Get identity detail with role assignments

GET

/portal/v1/accounts/{accountSlug}/applications/{appSlug}/identities/{id}/detail

Authentication

Bearer Token Authorization
JWT access token

Path Parameters

Name	Required	Type	Description
`id`	Required	`string`

Code samples

cURL

JavaScript

Python

curl -X GET "https://api.canopy.dev/portal/v1/accounts/{accountSlug}/applications/{appSlug}/identities/value/detail" \
  -H "Authorization: Bearer $CANOPY_TOKEN"

const response = await fetch("https://api.canopy.dev/portal/v1/accounts/{accountSlug}/applications/{appSlug}/identities/value/detail", {
  method: "GET",
  headers: {
    "Authorization": "Bearer $CANOPY_TOKEN"
  },
});

const data = await response.json();

import requests

response = requests.get(
    "https://api.canopy.dev/portal/v1/accounts/{accountSlug}/applications/{appSlug}/identities/value/detail",
    headers={
    "Authorization": "Bearer $CANOPY_TOKEN"
    },
)

data = response.json()

package main

import (
	"net/http"
)

func main() {
	req, _ := http.NewRequest("GET", "https://api.canopy.dev/portal/v1/accounts/{accountSlug}/applications/{appSlug}/identities/value/detail", nil)
	req.Header.Set("Authorization", "Bearer $CANOPY_TOKEN")

	resp, _ := http.DefaultClient.Do(req)
	defer resp.Body.Close()
}

Responses

200 Identity detail with roles and management flags returned

{
  "id": "string",
  "email": "string",
  "first_name": "string",
  "last_name": "string",
  "name": "string",
  "avatar_url": "string",
  "external_id": "string",
  "metadata": {},
  "is_active": false,
  "roles": [
    {
      "assignment_id": "string",
      "id": "string",
      "name": "string",
      "node_id": "string",
      "node_name": "string"
    }
  ],
  "can_manage": false,
  "created_at": "2026-04-20T12:00:00.000Z",
  "updated_at": "2026-04-20T12:00:00.000Z"
}

application/json

idstring*
emailstring*
first_namestring*
last_namestring*
namestring*
avatar_urlstring
external_idstring
metadataany object
is_activeboolean*
rolesIdentityRoleDto[]*
can_manageboolean*
created_atstring (date-time)*
updated_atstring (date-time)*

401 Invalid or expired token

403 This token is not authorized for this endpoint (wrong principal type — e.g., admin token on identity-only endpoint, or vice versa)

404 Identity not found

Returned object

The IdentityDetailResponseDto object View all properties on this resource

On this page

GETList identities in Application
POSTCreate an identity
GETList identities with their role assignments
GETGet Application identities summary
POSTBulk-create identities
POSTRecord a bulk-import wizard completion
GETGet an identity
PATCHUpdate an identity
DELETERemove an identity
POSTActivate an identity
POSTDeactivate an identity
GETGet identity's role assignments
GETGet identity's effective permissions