Skip to main content

Get the authenticated user's abilities

GET 

/users/me/abilities

Inspection endpoint returning the authenticated user's effective grant abilities plus their bypass scope. abilities is the flat list of resource:accessType grant strings the user holds; hasGrants is a convenience flag for a non-empty list. The bypass fields describe scope under which grant checks are short-circuited (e.g. organization-role-based bypass).

To resolve specific capability checks in a single round-trip, use POST /users/me/abilities/check, which evaluates a named batch of { path, accessType, organizationId, requiredOrgRoleForBypass } checks and returns a boolean per key.

Request

Responses

The user's effective abilities and bypass scope