Skip to main content

Organizations API

Organization endpoints handle multi-tenant organization management, membership, and related functionality. All organization routes are mounted at /api/organizations.

🏢 Organization Management

Create Organization

  • POST /api/organizations
  • Role: SystemAdmin only
  • Body: { name, slug, description?, website? }
  • Response: { organization, inviteLink? }
  • Description: Creates a new organization. Only SystemAdmins can create organizations. If created by a SystemAdmin, an initial, single-use org_admin invite link is also returned in inviteLink for sharing with the first Organization Admin. The creator is not added as a member.

List All Organizations

  • GET /api/organizations
  • Role: SystemAdmin only
  • Query Parameters:
    • search (string, optional): Search term for organization name or description
    • page (integer, optional): Page number for pagination (default: 1)
    • limit (integer, optional): Number of organizations per page (default: 20)
  • Response: { organizations: [...], pagination: { page, limit, total, totalPages } }
  • Description: Get all organizations in the system. Only accessible to SystemAdmins.

Get User's Organizations

  • GET /api/organizations/me
  • Authentication: Required
  • Response: { organizations: [...] }
  • Description: Retrieve organizations that the authenticated user is a member of.

Get Organization by Slug

  • GET /api/organizations/slug/:orgSlug
  • Authentication: Required (must be member)
  • Response: { organization }
  • Description: Retrieve organization details using the organization slug.

Get Organization by ID

  • GET /api/organizations/:organizationId
  • Authentication: Required (must be member)
  • Response: { organization }
  • Description: Retrieve organization details using the organization ID.

Update Organization

  • PUT /api/organizations/:organizationId
  • Role: Organization Admin only
  • Body: { name?, description?, website? }
  • Response: { message, organization }
  • Description: Update organization details.

Delete Organization

  • DELETE /api/organizations/:organizationId
  • Role: SystemAdmin only
  • Response: { message }
  • Description: Delete an organization and all its associated data.

👥 Organization Membership

Add Member to Organization

  • POST /api/organizations/:organizationId/members
  • Role: Organization Admin only
  • Body: { userId, role } (role: org_admin or org_viewer)
  • Response: { message }
  • Description: Add a new member to an organization.

Update Member Role

  • PUT /api/organizations/:organizationId/members/:userId
  • Role: Organization Admin only
  • Body: { role } (role: org_admin or org_viewer)
  • Response: { message }
  • Description: Update a member's role in an organization.

Remove Member

  • DELETE /api/organizations/:organizationId/members/:userId
  • Role: Organization Admin only
  • Response: { message }
  • Description: Remove a member from an organization.

🎪 Organization Events

Create Event in Organization

  • POST /api/organizations/:organizationId/events
  • Role: Organization Admin only
  • Body: { name, slug, description?, startDate?, endDate?, website?, contactEmail? }
  • Response: { message, event }
  • Description: Create a new event within an organization.

List Organization Events

  • GET /api/organizations/:organizationId/events
  • Authentication: Required (must be member)
  • Query Parameters:
    • search (string, optional): Search term for event name or description
    • isActive (boolean, optional): Filter by active status
    • page (integer, optional): Page number for pagination (default: 1)
    • limit (integer, optional): Number of events per page (default: 20)
  • Response: { events: [...], pagination: { page, limit, total, totalPages } }
  • Description: Retrieve events belonging to an organization.

🖼️ Organization Logo Management

  • POST /api/organizations/:organizationId/logo
  • Role: Organization Admin only
  • Content-Type: multipart/form-data
  • Body: Form data with logo file field
  • Response: { message }
  • Description: Upload a logo for an organization.

Upload Organization Logo by Slug

  • POST /api/organizations/slug/:orgSlug/logo
  • Role: Organization Admin only
  • Content-Type: multipart/form-data
  • Body: Form data with logo file field
  • Response: { message }
  • Description: Upload a logo for an organization using slug.
  • GET /api/organizations/:organizationId/logo
  • Authentication: Not required
  • Response: Binary image data
  • Description: Retrieve organization logo.

Get Organization Logo by Slug

  • GET /api/organizations/slug/:orgSlug/logo
  • Authentication: Not required
  • Response: Binary image data
  • Description: Retrieve organization logo using slug.

📧 Organization Invite Management

Get Organization Invite Details (Public)

  • GET /api/organizations/invite/:code
  • Authentication: Not required
  • Response: { organization, invite }
  • Description: Retrieve details about an organization invite link. Public endpoint.
  • POST /api/organizations/:organizationId/invites
  • Role: Organization Admin only
  • Body: { role, expiresAt?, maxUses?, note? }
  • Response: { message, invite }
  • Description: Create a new invite link for an organization.

Admin: Retrieve Unused Initial Admin Invite

  • GET /api/admin/organizations/:organizationId/initial-invite
  • Role: SystemAdmin only
  • Response: { invite: { id, code, role, url, expiresAt?, maxUses?, useCount } }
  • Description: Returns the single-use, unused org_admin invite created at organization creation (if it exists). Useful if the link was not copied initially.
  • GET /api/organizations/:organizationId/invites
  • Role: Organization Admin only
  • Response: { invites: [...] }
  • Description: Retrieve all invite links for an organization.
  • PATCH /api/organizations/:organizationId/invites/:inviteId
  • Role: Organization Admin only
  • Body: { disabled?, note? }
  • Response: { message }
  • Description: Update an existing invite link (e.g., disable it).
  • POST /api/organizations/invite/:code/use
  • Authentication: Required
  • Response: { message, organization, role }
  • Description: Accept an organization invite and join the organization.

📊 Organization Analytics

Get Organization Analytics

  • GET /api/organizations/:organizationId/reports/analytics
  • Authentication: Required (org member)
  • Query Parameters: timeRange=30d|90d|1y|all (default 30d), eventId?, status?, severity?
  • Response: { metrics, byStatus, bySeverity, byEvent, monthlyTrends, recentReports }

Get Organization Analytics by Slug

  • GET /api/organizations/slug/:orgSlug/reports/analytics
  • Same as above, referenced by slug.

Get Organization Events Summary

  • GET /api/organizations/:organizationId/events/summary
  • Authentication: Required (org member)
  • Response: { totalEvents, activeEvents, events: [{ id, name, slug, isActive, reportCount, teamSize }] }

Export Organization Incidents

  • GET /api/organizations/:organizationId/reports/export?format=csv|pdf&timeRange=...&eventId?&status?&severity?
  • Authentication: Required (org member)
  • Returns text/csv for CSV or text/plain for PDF-text.