Endpoints

ApproveInvitationLinkAcception

summary: Approves a client initiated invitation link acception

url: https://.api.tresorit.io/api/v4/admin/tresor/approve-invitation-link-acception

method: POST

body ApproveAcceptInvitationLinkRequest

remarks:

To share a tresor with people who are not registered yet, invitation links can be created. If the link is distributed to them, they can use it to register and accept the share in one step. Both the creation and the acception (as it is a way of sharing) of invitation links must be approved or rejected by the backend service of the integrating web application. This endpoint completes the link acception by approving it. Please note, that the approval may fail due to concurrently accepted other links, or kick and share operations on the same tresor. (This behavior occurs because of the client-side encrypted nature of the platform.) In case of a failure, the complete link acception process must be retried from the beginning. (The client should re-initiate it again.)

Input:

Output: -

ApproveInvitationLinkCreation

summary: Approves a client initiated invitation link creation

url: https://.api.tresorit.io/api/v4/admin/tresor/approve-invitation-link-creation

method: POST

body ApproveCreateInvitationLinkRequest

remarks:

To share a tresor with people who are not registered yet, invitation links can be created. If the link is distributed to them, they can use it to register and accept the share in one step. Both the creation and the acception (as it is a way of sharing) of invitations links must be approved or rejected by the backend service of the integrating web application.

This endpoint completes the link creation by accepting it.

Please note, that the approval may fail due to concurrently approved other links, or kick and share operations on the same tresor. (This behavior occurs because of the client-side encrypted nature of the platform.) In case of a failure, the complete link creation process must be retried from the beginning. (The client should re-initiate it again.)

Input:

Output: -

ApproveInvitationLinkRevocation

summary: Approves a client initiated invitation link revocation

url: https://.api.tresorit.io/api/v4/admin/tresor/approve-invitation-link-revocation

method: POST

body ApproveRevokeInvitationLinkRequest

remarks: To share a tresor with people who are not registered yet, invitation links can be created. If the link is distributed to them, they can use it to register and accept the share in one step. The revocation of invitation links is the way of invalidating them to prevent further users to join the tresor. The revocation of links must be approved or rejected by the backend service of the integrating web application.

This endpoint completes the link creation by accepting it.

Please note, that the approval may fail due to concurrently approved other links, or kick and share operations on the same tresor. (This behavior occurs because of the client-side encrypted nature of the platform.) In case of a failure, the complete link creation process must be retried from the beginning. (The client should re-initiate it again.)

Input:

Output: -

ApproveKick

summary: Approves the kick-out of a user from a tresor

url: https://.api.tresorit.io/api/v4/admin/tresor/approve-kick

method: POST

body ApproveKickRequest

remarks: When a tresor member is kicked out by an admin member of the same tresor, he / she loses all rights in the share.

This operation is initialized by the client of the admin user and must be approved or rejected by the backend service of the integrating web application.

This call finishes the kick process by approving it.

Please note, that the approval may fail due to concurrently approved other kick or share operations on the same tresor. (This behavior occurs because of the client-side encrypted nature of the platform.) In case of a failure, the complete kick process must be retried from the beginning. (The client should re-initiate it again.)

Input:

Output: -

ApproveShare

summary: Approves a client-initiated tresor sharing operation

url: https://.api.tresorit.io/api/v4/admin/tresor/approve-share

method: POST

body ApproveShareRequest

remarks: After a user initiated a tresor sharing, the backend service of the integrating web application must approve or reject the operation. This call finishes the sharing process by approving it.

Please note, that the approval may fail due to concurrently approved other kick or share operations on the same tresor. (This behavior occurs because of the client-side encrypted nature of the platform.) In case of a failure, the complete sharing process must be retried from the beginning. (The client should re-initiate it again.)

Input:

Output: -

ApproveTresorCreation

summary: Approves the given tresor creation

url: https://.api.tresorit.io/api/v4/admin/tresor/approve-tresor-creation

method: POST

body ApproveTresorCreationRequest

remarks: Only tresors wich are created with API V2 (or newer API versions) can be approved or rejected.

Input:

Output: -

DeleteCustomContent

summary: Deletes a custon content file

url: https://.api.tresorit.io/api/v4/admin/tenant/delete-custom-content?filename=

method: DELETE

remarks: This method operates in a "delete-if-exists" manner, which means that if the target file does not exists, thismethod throws no error.

