Enterprise API
Enterprise API
Enterprise endpoints use a user JWT (pb_usr_*) from /v1/auth/login. Organization and member management require an Enterprise owner unless a specific API key scope is documented.
Profile
GET /v1/enterprisereturns the current Enterprise profile.PATCH /v1/enterpriseupdatesname,billing_email, orplan; owner only.
Organizations
GET /v1/enterprise/orgslists organizations in the current Enterprise.POST /v1/enterprise/orgscreates an organization with optionalidandname. It accepts an Enterprise owner JWT or an API key withenterprise:write.DELETE /v1/enterprise/orgs/{id}deletes an organization when it is not the current organization and has no users.POST /v1/enterprise/orgs/{id}/api-keyscreates an API key for a child organization in the same Enterprise. It requiresenterprise:writeand returns the secret only once in the creation response.
Members
GET /v1/enterprise/memberslists Enterprise users, including disabled members.PATCH /v1/enterprise/members/{id}updatesenterprise_roleand/ororganization_id; owner only.DELETE /v1/enterprise/members/{id}disables the user account; owner only.
Roles are owner, admin, or member. The API blocks self-disable and prevents disabling or downgrading the last active owner.
Disabled users cannot log in, and existing user JWTs are rejected once the account status is disabled.
Invitations
POST /v1/enterprise/invitationscreates an invitation foremail,organization_id,role, andexpires_hours.POST /v1/enterprise/invitations/{token}/acceptcreates an active Enterprise user from a valid invitation.
Admins may invite users only into their own organization and cannot invite owners.
Usage
GET /v1/enterprise/usagereturns aggregate organization, computer, printer, and job counts across the Enterprise.
Print Jobs
GET /v1/enterprise/print-jobsreturns print jobs across all child organizations in the current Enterprise. Any Enterprise member can read this list.- Enterprise does not create print jobs directly; use organization-scoped API keys or user sessions for
/v1/print-jobs.