-plan billing, invoices & dunning
B2B billing: customer plans, org subscriptions & revenue
Enterprise SSO (SAML 2.0)
Enterprise SSO (OpenID Connect)
SCIM 2.0 provisioning tokens
Data residency, abuse signals & compliance
Application settings, providers & go-live
Dashboard account auth & account-level management
Enterprise access governance: named locations, SoD, JIT/PIM grants, access reviews, service accounts, per-user risk & impersonation