Input:

  • fileName : string
    • Name of the file to delete

Output: -

DeleteTresor

summary: Deletes the given tresor

url: https://.api.tresorit.io/api/v4/admin/tresor/delete-tresor

method: POST

body DeleteTresorRequest

remarks: Only tresors wich are approved and not already deleted can be deleted

Input:

Output: -

GetInvitationLinkAcceptionDetails

summary: Retrieves the details of a client-initialized invitation link acception operation

url: https://.api.tresorit.io/api/v4/admin/tresor/get-invitation-link-acception-details?operationid=

method: GET

remarks: To share a tresor with people who are not registered yet, invitation links can be created. If the link is distributed to them, they can use it to register and accept the share in one step. Both the creation and the acception (as it is a way of sharing) of invitation links must be approved or rejected by the backend service of the integrating web application.

This endpoint lets the service to fetch the details of the link acception operation to investigate it before the decision is made about the approval or rejection.

Input:

  • operationId : string
    • Identifier of the link creation operation

Output:

GetInvitationLinkCreationDetails

summary: Retrieves the details of a client-initialized invitation link creation operation

url: https://.api.tresorit.io/api/v4/admin/tresor/get-invitation-link-creation-details?operationid=

method: GET

remarks: To share a tresor with people who are not registered yet, invitation links can be created. If the link is distributed to them, they can use it to register and accept the share in one step. Both the creation and the acception (as it is a way of sharing) of invitation links must be approved or rejected by the backend service of the integrating web application.

This endpoint lets the service to fetch the details of the link creation operation to investigate it before the decision is made about the approval or rejection.

Input:

  • operationId : string
    • Identifier of the link creation operation

Output:

GetInvitationLinkRevocationDetails

summary: Retrieves the details of a client-initialized invitation link revocation operation

url: https://.api.tresorit.io/api/v4/admin/tresor/get-invitation-link-revocation-details?operationid=

method: GET

remarks: To share a tresor with people who are not registered yet, invitation links can be created. If the link is distributed to them, they can use it to register and accept the share in one step. The revocation of invitation links is the way of invalidating them to prevent further users to join the tresor. The revocation of links must be approved or rejected by the backend service of the integrating web application.

This endpoint lets the service to fetch the details of the link revocation operation to investigate it before the decision is made about the approval or rejection.

Input:

  • operationId : string
    • Identifier of the link revocation operation

Output:

GetKickDetails

summary: Retrieves the details of a user initiated kick operation

url: https://.api.tresorit.io/api/v4/admin/tresor/get-kick-details?operationid=

method: GET

remarks: When a tresor member is kicked out by an admin member of the same tresor, he / she loses all rights in the share.

This operation is initialized by the client of the admin user and must be approved or rejected by the backend service of the integrating web application.

This endpoint lets the service to fetch the details of the operation to investigate them before the decision is made about the approval or rejection.

Input:

  • operationId : string
    • Identifier of the kick operation

Output:

GetShareDetails

summary: Retrieves the details of a pending tresor-sharing operation initiated by a user

url: https://.api.tresorit.io/api/v4/admin/tresor/get-share-details?operationid=

method: GET

remarks: After a user initiated a tresor sharing, the backend service of the integrating web application must approve or decline the operation. This endpoint lets the service to fetch the details of the operation to investigate them before the decision is made about the approval or rejection.

Input:

  • operationId : string
    • ID of the tresor-sharing operation

Output:

InitUserRegistration

summary: Initiates a user registration process

url: https://.api.tresorit.io/api/v4/admin/user/init-user-registration

method: POST

body -

remarks: The initialization must be done by the backend service of the web application which uses the platform. A new user id is generated and returnd to the caller.

The platform creates and returns a registration session, a session identifier and a verifier secret which must be provided to the next administration call of the process along with the session identifier. These secrets (session id and verifier) ensure that the process cannot be tampered between any of its steps by a 3rd party attacker.

Note: The generated user id is bound to the registration session.

Input: -

Output:

ListCustomContents

summary: Lists the custom content files from the tenant

url: https://.api.tresorit.io/api/v4/admin/tenant/list-custom-contents

method: GET Input: -

Output:

ListMembers

summary: Lists all members of the given tresor

url: https://.api.tresorit.io/api/v4/admin/tresor/list-members?tresorid=

method: GET

remarks: On success the resulting JSON object will contain the list of the tresor members' user IDs.

