Endpoints Accessible to End-Users
Authenticating with a user token will ensure that the end user is only able to access certain endpoints. For any endpoints providing retrieval of user data, the only user’s data that may be retrieved is the user that is associated to the header token value.
The list of accessible APIs:
- Activities
- Activities – Extended
- Activity Search – Extended
- Code Redemption Campaign
- Email Address Verification
- Password Reset Email
- Reward Categories
- Rewards
- Survey Details
- Survey Results (The path syntax to access all users’ responses to the survey is blocked. Only the authenticated user’s survey results may be retrieved.)
- User Activities
- User Activities – Extended
- User Activity History
- User Activity History – Extended
- User Activity Search – Extended
- User Authentication Sign In (verified field may not be used)
- User Authentication Sign Out
- User Code Submit
- User Create (tier_override field may not be used)
- User Points
- User Profile
- User Rank
- User Redemption
- User Redemption History
- User Rewards
- User Survey Results
- User Survey Submit
- User Survey Update
- User Update (tier_override field may not be used)