Consume an invitation after signup.
curl --request POST \ --url https://auth.example.com/api/v1/invitations/use \ --header 'Content-Type: application/json' \ --data '{ "token": "invite_123", "user_id": "user_123" }'Marks an invitation token as used for a verified user in the invited tenant and applies configured role or organization assignments.
Request Body required
Section titled “Request Body required ”object
Example
{ "token": "invite_123", "user_id": "user_123"}Responses
Section titled “ Responses ”Successful JSON response.
object
Example
{ "success": true, "invitation_id": "inv_123", "tenant_id": "tenant_123", "role_assigned": true, "organization_assigned": false}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}