Input:

  • tresorId : string
    • Id of the tresor to list its users

Output:

ListTresors

summary: Lists all tresors with paging

url: https://.api.tresorit.io/api/v4/admin/tresor/list-tresors?pagesize=&continuefrom=

method: GET

remarks: Page size cant be larger than 100 tresors Warning: The usage of this endpoint is not recommended and this will be removed in the future releases of the server. The tresor list should be maintened by the integrated application. THis can be done by monitoring tresor approvals/rejections (available from API V2)

Input:

  • pagesize : int
  • continueFrom : string

Output:

ListUsers

summary: Lists the user base of the tenant

url: https://.api.tresorit.io/api/v4/admin/user/list-users

method: GET

remarks: This operation lists all registered users of the tenant, both the validated and unvalidated ones.

Input: -

Output:

  • ListUsersResponse
    • Separate lists of the identifiers of the validated and unvalidated tenant users wrapped into a JSON object

RejectInvitationLinkAcception

summary: Rejects a client initiated invitation link acception

url: https://.api.tresorit.io/api/v4/admin/tresor/reject-invitation-link-acception

method: POST

body RejectAcceptInvitationLinkRequest

remarks: To share a tresor with people who are not registered yet, invitation links can be created. If the link is distributed to them, they can use it to register and accept the share in one step. Both the creation and the acception (as it is a way of sharing) of invitation links must be approved or rejected by the backend service of the integrating web application.

This call finishes the revocation process by rejecting it.

The rejection cannot fail due to concurrent operations.

Input:

Output: -

RejectInvitationLinkCreation

summary: Rejects a client initiated invitation link creation

url: https://.api.tresorit.io/api/v4/admin/tresor/reject-invitation-link-creation

method: POST

body RejectCreateInvitationLinkRequest

remarks: To share a tresor with people who are not registered yet, invitation links can be created. If the link is distributed to them, they can use it to register and accept the share in one step. Both the creation and the acception (as it is a way of sharing) of invitations links must be approved or rejected by the backend service of the integrating web application.

This call finishes the revocation process by rejecting it.

The rejection cannot fail due to concurrent operations.

Input:

Output: -

RejectInvitationLinkRevocation

summary: Rejects a client initiated invitation link revocation

url: https://.api.tresorit.io/api/v4/admin/tresor/reject-invitation-link-revocation

method: POST

body RejectRevokeInvitationLinkRequest

remarks: To share a tresor with people who are not registered yet, invitation links can be created. If the link is distributed to them, they can use it to register and accept the share in one step. The revocation of invitation links is the way of invalidating them to prevent further users to join the tresor. The revocation of links must be approved or rejected by the backend service of the integrating web application.

This call finishes the revocation process by rejecting it.

The rejection cannot fail due to concurrent operations.

Input:

Output: -

RejectKick

summary: Rejects the kick-out of a user from a tresor

url: https://.api.tresorit.io/api/v4/admin/tresor/reject-kick

method: POST

body RejectKickRequest

remarks: When a tresor member is kicked out by an admin member of the same tresor, he / she loses all rights in the share.

This operation is initialized by the client of the admin user and must be approved or rejected by the backend service of the integrating web application.

This call finishes the kick process by rejecting it.

The rejection cannot fail due to concurrent operations.

Input:

Output: -

RejectShare

summary: Rejects a client-initiated tresor sharing operation

url: https://.api.tresorit.io/api/v4/admin/tresor/reject-share

method: POST

body RejectShareRequest

remarks: After a user initiated a tresor sharing, the backend service of the integrating web application must approve or reject the operation. This call finishes the sharing process by rejecting it.

The rejection cannot fail due to concurrent operations.

Input:

Output: -

RejectTresorCreation

summary: Rejects the given tresor creation

url: https://.api.tresorit.io/api/v4/admin/tresor/reject-tresor-creation

method: POST

body RejectTresorCreationRequest

remarks: Only tresors wich are created with API V2 (or newer API versions) can be approved or rejected.

Input:

Output: -

SetUserStatus

summary: Enables or disables a user account

url: https://.api.tresorit.io/api/v4/admin/user/set-user-state

method: POST

body SetUserStatusRequest

remarks: The backend service of the web application that is using the encryption platform can enable or disable user accounts of the tenant. If an account is disabled, the owner user cannot log in to the service anymore.

