Approvals — Core API

Lists all users pending approval for an issuer with pagination.

This endpoint returns users who have completed signup but are awaiting admin review before their accounts become active. Only users with status === "pending_approval" are returned.

Approval workflow:

1. User signs up when issuer has approval enabled
2. User enters pending_approval status
3. Admin reviews and approves/rejects via this API
4. User transitions to active (approved) or blocked (rejected)

Results are sorted by signup time (oldest first) so admins can process in order of arrival.

Privacy note: The list endpoint returns hashed usernames for privacy. Use the Get Approval endpoint to retrieve full user details including the actual username.

Retrieves full details for a user pending approval.

Returns the complete user profile including:

• Profile data - Username, email, name, and custom metadata
• Approval metadata - Signup reason, triggered rule, timestamps
• Status - Current pending_approval status

Use this endpoint to review a user's signup details before making an approval decision.

Note: This endpoint only returns users with status === "pending_approval". For users that have already been approved or rejected, use the standard Get User endpoint.

Approve or reject a pending user signup.

Approve: Transitions user from pending_approval to active status.

• User can now authenticate
• Optional admin note for internal records

Reject: Transitions user from pending_approval to blocked status.

• User cannot authenticate
• Rejection reason is stored and may be shown to user
• Optional admin note for internal records

Events emitted:

• user.approval.approved on approval
• user.approval.rejected on rejection

Authorization: Requires admin permissions on the issuer.