Skip to content
Platform API 3.0
/
Administration - Users

Mend API (3.0)

Mend's enhanced API enables automation of workflows in a REST compliant format. The API features:

  • Access for any user with Mend credentials, via a user key available in the user's profile page in the Mend Platform.
  • Improved security with a JWT token per organization, which expires every 30 minutes.
  • Added scalability with support for cursor pagination and limiting results size.
  • Broader functionality available programmatically.
  • New standard API documentation for easy navigation and search.

If you have a dedicated instance of Mend, contact your Mend representative to access this API on your instance.

Download OpenAPI description
3.0.json
3.0.yaml
Languages
Servers
Generated server url

https://baseUrl/

Access Management

Operations

Administration - Groups

Operations

Administration - Users

Operations

Invite User

Request

Sends an email invitation to others to join an organization

Security
bearer-key
Path
orgUuidstringrequired

org UUID (from the Mend App: Administration General > Organization UUID).

Bodyapplication/jsonrequired
emailstring(New User Email)required
Example: "jon.smith@mail.com"
accountStatusstring
Enum"ACTIVE""INACTIVE""LOCKOUT"
application/json
{
  "email": "jon.smith@mail.com",
  "accountStatus": "ACTIVE"
}

Responses

OK

Bodyapplication/json
supportTokenstring(Support Token)
Example: "1171c60d"
responseobject(UserInfoResponseDTO)
Response
application/json
{
  "supportToken": "1171c60d",
  "response": {
    "uuid": "123e4567-e89b-12d3-a456-426655440000",
    "name": "Jon Smith",
    "email": "jon.smith@mail.com",
    "userType": "REGULAR",
    "accountStatus": "ACTIVE",
    "existsInOrg": true
  }
}

Get Organization Users

Request

Returns a list of all users in an organization (paginated)

Security
bearer-key
Path
orgUuidstringrequired

org UUID (from the Mend App: Administration General > Organization UUID).

Query
cursorString

Parameter indicates the starting point for retrieving results, the first call doesn't include a cursor parameter in the request, the API response includes the first set of results along with a cursor pointing to the last item retrieved.

limitstring<= 10000

Specifies the maximum number of items to be returned in the response.

Default "50"
No request payload

Responses

OK

Bodyapplication/json
additionalDataobject(Provides insights into endpoint-supported pagination information.)
  • totalItems: The total count of data points returned in an API response.
Example: {"totalItems":"422","next":"http://someUrl?cursor=3","cursor":3}
supportTokenstring(Support Token)
Example: "1171c60d"
responseArray of objects(UserInfoDTO)
Response
application/json
{
  "additionalData": {
    "totalItems": "422",
    "next": "http://someUrl?cursor=3",
    "cursor": 3
  },
  "supportToken": "1171c60d",
  "response": [
    {}
  ]
}

Remove User From Organization

Request

Deletes a user from an organization

Security
bearer-key
Path
orgUuidstringrequired

org UUID (from the Mend App: Administration General > Organization UUID).

userUuidstringrequired

User UUID (Administration > Users)

No request payload

Responses

OK

Bodyapplication/json
supportTokenstring(Support Token)
Example: "1171c60d"
responseobject(MessageDTO)
Response
application/json
{
  "supportToken": "1171c60d",
  "response": {
    "message": "Success!"
  }
}

Administration - Labels

Operations

Reports

Operations

Scans

Operations

Projects

Operations

Applications

Operations

Findings - Project

Operations

Findings - Scan

Operations

Integrations

Operations