Get the authenticated user's abilities
GET/users/me/abilities
Inspection endpoint returning the authenticated user's effective grant abilities plus their bypass scope. abilities is the flat list of resource:accessType grant strings the user holds; hasGrants is a convenience flag for a non-empty list. The bypass fields describe scope under which grant checks are short-circuited (e.g. organization-role-based bypass).
To resolve specific capability checks in a single round-trip, use POST /users/me/abilities/check, which evaluates a named batch of { path, accessType, organizationId, requiredOrgRoleForBypass } checks and returns a boolean per key.
Request
Responses
- 200
- 401
The user's effective abilities and bypass scope
Not authenticated