User API

User API

Operations under the user scope of the unified GraphQL endpoint (POST /graphql). All calls require a Bearer JWT obtained from verify-otp.

Sections

register — finalise a new user account
status — registration / tier / seal state
seal / unseal — vault key management
schemas — discover built-in JSON schemas at runtime
documents/ — private-vault documents (7 ops)
files/ — private-vault files (5 ops)
shared-vaults/ — shared vault creation, docs, files

Info

Most write operations require the user’s vault to be unsealed. Reading status works while sealed; most other endpoints do not.