# Identity

## Query Audit Log

 - [GET /v1/identity/audit](https://docs.synqly.com/api-reference/connectors/identity/identity_query_audit_log.md): Returns a list of  objects from the token-linked audit log.

## Query Users

 - [GET /v1/identity/users](https://docs.synqly.com/api-reference/connectors/identity/identity_query_users.md): Returns a list of  objects wrapped in the OCSF Entity Management event of type Read from the token-linked identity provider.

## Get User

 - [GET /v1/identity/users/{userId}](https://docs.synqly.com/api-reference/connectors/identity/identity_get_user.md): Returns a  object wrapped in an OCSF Entity Management event of type Read from the token-linked identity provider. Depending
on the providers offerings, this may include additional user information, such as the user's current groups and roles.

## Query Groups

 - [GET /v1/identity/groups](https://docs.synqly.com/api-reference/connectors/identity/identity_query_groups.md): Returns a list of  objects wrapped in the OCSF Entity Management event of type Read from the token-linked identity provider.

## Get Group

 - [GET /v1/identity/groups/{groupId}](https://docs.synqly.com/api-reference/connectors/identity/identity_get_group.md): Returns a  object wrapped in an OCSF Entity Management event of type Read from the token-linked identity provider. Depending
on the providers offerings, this may include additional group information, such as the roles assigned.

## Get Group Members

 - [GET /v1/identity/groups/{groupId}/members](https://docs.synqly.com/api-reference/connectors/identity/identity_get_group_members.md): Returns list of  objects wrapped in an OCSF Entity Management event of type Read from the token-linked identity provider that are members in the group referenced by ID.

## Enable User

 - [POST /v1/identity/users/{userId}/actions/enable](https://docs.synqly.com/api-reference/connectors/identity/identity_enable_user.md): Reenables a disabled user in the identity system based on user ID.

## Disable User

 - [POST /v1/identity/users/{userId}/actions/disable](https://docs.synqly.com/api-reference/connectors/identity/identity_disable_user.md): Disables a user in the identity system based on user ID.

## Force User Password Reset

 - [POST /v1/identity/users/{userId}/actions/force_reset_password](https://docs.synqly.com/api-reference/connectors/identity/identity_force_user_password_reset.md): Forces a user to reset their password before they can log in again.

## Expire All User Sessions

 - [POST /v1/identity/users/{userId}/actions/expire_all_sessions](https://docs.synqly.com/api-reference/connectors/identity/identity_expire_all_user_sessions.md): Logs a user out of all current sessions so they must log in again.