Return Users

[GumballDrops]

I have created a Service application and have added the client-email (service-abc123@apps.imsoidc.bentley.com) it to the project. I noticed the organization for this client-email is listed as Unaffliated.

When using the endpoint GET [https://api.bentley.com/users/{id}] it is returning “404 not found” despite me trying many different user ids from my work organization.
I know the api states “This API will only return metadata for users that are in the same organization as the caller.”

How can i associate this account to my work organization so that i can return user information?

[davidbryant222]

@GumballDrops
For security reasons that api will only allow a user to see other users in their organization. Service accounts do not belong to an organization. We can associate one to an organization but that is a manual process. We would need to confirm your organization and that you created service-abc123@apps.imsoidc.bentley.com.

Doing this would convert service-abc123@apps.imsoidc.bentley.com to a regular user. Our services would treat all requests from service-abc123@apps.imsoidc.bentley.com as a regular user and not a service account.

[GumballDrops]

thanks davidbryant222

Are there any loss of functions after the account has been converted to a regular user?

[davidbryant222]

A Service Account can create iTwins that it owns. After associating it to an organization, it will no longer be able to create iTwins unless you grant access using the Access Control API. Any iTwins it creates will be owned by the organization and not the service account.

It is possible there are other service account specific workflows that I am not aware of. If you only need a way to get user details in a non interactive environment then I would suggest creating a service account to do only that specific workflow. Are you trying to create a background task to get user details?