Skip to main content

Add member directly

method
POST
/api/org/members/add-direct
Adds a new member to the organization directly (admin-only). Creates a user account with a random password and sends a password reset email.
name
string
required
Display name for the new member.
email
string
required
Email address for the new member.
role
string
Member role. One of: admin, member. Defaults to member.
data.userId
string
The created user’s ID.
data.email
string
The member’s email address.
data.role
string
The assigned role.
This endpoint logs an member.added_direct audit event.

Send setup email

method
POST
/api/org/members/send-setup-email
Sends a password reset email to a member who was added directly, allowing them to set their own password.

Resend invitation

method
POST
/api/org/invitations/resend
Resends a pending invitation email to a member who hasn’t accepted yet.

Roles

RolePermissions
adminFull access — manage settings, team members, all examinations and programs
memberView and work on examinations and compliance programs

Organization scope

The organization is the tenant boundary. All data — examinations, compliance programs, evidence, MRAs — is scoped to the organization. Users can belong to one organization.

Audit log

All significant actions are logged to an immutable, org-scoped audit log. Events include:
  • Member additions and removals
  • Examination creation, archival, and deletion
  • Status changes on examinations and MRAs
  • Evidence uploads and deletions