This setting can be done at any time and does not affect other users that share content with the disabled account, it just disables the login of the user.

Warning: account state (enable/disable) is NOT the same as the initial validation of a newly registered user account. This is rather another policy to control the user's state individually.

Input:

Output: -

SetUserTresorCreationMode

summary: Sets the tresor creation policy of a user account

url: https://.api.tresorit.io/api/v4/admin/user/set-tresor-creation-policy

method: POST

body SetUserTresorCreationModeRequest

remarks: The ability of a user to create tresors can be controlled by the backend service of the integrated web application. This is done by setting the tresor creation policy of the user through the admin api.

This API call sets the value of this policy. The default value is "true", which enables tresor creation, but this can be changed to "false" (which disables the creation of new tresors) or back at any time.

Input:

Output: -

SetUserTresorSharingMode

summary: Sets the tresor sharing policy of a user account

url: https://.api.tresorit.io/api/v4/admin/user/set-tresor-sharing-policy

method: POST

body SetUserTresorSharingModeRequest

remarks: The ability of a user to share tresors can be controlled by the backend service of the integrated web application. This is done by setting the tresor sharing policy of the user through the admin api.

This API call sets the value of this policy. The default value is "FreeShare", which enables sharing, but this can be changed to "NoShare" (which disables sharing) or back at any time.

Input:

Output: -

UploadCustomContent

summary: Uploads a custom content file

url: https://.api.tresorit.io/api/v4/admin/tenant/upload-custom-content?filename=

method: PUT

body Stream

remarks: This method overwrites the target file if it already exists without any warning! The filename can include a path wich will be added to the custom-file base-url. The filenames can contain english small and capital letters, numbers, dot ".", underscore "_", hypen "-" and slashes "/" as path separators.

Examples:

example.css (https://.api.tresorit.io/custom/example.css) subfolder/example.css (https://.api.tresorit.io/custom/subfolder/example.css)

Input:

  • fileName : string

    • File name, including the desired file-path, but without a trailing slash.

  • data : Stream

    • File contents as body-stream

Output:

ValidateUser

summary: Validates a user registration

url: https://.api.tresorit.io/api/v4/admin/user/validate-user-registration

method: POST

body ValidateUserRequest

remarks: After a user completed the registration, the created account is not valid yet. In this state the account can be listed and other users may share a tresor with it, but the user cannot log in yet, because he / she is not validated. To complete the whole process, the account must be validated by the backend service of the web application.

If the application wants to validate the user's identity with any out-of-band method (like and email or SMS), that process should take place before the account validation.

If this call succeeds, it completes the registration process by validating the user. The caller service must attach the registration session ID and the verification secrets (which are received in the earlier stage of the registration flow) to the request.

Input:

Output: -

Entities

ApproveAcceptInvitationLinkRequest

  • OperationId : string
    • The ID of the AcceptInvitationLink operation.

ApproveCreateInvitationLinkRequest

  • OperationId : string
    • The ID of the CreateInvitationLink operation.
  • AdditionalInfo : string
    • Additional info for the approved invitation link.

ApproveKickRequest

  • OperationId : string
    • The ID of the Kick operation.

ApproveRevokeInvitationLinkRequest

  • OperationId : string
    • The ID of the RevokeInvitationLink operation.

ApproveShareRequest

  • OperationId : string
    • The ID of the Share operation.

ApproveTresorCreationRequest

  • TresorId : string
    • The ID of the tresor that was created.

CustomContentDetailsResponse

  • Name : string
    • Gets or sets the file name
  • Path : string
    • Gets or sets the file path (under the custom contents folder / url)
  • Url : string
    • Gets or sets the full public URL of the file

  • Size : ulong

  • ContentType : string

  • Etag : string

DeleteTresorRequest

  • TresorId : string
    • The ID of the tresor to delete.

