Impersonation
User impersonation for privileged clients and partners
Introduction
Identity Provider Service API for OAuth2 authentication, user management, token operations, and partner access.
Enrich JWT token with claims
Handles the request from Ory Hydra when a JWT is being created to add
Handle OAuth2 consent
Handles OAuth2 consent where the user must explicitly grant access to certain
Request access token (OAuth2 Client Credentials)
Exchange client credentials for an access token.
Register TOTP device
Generates a new TOTP code for the given customer. Returns the secret, label,
Health check
Returns the health status of the service
Health
Health
Impersonate a user (GET method)
Allows privileged users (e.g., vendors) to act on behalf of another user in
Impersonate a user (POST method for partners)
Exchanges the partner token for a **1 hour** customer token tied to the specified `user_id`.
Impersonation
Impersonation
Initiate password reset
Initializes a password reset process for a user. Sends a password reset email
Process login submission
Processes the actual login submission, capturing user credentials. If valid,
Display login screen
Displays a login screen to the end user. In the OAuth2 flow, this is the first
Logout and revoke tokens
Handles the OAuth2 logout request. This handler revokes the provided token(s) -
OAuth2
OAuth2
Password
Password
Reset user password
Resets a user's password using the reset token received via email. The reset
TOTP
TOTP
Validate TOTP code
Validates the TOTP code for the given customer and code. If the code is valid,
Webhook
Webhook