> ## Documentation Index > Fetch the complete documentation index at: https://docs.turnkey.com/llms.txt > Use this file to discover all available pages before exploring further. # Create users > Create users in an existing organization. export const EndpointPath = ({type, path}) => { return
POST
/
public
/
v1
/
{type}
/
{path}
; }; export const NestedParam = ({parentKey, childKey, type, required, description, children}) => { const fullKey = `${parentKey}.${childKey}`; const anchorId = `body-${fullKey.replace(/\./g, '-')}`; return
{parentKey}. {childKey}
{type}
{required && required }
{children &&
{children}
}
; }; export const H3Bordered = ({text}) =>

{text}

; export const Authorizations = () => { return
Cryptographically signed (stamped) request to be passed in as a header. For more info, see here.
Cryptographically signed (stamped) request to be passed in as a header. For more info, see here.
; }; Enum options: `ACTIVITY_TYPE_CREATE_USERS_V4` Timestamp (in milliseconds) of the request, used to verify liveness of user requests. Unique identifier for a given Organization.

The parameters object containing the specific intent data for this activity.

A list of Users.

Human-readable name for a User. The user's email address. The user's phone number in E.164 format e.g. +13214567890

A list of API Key parameters. This field, if not needed, should be an empty array in your request body.

Human-readable name for an API Key. The public component of a cryptographic key pair used to sign messages and transactions. Enum options: `API_KEY_CURVE_P256`, `API_KEY_CURVE_SECP256K1`, `API_KEY_CURVE_ED25519` Optional window (in seconds) indicating how long the API Key should last.

A list of Authenticator parameters. This field, if not needed, should be an empty array in your request body.

Human-readable name for an Authenticator. Challenge presented for authentication purposes.

attestation field

The cbor encoded then base64 url encoded id of the credential. A base64 url encoded payload containing metadata about the signing context and the challenge. A base64 url encoded payload containing authenticator data and any attestation the webauthn provider chooses. Enum options: `AUTHENTICATOR_TRANSPORT_BLE`, `AUTHENTICATOR_TRANSPORT_INTERNAL`, `AUTHENTICATOR_TRANSPORT_NFC`, `AUTHENTICATOR_TRANSPORT_USB`, `AUTHENTICATOR_TRANSPORT_HYBRID`

A list of Oauth providers. This field, if not needed, should be an empty array in your request body.

Human-readable name to identify a Provider. Base64 encoded OIDC token

oidcClaims field

The issuer identifier from the OIDC token (iss claim) The subject identifier from the OIDC token (sub claim) The audience from the OIDC token (aud claim)

A list of User Tag IDs. This field, if not needed, should be an empty array in your request body.