GetAcceptInvitationLinkDetailsResponse

  • ByUserId : string
    • The identifier of the user that created the invitation link.
  • ForUserId : string
    • The identifier of the user that accepted the invitation.
  • TresorId : string
    • The identifier of the tresor that the user is invited to.
  • Timestamp : string
    • The timestamp of the operation. ISO 8601 date format: "2000-01-23T23:59:59Z"

GetCreateInvitationLinkDetailsResponse

  • ByUserId : string
    • The identifier of the user that executed the CreateInvitationLink operation.
  • TresorId : string
    • The identifier of the tresor that the user created the invitation link in.
  • Timestamp : string
    • The timestamp of the operation. ISO 8601 date format: "2000-01-23T23:59:59Z"

GetKickDetailsResponse

  • ByUserId : string
    • The identifier of the user that executed the Kick operation.
  • ForUserId : string
    • The identifier of the user to be kicked.
  • TresorId : string
    • The identifier of the tresor that the user is kicked from.
  • Timestamp : string
    • The timestamp of the operation. ISO 8601 date format: "2000-01-23T23:59:59Z"

GetRevokeInvitationLinkDetailsResponse

  • ByUserId : string
    • The identifier of the user that executed the RevokeInvitationLink operation.
  • TresorId : string
    • The identifier of the tresor that the user revokes the invitation link in.
  • Timestamp : string
    • The timestamp of the operation. ISO 8601 date format: "2000-01-23T23:59:59Z"

GetShareDetailsResponse

  • ByUserId : string
    • The identifier of the user that executed the Invite operation.
  • ForUserId : string
    • The identifier of the user to be invited.
  • TresorId : string
    • The identifier of the tresor that the user is invited to.

InitUserRegistrationResponse

  • UserId : string
    • The newly generated user ID.
  • RegSessionId : string
    • Registration session ID
  • RegSessionVerifier : string
    • Registration session verifier

ListCustomContentResponse

  • CustomContentCount : uint
    • Gets or sets the count of custom content files
  • TotalUsedBytes : ulong
    • Gets or sets the count of bytes used by custom content files
  • Contents : List
    • Gets or sets the list of custom contents

ListMembersResponse

  • Members : List
    • Gets the list of the user identifiers of the Tresor members

ListTresorsResponse

  • Tresors : List
    • List of tresor IDs
  • NextTresor : string
    • ID of the next tresor which can be used as a continuation marker when querying the next page

ListUsersResponse

  • Users : List
    • User list

RejectAcceptInvitationLinkRequest

  • OperationId : string
    • The ID of the AcceptInvitationLink operation.

RejectCreateInvitationLinkRequest

  • OperationId : string
    • The ID of the CreateInvitationLink operation.

RejectKickRequest

  • OperationId : string
    • The ID of the Kick operation.

RejectRevokeInvitationLinkRequest

  • OperationId : string
    • The ID of the RevokeInvitationLink operation.

RejectShareRequest

  • OperationId : string
    • The ID of the Share operation.

RejectTresorCreationRequest

  • TresorId : string
    • The ID of the tresor that was created.

SetUserStatusRequest

  • UserId : string
    • The ID of the user.
  • Enable : bool
    • Indicates whether the user should be enabled or disabled.

SetUserTresorCreationModeRequest

  • UserId : string
    • The ID of the user.
  • Enable : bool
    • Indicates whether tresor creation is enabled or not.

SetUserTresorSharingModeRequest

  • UserId : string
    • The ID of the user.
  • Enable : bool
    • Indicates whether tresor sharing is enabled or not. True: TresorSharingMode.FreeShare False: TresorSharingMode.NoShare

UserListItem

  • UserId : string
    • User indetifier
  • UserRegistrationState : string
    • User registration state Currently available values: Unvalidated, Validated

ValidateUserRequest

  • UserId : string
    • The ID of the user.
  • RegSessionId : string
    • Registration session ID
  • RegValidationVerifier : string
    • Verifier secret for user validation
  • RegSessionVerifier : string
    • Registration session verifier

