Multi-tenancy authentication API reference - create organization via discovery

Create Organization via Discovery

POSThttps://test.stytch.com/v1/b2b/discovery/organizations/create

If an end user does not want to join any already-existing Organization, or has no possible Organizations to join, this endpoint can be used to create a new Organization and Member.

This operation consumes the Intermediate Session.

This endpoint will also create an initial Member Session for the newly created Member.

The Member created by this endpoint will automatically be granted the stytch_admin Role. See the RBAC guide for more details on this Role.

If the new Organization is created with a mfa_policy of REQUIRED_FOR_ALL, the newly created Member will need to complete an MFA step to log in to the Organization. The intermediate_session_token will not be consumed and instead will be returned in the response. The intermediate_session_token can be passed into the OTP SMS Authenticate endpoint to complete the MFA step and acquire a full member session. The intermediate_session_token can also be used with the Exchange Intermediate Session endpoint or the Create Organization via Discovery endpoint to join a different Organization or create a new one. The session_duration_minutes and session_custom_claims parameters will be ignored.

Body parameters

intermediate_session_token* string

session_duration_minutes int

session_custom_claims map<string, any>

organization_name string

organization_slug string

organization_logo_url string

trusted_metadata object

email_jit_provisioning string

email_invites string

email_allowed_domains array[strings]

sso_jit_provisioning string

auth_methods string

allowed_auth_methods array[strings]

mfa_methods string

allowed_mfa_methods array[strings]

mfa_policy string

rbac_email_implicit_role_assignments array[object]

Response fields

request_id string

status_code int

member_id string

mfa_required object

intermediate_session_token string

member_authenticated boolean

session_token string

session_jwt string

member_session object

member object

organization object

curl --request POST \
  --url https://test.stytch.com/v1/b2b/discovery/organizations/create \
  -u 'PROJECT_ID:SECRET' \
  -H 'Content-Type: application/json' \
  -d '{
    "intermediate_session_token": "SeiGwdj5lKkrEVgcEY3QNJXt6srxS3IK2Nwkar6mXD4=",
    "organization_name": "Example Org Inc.",
    "organization_slug": "example-org"
  }'

RESPONSE

{
	"request_id": "request-id-test-b05c992f-ebdc-489d-a754-c7e70ba13141",
	"status_code": 200,
	"member_id": "member-test-32fc5024-9c09-4da3-bd2e-c9ce4da9375f",
	"session_token": "mZAYn5aLEqKUlZ_Ad9U_fWr38GaAQ1oFAhT8ds245v7Q",
	"session_jwt": "eyJ...",
	"intermediate_session_token": "",
	"member_authenticated": true,
	"mfa_required": null,
    "member_session": {...},
    "member": {...},
    "organization": {...}
}