Deactivate an Authenticated User

curl --request DELETE \
  --url https://wks-a1b2c3d4.provisionr.io/api/v1/workspace/users/{user} \
  --header 'Authorization: Bearer <token>'

{
  "message": "<string>"
}

Workspace Users

Deactivate an Authenticated User

Authentication is handled just-in-time using OIDC. We do not support SCIM provisioning at this time. Since authentication is exclusively through SSO, you can remove a user’s access by simply removing them from the application assignment on the SSO provider.

A Directory User is deactivated when it is deprovisioned in the Identity Integration that is set as the primary integration. The associated Workspace User is deactivated automatically during the sync job.

Deactivating an Authenticated User will not perform any action on the Directory User or remove the user from any Policy Rulesets or other resources. It will only impact the ability for the user to use Access Control, including deleting associated CLI devices and API tokens.

If a user re-authenticates using SSO, they will receive an error message to contact an administrator to restore their user account.

DELETE

workspace

users

{user}

Deactivate an Authenticated User

curl --request DELETE \
  --url https://wks-a1b2c3d4.provisionr.io/api/v1/workspace/users/{user} \
  --header 'Authorization: Bearer <token>'

{
  "message": "<string>"
}

Authorizations

Authorization

string

header

required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Path Parameters

user

string

required

Workspace User ID

Response

No content

Describe an Authenticated User

Restore a Deprovisioned User

Getting Started

Endpoints

Deactivate an Authenticated User

Authorizations

Path Parameters

Response

Getting Started

Endpoints

Documentation Index

Authorizations

Path Parameters

Response