Error codes

Error code HTTP status code Error message
AgreeCertDoesNotExist Forbidden Requested agree certificate doesn't exist.
AuthorizationRequiredForNonAnonymousInviteLinks Forbidden Authorization is required for non-anonymous invite links.
BadInput BadRequest Input validation failed.
CallerAndTargetUserIsTheSame BadRequest The caller user and the target user of the call must not be the same!
CallerUserAlreadyTresorMember BadRequest The caller user has already access to the tresor.
CallerUserIsNotMemberOfTresor Forbidden Caller user has no permission for this tresor
Certificate Forbidden General certificate related error.
CertificateDataCollision Conflict Certificate data collide during insert batch.
CertificateIssuingFailed Forbidden Certificate signing error.
CertificateParsing Forbidden Error occurred while parsing certificate.
CertificateSigning Forbidden Certificate signing error.
CertToRevocateNotFound BadRequest The certificate to revocate does not exist.
ClientDisconnected InternalServerError The client is disconnected.
ConfigurationError InternalServerError The configuration of the tenant contains one or more errors.
Crypto Forbidden General cryptography related error.
DbaUploadConflict InternalServerError Azure DBA block format conflicts with the block format of the Azure library! (Probably overlapped DBA and normal upload)
DeploymentEnvironmentDoesNotExist NotFound The requested deployment environment does not exist
DeviceCertAlreadyRegistered Forbidden Device certificate is already registered.
DeviceCertFragmentNotFound Forbidden Device cert/profile fragment not exists for this certificate.
DeviceCertificateMissing Forbidden Device certificate missing
DeviceCertificateRevoked BadRequest The device certificate is revoked.
DeviceCertificateSigningRequestsConsistency Forbidden Device Certificate Signing Requests not consistent.
DomainDoesNotExist NotFound The requested domain does not exists
EmailAddressBlocked Forbidden Email Address is blocked.
EntityExpiredButNotRemovedFromMasterFragment Forbidden Entity expired but not removed from MasterFragment
EntityRevokedButNotRemovedFromMasterFragment Forbidden Entity revoked but not removed from MasterFragment
EntityValidButRemovedFromMasterFragment Forbidden Entity valid but removed from MasterFragment
EtagNotMatch PreconditionFailed Etag mismatch.
GetDeviceCertificateCallConsistency Forbidden Get Device Certificate call not consistent.
GkfBlobConflict InternalServerError Gkf upload conflicted during uploading gkf file to the blob.
GkfIntegrity Forbidden Integrity check of Group Key File failed.
HostAlreadyExists BadRequest The requested host already exist
HostDoesNotExist NotFound The requested host does not exist
IllegalClaimValueInjection BadRequest User claim value injection is invalid.
IllegalTestValueInjection Forbidden Test value injection is strictly forbidden in release builds and for non-test users.
InvalidActivationId Forbidden The provided activation ID is invalid.
InvalidAuthorization Forbidden Authentication failed for user
InvalidAuthSession Forbidden AuthSession not found or invalid.
InvalidCertificate Forbidden Certificate contains invalid values.
InvalidHostState BadRequest The requested change is invalid in the current state of the host
InvalidHostStateTransition BadRequest The requested change in the state of the host or its installation is invalid.
InvalidInvitationLink Forbidden Invitation link is not found or invalid.
InvalidMasterFragmentChange Forbidden InvalidMasterFragmentChange
InvalidRegistrationSessionVerifier Forbidden The provided registration session verifier is invalid for the registration session
InvalidRegistrationValidationVerifier Forbidden The provided registration validation verifier is invalid for the registration session
InvalidSession Forbidden Session not found or invalid.
InvalidTenantStateTransition BadRequest The requested change in the state of the tenant or its installation is invalid.
InvalidTenantType BadRequest Invalid tenant type
InvalidToken Forbidden Login token is invalid.
InvitationLinkAlreadyExists BadRequest Invitation link already exists.
InvitationLinkBadPasswordTryLimitExceeded Forbidden Invitation link's password try limit is exceeded.
IpAddressBlocked Forbidden IP Address is blocked.
LatestAgreeCertNotKnownByClient PreconditionFailed Latest agree certificate is unknown by the client.
LatestGkfNotKnownByClient PreconditionFailed Latest group key file is unknown by the client.
MasterFragmentEntityKeyTypeViolation Forbidden MasterFragment entity key type violation
MasterFragmentEntityKeyViolation Forbidden MasterFragment entity key violation
MasterFragmentEntityUniqueIdViolation Forbidden MasterFragment entity unique Id violation
MasterFragmentKeyNotFound BadRequest Master fragment key not found.
