Get a session

Get a session and all its information like the time of the user or password verification

Path Parameters

sessionId string required

Query Parameters

sessionToken string

Responses

• 200
• 403
• 404
• default

---

OK

application/json

application/grpc

application/grpc-web+proto

Schema

Example (from schema)

---

Schema

session object

id string

"id of the session"

creationDate date-time

"time when the session was created"

changeDate date-time

"time when the session was last updated"

sequence uint64

"sequence of the session"

factors object

"checked factors of the session, e.g. the user, password and more"

user object

verifiedAt date-time

"time when the user was last checked"

id string

"id of the checked user"

loginName string

"login name of the checked user"

displayName string

"display name of the checked user"

organizationId string

"organization id of the checked user"

password object

verifiedAt date-time

"time when the password was last checked"

webAuthN object

verifiedAt date-time

"time when the passkey challenge was last checked"

userVerified boolean

intent object

verifiedAt date-time

"time when an intent was last checked"

totp object

verifiedAt date-time

"time when the Time-based One-Time Password was last checked"

otpSms object

verifiedAt date-time

"time when the One-Time Password was last checked"

otpEmail object

verifiedAt date-time

"time when the One-Time Password was last checked"

metadata object

"custom key value list"

property name* byte

userAgent object

fingerprintId string

ip string

description string

header object

property name* object

A header may have multiple values. In Go, headers are defined as map[string][]string, but protobuf doesn't allow this scheme.

values string[]

expirationDate date-time

"time the session will be automatically invalidated"

{
  "session": {
    "id": "string",
    "creationDate": "2024-04-08T09:12:35.821Z",
    "changeDate": "2024-04-08T09:12:35.821Z",
    "sequence": "string",
    "factors": {
      "user": {
        "verifiedAt": "2024-04-08T09:12:35.821Z",
        "id": "string",
        "loginName": "string",
        "displayName": "string",
        "organizationId": "string"
      },
      "password": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      },
      "webAuthN": {
        "verifiedAt": "2024-04-08T09:12:35.821Z",
        "userVerified": true
      },
      "intent": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      },
      "totp": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      },
      "otpSms": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      },
      "otpEmail": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      }
    },
    "metadata": {},
    "userAgent": {
      "fingerprintId": "string",
      "ip": "string",
      "description": "string",
      "header": {}
    },
    "expirationDate": "2024-04-08T09:12:35.821Z"
  }
}

Schema

Example (from schema)

---

Schema

session object

id string

"id of the session"

creationDate date-time

"time when the session was created"

changeDate date-time

"time when the session was last updated"

sequence uint64

"sequence of the session"

factors object

"checked factors of the session, e.g. the user, password and more"

user object

verifiedAt date-time

"time when the user was last checked"

id string

"id of the checked user"

loginName string

"login name of the checked user"

displayName string

"display name of the checked user"

organizationId string

"organization id of the checked user"

password object

verifiedAt date-time

"time when the password was last checked"

webAuthN object

verifiedAt date-time

"time when the passkey challenge was last checked"

userVerified boolean

intent object

verifiedAt date-time

"time when an intent was last checked"

totp object

verifiedAt date-time

"time when the Time-based One-Time Password was last checked"

otpSms object

verifiedAt date-time

"time when the One-Time Password was last checked"

otpEmail object

verifiedAt date-time

"time when the One-Time Password was last checked"

metadata object

"custom key value list"

property name* byte

userAgent object

fingerprintId string

ip string

description string

header object

property name* object

A header may have multiple values. In Go, headers are defined as map[string][]string, but protobuf doesn't allow this scheme.

values string[]

expirationDate date-time

"time the session will be automatically invalidated"

{
  "session": {
    "id": "string",
    "creationDate": "2024-04-08T09:12:35.821Z",
    "changeDate": "2024-04-08T09:12:35.821Z",
    "sequence": "string",
    "factors": {
      "user": {
        "verifiedAt": "2024-04-08T09:12:35.821Z",
        "id": "string",
        "loginName": "string",
        "displayName": "string",
        "organizationId": "string"
      },
      "password": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      },
      "webAuthN": {
        "verifiedAt": "2024-04-08T09:12:35.821Z",
        "userVerified": true
      },
      "intent": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      },
      "totp": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      },
      "otpSms": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      },
      "otpEmail": {
        "verifiedAt": "2024-04-08T09:12:35.821Z"
      }
    },
    "metadata": {},
    "userAgent": {
      "fingerprintId": "string",
      "ip": "string",
      "description": "string",
      "header": {}
    },
    "expirationDate": "2024-04-08T09:12:35.821Z"
  }
}

Schema

Example (from schema)

