List all authorization requests (admin)

POST 
/userauth-srv/graph/uauthrequests

Returns authorization requests across the tenant for automation and administrative reporting.

Requires a client credential access token (anonymous sub) with scope cidaas:userauth_request_read. User access tokens are rejected with 401.

Use the generic graph filter in the request body for pagination, sorting, date ranges, and field filters. Unlike POST /userauth-srv/graph/uauthrequests/receipts, this endpoint is not scoped to the token subject — you may filter by any user's sub (recipient/beneficiary). The sub filter refers to the beneficiary, not requestorSub.

Request

Responses

200

Authorization requests retrieved successfully

204

No matching authorization requests

400

Bad Request — invalid graph filter (e.g. unsupported filter field or invalid pagination)

401

Unauthorized — missing or invalid token, or user token instead of client credential