MasterFragmentNotFound NotFound Master fragment not found.
MasterFragmentUserIdMismatch BadRequest MasterFragment user Id mismatch
MasterFragmentValidationDataMismatch Forbidden MasterFragment validation data mismatch
MasterFragmentValidationDataMissing BadRequest MasterFragment validation data missing
MasterFragmentVersionMismatch BadRequest The given version is not the latest version of the master fragment.
MembershipRecordAlreadyExistsForCallerUser BadRequest The caller user's permission record already exists.
MembershipRecordAlreadyExistsForTargetUser BadRequest The target user's permission record already exists.
MembershipRecordNotFoundForCallerUser BadRequest The caller user's permission record was not found.
MembershipRecordNotFoundForTargetUser BadRequest The target user's permission record was not found.
NotModified NotModified Not modified.
OnlyForTestUser Forbidden Not a test user.
PermissionChangeLogVersionNotExists NotFound The requested permission changelog version was not found.
PolicyEntityNotExists NotFound Policy not exists.
ProfileCertEntityNotFound BadRequest The profile cert entity does not exist.
ProfileCertificateMissing Forbidden Profile certificate missing
ProfileSchemaMismatch BadRequest Profile schema mismatch.
PublicKeysNotDifferent BadRequest The public keys are not different.
PublicKeysNotEqual BadRequest Public keys are not equal
RegistrationSessionIdMismatch BadRequest The provided registration session id is valid, but belongs to another user is then the given one.
RegistrationSessionNotExists BadRequest The provided registration session id does not belong to an existing registration session.
RequiredClaimNotGranted Forbidden Required claim is not granted for the user.
StandardHttpErrorWrapping
StorageConflict Conflict An unexpected, conflicting storage error happened.
StorageNetwork InternalServerError An unexpected, network related storage error happened.
SubscriptionDoesNotExist NotFound The requested subscription does not exists
SubscriptionTenantLimitReached BadRequest The tenant limit of the subscription has already been reached.
TargetUserAlreadyTresorMember BadRequest The target user has already access to the tresor.
TargetUserIsNotMemberOfTresor Forbidden Target user has no permission for this tresor
TenantAlreadyExist BadRequest The tenant is already exists or the tenant id is taken
TenantConfigurationFailed InternalServerError The configuration of the tenant contains failed.
TenantDisabled ServiceUnavailable Tenant is disabled, therefor the request is unsatisfiable.
TenantDoesNotExist NotFound The requested tenant does not exists
TenantInstallationAlreadyExists BadRequest Could not create teh requested tenant installation because its already exists
ThereIsNoAvailableTenant ServiceUnavailable Currently there is no available tenant to reserve. Try again later.
TheseArentTheDroidsYouAreLookingFor NotFound These aren't the droids you're looking for. (How could this happened to you?! Possibly you typed in an invalid url, so the server could not handle your request. Check your code, and try again. May the force be with you!)
TresorAlreadyDeleted BadRequest Tresor has been deleted.
TresorAlreadyExists BadRequest Tresor already exists.
TresorCreationForbidden Forbidden Tresor creation is forbidden by policy.
TresorIsAlreadyApproved BadRequest Tresor is exists, and already approved by the administrator.
TresorIsNotApproved BadRequest Tresor is exists, but not approved by the administrator yet.
TresorNotExists NotFound Tresor head not found.
TresorSharingForbidden Forbidden Tresor sharing is forbidden by policy.
UnauthorizedAccess Forbidden Unauthorized access
UnexpectedError InternalServerError An unexpected, internal server error has happened.
UnexpectedMasterFragmentIntegrityError BadRequest Unexpected error occurred during MasterFragment integrity check.
UnexpectedStorage InternalServerError An unexpected, internal server error has happened.
UnknownMasterFragmentEntityType Forbidden MasterFragment entity unique Id violation
UserAlreadyRegistered Forbidden User already registered.
UserCertFragmentAlreadySet Forbidden UserCertFragment has been already set.
UserDeviceEntityNotFound BadRequest The device entity does not exist.
UserDoesNotHaveAgreeCert Forbidden User does not have agree certificate yet.
UserInWrongState Forbidden User is in wrong state.
UserIsDisabledByPolicy Forbidden User is disabled by policy.
UserIsNotDomainMember Forbidden The user is not member of the domain
UserNotExists Forbidden User not exists.
UserUnderDeletion Forbidden The user's account is under deletion and the worker did not fully finish the process yet.
WrongDeviceCertOrigin Forbidden The device certificate was not issued by the current infrastructure.

results matching ""

    No results matching ""