---

Schema

session object

id string

"id of the session"

creationDate date-time

"time when the session was created"

changeDate date-time

"time when the session was last updated"

sequence uint64

"sequence of the session"

factors object

"checked factors of the session, e.g. the user, password and more"

user object

verifiedAt date-time

"time when the user was last checked"

id string

"id of the checked user"

loginName string

"login name of the checked user"

displayName string

"display name of the checked user"

organizationId string

"organization id of the checked user"

password object

verifiedAt date-time

"time when the password was last checked"

webAuthN object

verifiedAt date-time

"time when the passkey challenge was last checked"

userVerified boolean

intent object

verifiedAt date-time

"time when an intent was last checked"

totp object

verifiedAt date-time

"time when the Time-based One-Time Password was last checked"

otpSms object

verifiedAt date-time

"time when the One-Time Password was last checked"

otpEmail object

verifiedAt date-time

"time when the One-Time Password was last checked"

metadata object

"custom key value list"

property name* byte

userAgent object

fingerprintId string

ip string

description string

header object

property name* object

A header may have multiple values. In Go, headers are defined as map[string][]string, but protobuf doesn't allow this scheme.

values string[]

expirationDate date-time

"time the session will be automatically invalidated"

{
  "session": {
    "id": "string",
    "creationDate": "2024-04-08T09:12:35.822Z",
    "changeDate": "2024-04-08T09:12:35.822Z",
    "sequence": "string",
    "factors": {
      "user": {
        "verifiedAt": "2024-04-08T09:12:35.822Z",
        "id": "string",
        "loginName": "string",
        "displayName": "string",
        "organizationId": "string"
      },
      "password": {
        "verifiedAt": "2024-04-08T09:12:35.822Z"
      },
      "webAuthN": {
        "verifiedAt": "2024-04-08T09:12:35.822Z",
        "userVerified": true
      },
      "intent": {
        "verifiedAt": "2024-04-08T09:12:35.822Z"
      },
      "totp": {
        "verifiedAt": "2024-04-08T09:12:35.822Z"
      },
      "otpSms": {
        "verifiedAt": "2024-04-08T09:12:35.822Z"
      },
      "otpEmail": {
        "verifiedAt": "2024-04-08T09:12:35.822Z"
      }
    },
    "metadata": {},
    "userAgent": {
      "fingerprintId": "string",
      "ip": "string",
      "description": "string",
      "header": {}
    },
    "expirationDate": "2024-04-08T09:12:35.822Z"
  }
}

Returned when the user does not have permission to access the resource.

application/json

application/grpc

application/grpc-web+proto

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Returned when the resource does not exist.

application/json

application/grpc

application/grpc-web+proto

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

An unexpected error response.

application/json

application/grpc

application/grpc-web+proto

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

GET /v2beta/sessions/:sessionId

Authorization

name: OAuth2type: oauth2scopes: openid,urn:zitadel:iam:org:project:id:zitadel:audflows: {
  "authorizationCode": {
    "authorizationUrl": "$CUSTOM-DOMAIN/oauth/v2/authorize",
    "tokenUrl": "$CUSTOM-DOMAIN/oauth/v2/token",
    "scopes": {
      "openid": "openid",
      "urn:zitadel:iam:org:project:id:zitadel:aud": "urn:zitadel:iam:org:project:id:zitadel:aud"
    }
  }
}

Request

Base URL

https://$CUSTOM-DOMAIN

Bearer Token

sessionId — path required

sessionToken — query

Accept

application/jsonapplication/grpcapplication/grpc-web+proto

curl / cURL

curl -L -X GET 'https://$CUSTOM-DOMAIN/v2beta/sessions/:sessionId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

python / requests

curl -L -X GET 'https://$CUSTOM-DOMAIN/v2beta/sessions/:sessionId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

go / native

curl -L -X GET 'https://$CUSTOM-DOMAIN/v2beta/sessions/:sessionId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

nodejs / axios

curl -L -X GET 'https://$CUSTOM-DOMAIN/v2beta/sessions/:sessionId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

ruby / Net::HTTP

curl -L -X GET 'https://$CUSTOM-DOMAIN/v2beta/sessions/:sessionId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

csharp / RestSharp

curl -L -X GET 'https://$CUSTOM-DOMAIN/v2beta/sessions/:sessionId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

php / cURL

curl -L -X GET 'https://$CUSTOM-DOMAIN/v2beta/sessions/:sessionId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

java / OkHttp

curl -L -X GET 'https://$CUSTOM-DOMAIN/v2beta/sessions/:sessionId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

powershell / RestMethod

curl -L -X GET 'https://$CUSTOM-DOMAIN/v2beta/sessions/:sessionId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'