Users

User management operations

Get current user

get

/users/current

Retrieves the currently authenticated user's information.

Authorizations

accessTokenstringRequired

Responses

200

Current user's information.

application/json

401

Unauthorized.

get

/users/current

GET /api/v1/users/current HTTP/1.1
Host: localhost:3000
Accept: */*

{
  "_id": "text",
  "email": "[email protected]",
  "role": "retailer",
  "verified": true,
  "createdAt": "2025-12-08T20:30:00.256Z",
  "updatedAt": "2025-12-08T20:30:00.256Z"
}

Update current user

put

/users/current

Updates the currently authenticated user's information.

Authorizations

accessTokenstringRequired

Body

emailstring · emailOptional

User's new email address.

passwordstring · passwordOptional

User's new password (at least 6 characters).

Responses

200

User updated successfully.

No content

400

Bad request (e.g., invalid input).

401

Unauthorized.

put

/users/current

PUT /api/v1/users/current HTTP/1.1
Host: localhost:3000
Content-Type: application/json
Accept: */*
Content-Length: 48

{
  "email": "[email protected]",
  "password": "password"
}

No content

Delete current user

delete

/users/current

Deletes the currently authenticated user's account.

Authorizations

accessTokenstringRequired

Responses

200

User deleted successfully.

No content

401

Unauthorized.

delete

/users/current

DELETE /api/v1/users/current HTTP/1.1
Host: localhost:3000
Accept: */*

No content

Get all users

get

/users

Retrieves a list of all users (admin only).

Authorizations

accessTokenstringRequired

Query parameters

limitintegerOptional

The number of users to return.

Default: 10

offsetintegerOptional

The number of users to skip.

Default: 0

Responses

200

A list of users.

application/json

401

Unauthorized.

403

Forbidden.

get

/users

GET /api/v1/users HTTP/1.1
Host: localhost:3000
Accept: */*

[
  {
    "_id": "text",
    "email": "[email protected]",
    "role": "retailer",
    "verified": true,
    "createdAt": "2025-12-08T20:30:00.256Z",
    "updatedAt": "2025-12-08T20:30:00.256Z"
  }
]

Get user by ID

get

/users/{userId}

Retrieves a user by their ID (admin only).

Authorizations

accessTokenstringRequired

Path parameters

userIdstringRequired

The ID of the user to retrieve.

Responses

200

The user's information.

application/json

401

Unauthorized.

403

Forbidden.

404

Not found.

get

/users/{userId}

GET /api/v1/users/{userId} HTTP/1.1
Host: localhost:3000
Accept: */*

{
  "_id": "text",
  "email": "[email protected]",
  "role": "retailer",
  "verified": true,
  "createdAt": "2025-12-08T20:30:00.256Z",
  "updatedAt": "2025-12-08T20:30:00.256Z"
}

Delete user by ID

delete

/users/{userId}

Deletes a user by their ID (admin only).

Authorizations

accessTokenstringRequired

Path parameters

userIdstringRequired

The ID of the user to delete.

Responses

200

User deleted successfully.

No content

401

Unauthorized.

403

Forbidden.

404

Not found.

delete

/users/{userId}

DELETE /api/v1/users/{userId} HTTP/1.1
Host: localhost:3000
Accept: */*

No content

PreviousAuthentication NextProducts

Good evening

Get current user

Update current user

Delete current user

Get all users

Get user by ID

Delete user by ID