Array item type: string

item field

 Enable to have your activity generate and return App Proofs, enabling verifiability. A successful response returns the following fields: The activity object containing type, intent, and result Unique identifier for a given Activity object. Unique identifier for a given Organization. The activity status The activity type The intent of the activity The createUsersIntentV4 object A list of Users. Human-readable name for a User. The user's email address. The user's phone number in E.164 format e.g. +13214567890 A list of API Key parameters. This field, if not needed, should be an empty array in your request body. Human-readable name for an API Key. The public component of a cryptographic key pair used to sign messages and transactions. curveType field Enum options: `API_KEY_CURVE_P256`, `API_KEY_CURVE_SECP256K1`, `API_KEY_CURVE_ED25519` Optional window (in seconds) indicating how long the API Key should last. A list of Authenticator parameters. This field, if not needed, should be an empty array in your request body. Human-readable name for an Authenticator. Challenge presented for authentication purposes. attestation field The cbor encoded then base64 url encoded id of the credential. A base64 url encoded payload containing metadata about the signing context and the challenge. A base64 url encoded payload containing authenticator data and any attestation the webauthn provider chooses. The type of authenticator transports. item field Enum options: `AUTHENTICATOR_TRANSPORT_BLE`, `AUTHENTICATOR_TRANSPORT_INTERNAL`, `AUTHENTICATOR_TRANSPORT_NFC`, `AUTHENTICATOR_TRANSPORT_USB`, `AUTHENTICATOR_TRANSPORT_HYBRID` A list of Oauth providers. This field, if not needed, should be an empty array in your request body. Human-readable name to identify a Provider. Base64 encoded OIDC token oidcClaims field The issuer identifier from the OIDC token (iss claim) The subject identifier from the OIDC token (sub claim) The audience from the OIDC token (aud claim) A list of User Tag IDs. This field, if not needed, should be an empty array in your request body. item field The result of the activity The createUsersResult object A list of User IDs. item field A list of objects representing a particular User's approval or rejection of a Consensus request, including all relevant metadata. An artifact verifying a User's action. Whether the activity can be approved. Whether the activity can be rejected. The creation timestamp. The last update timestamp. ```bash title="cURL" theme={"system"} curl --request POST \ --url https://api.turnkey.com/public/v1/submit/create_users \ --header 'Accept: application/json' \ --header 'Content-Type: application/json' \ --header "X-Stamp: (see Authorizations)" \ --data '{ "type": "ACTIVITY_TYPE_CREATE_USERS_V4", "timestampMs": " (e.g. 1746736509954)", "organizationId": " (Your Organization ID)", "parameters": { "users": [ { "userName": "", "userEmail": "", "userPhoneNumber": "", "apiKeys": [ { "apiKeyName": "", "publicKey": "", "curveType": "", "expirationSeconds": "" } ], "authenticators": [ { "authenticatorName": "", "challenge": "", "attestation": { "credentialId": "", "clientDataJson": "", "attestationObject": "", "transports": [ "" ] } } ], "oauthProviders": [ { "providerName": "", "oidcToken": "", "oidcClaims": { "iss": "", "sub": "", "aud": "" } } ], "userTags": [ "" ] } ] } }' ``` ```javascript title="JavaScript" theme={"system"} import { Turnkey } from "@turnkey/sdk-server"; const turnkeyClient = new Turnkey({ apiBaseUrl: "https://api.turnkey.com", apiPublicKey: process.env.API_PUBLIC_KEY!, apiPrivateKey: process.env.API_PRIVATE_KEY!, defaultOrganizationId: process.env.ORGANIZATION_ID!, }); const response = await turnkeyClient.apiClient().createUsers({ users: [{ // A list of Users., userName: " (Human-readable name for a User.)", userEmail: " (The user's email address.)", userPhoneNumber: " (The user's phone number in E.164 format e.g. +13214567890)", apiKeys: [{ // A list of API Key parameters. This field, if not needed, should be an empty array in your request body., apiKeyName: " (Human-readable name for an API Key.)", publicKey: " (The public component of a cryptographic key pair used to sign messages and transactions.)", curveType: "" // curveType field, expirationSeconds: " (Optional window (in seconds) indicating how long the API Key should last.)", }], authenticators: [{ // A list of Authenticator parameters. This field, if not needed, should be an empty array in your request body., authenticatorName: " (Human-readable name for an Authenticator.)", challenge: " (Challenge presented for authentication purposes.)", attestation: { // attestation field, credentialId: " (The cbor encoded then base64 url encoded id of the credential.)", clientDataJson: " (A base64 url encoded payload containing metadata about the signing context and the challenge.)", attestationObject: " (A base64 url encoded payload containing authenticator data and any attestation the webauthn provider chooses.)", transports: "" // The type of authenticator transports., }, }], oauthProviders: [{ // A list of Oauth providers. This field, if not needed, should be an empty array in your request body., providerName: " (Human-readable name to identify a Provider.)", oidcToken: " (Base64 encoded OIDC token)", oidcClaims: { // oidcClaims field, iss: " (The issuer identifier from the OIDC token (iss claim))", sub: " (The subject identifier from the OIDC token (sub claim))", aud: " (The audience from the OIDC token (aud claim))", }, }], userTags: [""] // A list of User Tag IDs. This field, if not needed, should be an empty array in your request body., }] }); ``` ```json 200 theme={"system"} { "activity": { "id": "", "status": "ACTIVITY_STATUS_COMPLETED", "type": "ACTIVITY_TYPE_CREATE_USERS_V4", "organizationId": "", "timestampMs": " (e.g. 1746736509954)", "result": { "activity": { "id": "", "organizationId": "", "status": "", "type": "", "intent": { "createUsersIntentV4": { "users": [ { "userName": "", "userEmail": "", "userPhoneNumber": "", "apiKeys": [ { "apiKeyName": "", "publicKey": "", "curveType": "", "expirationSeconds": "" } ], "authenticators": [ { "authenticatorName": "", "challenge": "", "attestation": { "credentialId": "", "clientDataJson": "", "attestationObject": "", "transports": [ "" ] } } ], "oauthProviders": [ { "providerName": "", "oidcToken": "", "oidcClaims": { "iss": "", "sub": "", "aud": "" } } ], "userTags": [ "" ] } ] } }, "result": { "createUsersResult": { "userIds": [ "" ] } }, "votes": "", "fingerprint": "", "canApprove": "", "canReject": "", "createdAt": "", "updatedAt": "" } } } } ```