API Reference
Admin API
Admin API endpoints for user and organization management
Admin API
Admin-only API endpoints for platform management.
Users
List All Users
GET /api/admin/users
Authorization: Session cookie (admin role required)Response:
{
"users": [
{
"id": "uuid",
"name": "Sarah Chen",
"email": "sarah@pharma.com",
"role": "pharmacist_in_charge",
"organization_id": "uuid",
"banned": false,
"created_at": "2026-01-01T00:00:00Z"
}
]
}Update User
PATCH /api/admin/users
Content-Type: application/json
Authorization: Session cookie (admin role required)
{
"userId": "uuid",
"role": "qa_manager",
"banned": false
}Response:
{ "success": true }Organizations
List Organizations
GET /api/admin/organizations
Authorization: Session cookie (admin role required)Response:
{
"organizations": [
{
"id": "uuid",
"name": "Acme Pharma",
"slug": "acme-pharma",
"created_at": "2026-01-01T00:00:00Z"
}
]
}Create Organization
POST /api/admin/organizations
Content-Type: application/json
Authorization: Session cookie (admin role required)
{
"name": "Acme Pharma",
"slug": "acme-pharma"
}Response:
{
"organization": {
"id": "uuid",
"name": "Acme Pharma",
"slug": "acme-pharma",
"created_at": "2026-01-01T00:00:00Z"
}
}Error Responses
All admin endpoints return errors in the following format:
{
"error": "Description of what went wrong"
}| Status | Description |
|---|---|
400 | Missing required fields |
401 | Not authenticated |
403 | Insufficient permissions (non-admin) |
500 | Server error |