WorkOS Skill
WorkOS REST API base: �INLINECODE0
Auth
�CODEBLOCK0
Organizations
List Organizations
�CODEBLOCK1
Create Organization
�CODEBLOCK2
SSO
List SSO Connections
�CODEBLOCK3
Get SSO Authorization URL
�CODEBLOCK4
Get Profile After SSO Callback
�CODEBLOCK5
Directory Sync (SCIM)
List Directories
�CODEBLOCK6
List Directory Users
�CODEBLOCK7
List Directory Groups
�CODEBLOCK8
Get Directory User
�CODEBLOCK9
Admin Portal
Generate Admin Portal Link
curl -X POST "https://api.workos.com/portal/generate_link" \
-H "Authorization: Bearer $WORKOS_API_KEY" \
-H "Content-Type: application/json" \
-d '{"intent": "sso", "organization": "<org_id>", "return_url": "https://yourapp.com/settings"}'
# Returns: { link: "https://..." } — share with customer's IT admin
intent options:
sso,
dsync,
log_streams, �INLINECODE5
User Management (WorkOS AuthKit)
List Users
�CODEBLOCK11
Get User
�CODEBLOCK12
Delete User
�CODEBLOCK13
Connection Types
OktaSAML,
AzureSAML,
GoogleSAML,
OneLoginSAML,
GenericSAML,
ADFSSAML,
PingFederateSAML,
OktaOIDC,
MicrosoftOIDC, �INLINECODE15
WorkOS 技能
WorkOS REST API 基础地址:https://api.workos.com
认证
bash
curl -H Authorization: Bearer $WORKOS
APIKEY https://api.workos.com/...
组织
列出组织
bash
curl https://api.workos.com/organizations?limit=10 \
-H Authorization: Bearer $WORKOS
APIKEY
创建组织
bash
curl -X POST https://api.workos.com/organizations \
-H Authorization: Bearer $WORKOS
APIKEY \
-H Content-Type: application/json \
-d {name: Acme Corp, domains: [{domain: acme.com}]}
单点登录
列出单点登录连接
bash
curl https://api.workos.com/connections?organization
id=id> \
-H Authorization: Bearer $WORKOSAPIKEY
获取单点登录授权URL
bash
curl -X POST https://api.workos.com/sso/authorize \
-H Authorization: Bearer $WORKOSAPIKEY \
-H Content-Type: application/json \
-d {
clientid: CLIENT_ID>,
redirect_uri: https://yourapp.com/auth/callback,
connection: ,
state:
}
单点登录回调后获取用户资料
bash
curl -X POST https://api.workos.com/sso/token \
-H Authorization: Bearer $WORKOSAPIKEY \
-H Content-Type: application/json \
-d {code: code>, clientid: CLIENTID>}
目录同步
列出目录
bash
curl https://api.workos.com/directories?organization
id=id> \
-H Authorization: Bearer $WORKOSAPIKEY
列出目录用户
bash
curl https://api.workos.com/directoryusers?directory=id>&limit=25 \
-H Authorization: Bearer $WORKOSAPIKEY
列出目录组
bash
curl https://api.workos.com/directorygroups?directory=id> \
-H Authorization: Bearer $WORKOSAPIKEY
获取目录用户
bash
curl https://api.workos.com/directoryusers/id> \
-H Authorization: Bearer $WORKOSAPIKEY
管理门户
生成管理门户链接
bash
curl -X POST https://api.workos.com/portal/generate_link \
-H Authorization: Bearer $WORKOSAPIKEY \
-H Content-Type: application/json \
-d {intent: sso, organization: id>, returnurl: https://yourapp.com/settings}
返回:{ link: https://... } — 与客户的IT管理员共享
intent 选项:sso、dsync、logstreams、auditlogs
用户管理
列出用户
bash
curl https://api.workos.com/user_management/users?limit=25 \
-H Authorization: Bearer $WORKOSAPIKEY
获取用户
bash
curl https://api.workos.com/usermanagement/users/id> \
-H Authorization: Bearer $WORKOSAPIKEY
删除用户
bash
curl -X DELETE https://api.workos.com/usermanagement/users/id> \
-H Authorization: Bearer $WORKOSAPIKEY
连接类型
OktaSAML、AzureSAML、GoogleSAML、OneLoginSAML、GenericSAML、ADFSSAML、PingFederateSAML、OktaOIDC、MicrosoftOIDC、GoogleOIDC
