Frontegg is built with multi-tenancy in mind, allowing the creation and management of multiple accounts (tenants) within an environment. This section provides an overview of relevant API endpoints, organized into Management and Self-Service categories, supporting the creation of accounts, hierarchies, and sub-accounts.
Management Endpoints: Require environment-level authorization and offer full control over resources, including SSO (SAML and OIDC) configurations, account hierarchies, and sub-accounts.
Self-Service Endpoints: Accessible with a user token (JWT), enabling users with the appropriate permissions to create, update, and delete sub-accounts from ah hierarchy.
https://api.frontegg.com/tenants/
https://api.us.frontegg.com/tenants/
https://api.ca.frontegg.com/tenants/
https://api.au.frontegg.com/tenants/
https://{domain}.frontegg.com/tenants/
Get account settings of an account (tenant). An account is determined by a given user token when using a user token and by the **frontegg-tenant-id** when using a vendor token. A user token or vendor token are required for this route. A user token can be obtained after user authentication. A vendor token is required for this route, it can be obtained from the vendor authentication route.
https://api.frontegg.com/tenants/resources/account-settings/v1
https://api.us.frontegg.com/tenants/resources/account-settings/v1
https://api.ca.frontegg.com/tenants/resources/account-settings/v1
https://api.au.frontegg.com/tenants/resources/account-settings/v1
https://app-xxx.frontegg.com/tenants/resources/account-settings/v1
curl -i -X GET \
https://api.frontegg.com/tenants/resources/account-settings/v1 \
-H 'Authorization: Bearer <YOUR_JWT_HERE>' \
-H 'frontegg-tenant-id: string'Update account settings of an account (tenant). There has to be at least one setting passed on the body. An account is determined by a given user token when using a user token and by the **frontegg-tenant-id** when using a vendor token. A user token or vendor token are required for this route. A user token can be obtained after user authentication. A vendor token is required for this route, it can be obtained from the vendor authentication route.
https://api.frontegg.com/tenants/resources/account-settings/v1
https://api.us.frontegg.com/tenants/resources/account-settings/v1
https://api.ca.frontegg.com/tenants/resources/account-settings/v1
https://api.au.frontegg.com/tenants/resources/account-settings/v1
https://app-xxx.frontegg.com/tenants/resources/account-settings/v1
curl -i -X PUT \
https://api.frontegg.com/tenants/resources/account-settings/v1 \
-H 'Authorization: Bearer <YOUR_JWT_HERE>' \
-H 'Content-Type: application/json' \
-H 'frontegg-tenant-id: string' \
-d '{}'Get account public settings of an account (tenant). An account is determined by a given user token when using a user token and by the **frontegg-tenant-id** when using a vendor token. A user token or vendor token are required for this route. A user token can be obtained after user authentication. A vendor token is required for this route, it can be obtained from the vendor authentication route.
https://api.frontegg.com/tenants/resources/account-settings/v1/public
https://api.us.frontegg.com/tenants/resources/account-settings/v1/public
https://api.ca.frontegg.com/tenants/resources/account-settings/v1/public
https://api.au.frontegg.com/tenants/resources/account-settings/v1/public
https://app-xxx.frontegg.com/tenants/resources/account-settings/v1/public
curl -i -X GET \
https://api.frontegg.com/tenants/resources/account-settings/v1/public \
-H 'Authorization: Bearer <YOUR_JWT_HERE>' \
-H 'frontegg-tenant-id: string'