Autocomplete users
  Get a list of users for the purpose of autocompleting based on the provided search term. Specify a combination of `team_id` and `channel_id` to filter results further.
##### Permissions
Requires an active session and `view_team` and `read_channel` on any teams or channels used to filter the results further.

Autocomplete users
  Get a list of users for the purpose of autocompleting based on the provided search term. Specify a combination of `team_id` and `channel_id` to filter results further.
##### Permissions
Requires an active session and `view_team` and `read_channel` on any teams or channels used to filter the results further.

Get a user by email
  Get a user object by providing a user email. Sensitive information will be sanitized out.
##### Permissions
Requires an active session and for the current session to be able to view another user's email based on the server's privacy settings.

Get a user by email
  Get a user object by providing a user email. Sensitive information will be sanitized out.
##### Permissions
Requires an active session and for the current session to be able to view another user's email based on the server's privacy settings.

Verify user email
  Verify the email used by a user to sign-up their account with.
##### Permissions
No permissions required.

Verify user email
  Verify the email used by a user to sign-up their account with.
##### Permissions
No permissions required.

Send verification email
  Send an email with a verification link to a user that has an email matching the one in the request body. This endpoint will return success even if the email does not match any users on the system.
##### Permissions
No permissions required.

Send verification email
  Send an email with a verification link to a user that has an email matching the one in the request body. This endpoint will return success even if the email does not match any users on the system.
##### Permissions
No permissions required.

Get users
  Get a page of a list of users. Based on query string parameters, select users from a team, channel, or select users not in a specific channel.

Since server version 4.0, some basic sorting is available using the `sort` query parameter. Sorting is currently only supported when selecting users on a team.
##### Permissions
Requires an active session and (if specified) membership to the channel or team being selected from.

Get users
  Get a page of a list of users. Based on query string parameters, select users from a team, channel, or select users not in a specific channel.

Since server version 4.0, some basic sorting is available using the `sort` query parameter. Sorting is currently only supported when selecting users on a team.
##### Permissions
Requires an active session and (if specified) membership to the channel or team being selected from.

Get users by group channels ids
  Get an object containing a key per group channel id in the
query and its value as a list of users members of that group
channel.

The user must be a member of the group ids in the query, or
they will be omitted from the response.
##### Permissions
Requires an active session but no other permissions.

__Minimum server version__: 5.14

Get users by group channels ids
  Get an object containing a key per group channel id in the
query and its value as a list of users members of that group
channel.

The user must be a member of the group ids in the query, or
they will be omitted from the response.
##### Permissions
Requires an active session but no other permissions.

__Minimum server version__: 5.14

Get users by ids
  Get a list of users based on a provided list of user ids.
##### Permissions
Requires an active session but no other permissions.

Get users by ids
  Get a list of users based on a provided list of user ids.
##### Permissions
Requires an active session but no other permissions.

Switch login method
  Switch a user's login method from using email to OAuth2/SAML/LDAP or back to email. When switching to OAuth2/SAML, account switching is not complete until the user follows the returned link and completes any steps on the OAuth2/SAML service provider.

To switch from email to OAuth2/SAML, specify `current_service`, `new_service`, `email` and `password`.

To switch from OAuth2/SAML to email, specify `current_service`, `new_service`, `email` and `new_password`.

To switch from email to LDAP/AD, specify `current_service`, `new_service`, `email`, `password`, `ldap_ip` and `new_password` (this is the user's LDAP password).

To switch from LDAP/AD to email, specify `current_service`, `new_service`, `ldap_ip`, `password` (this is the user's LDAP password), `email`  and `new_password`.

Additionally, specify `mfa_code` when trying to switch an account on LDAP/AD or email that has MFA activated.

##### Permissions
No current authentication required except when switching from OAuth2/SAML to email.

Switch login method
  Switch a user's login method from using email to OAuth2/SAML/LDAP or back to email. When switching to OAuth2/SAML, account switching is not complete until the user follows the returned link and completes any steps on the OAuth2/SAML service provider.

To switch from email to OAuth2/SAML, specify `current_service`, `new_service`, `email` and `password`.

To switch from OAuth2/SAML to email, specify `current_service`, `new_service`, `email` and `new_password`.

To switch from email to LDAP/AD, specify `current_service`, `new_service`, `email`, `password`, `ldap_ip` and `new_password` (this is the user's LDAP password).

To switch from LDAP/AD to email, specify `current_service`, `new_service`, `ldap_ip`, `password` (this is the user's LDAP password), `email`  and `new_password`.

Additionally, specify `mfa_code` when trying to switch an account on LDAP/AD or email that has MFA activated.

##### Permissions
No current authentication required except when switching from OAuth2/SAML to email.

Check MFA
  Check if a user has multi-factor authentication active on their account by providing a login id. Used to check whether an MFA code needs to be provided when logging in.
##### Permissions
No permission required.

Check MFA
  Check if a user has multi-factor authentication active on their account by providing a login id. Used to check whether an MFA code needs to be provided when logging in.
##### Permissions
No permission required.

Reset password
  Update the password for a user using a one-use, timed recovery code tied to the user's account. Only works for non-SSO users.
##### Permissions
No permissions required.

Reset password
  Update the password for a user using a one-use, timed recovery code tied to the user's account. Only works for non-SSO users.
##### Permissions
No permissions required.

Send password reset email
  Send an email containing a link for resetting the user's password. The link will contain a one-use, timed recovery code tied to the user's account. Only works for non-SSO users.
##### Permissions
No permissions required.

Send password reset email
  Send an email containing a link for resetting the user's password. The link will contain a one-use, timed recovery code tied to the user's account. Only works for non-SSO users.
##### Permissions
No permissions required.

Create a user
  Create a new user on the system. Password is required for email login. For other authentication types such as LDAP or SAML, auth_data and auth_service fields are required.
##### Permissions
No permission required but user creation can be controlled by server configuration.

Create a user
  Create a new user on the system. Password is required for email login. For other authentication types such as LDAP or SAML, auth_data and auth_service fields are required.
##### Permissions
No permission required but user creation can be controlled by server configuration.

Search users
  Get a list of users based on search criteria provided in the request body. Searches are typically done against username, full name, nickname and email unless otherwise configured by the server.
##### Permissions
Requires an active session and `read_channel` and/or `view_team` permissions for any channels or teams specified in the request body.

Search users
  Get a list of users based on search criteria provided in the request body. Searches are typically done against username, full name, nickname and email unless otherwise configured by the server.
##### Permissions
Requires an active session and `read_channel` and/or `view_team` permissions for any channels or teams specified in the request body.

Attach mobile device
  Attach a mobile device id to the currently logged in session. This will enable push notifications for a user, if configured by the server.
##### Permissions
Must be authenticated.

Attach mobile device
  Attach a mobile device id to the currently logged in session. This will enable push notifications for a user, if configured by the server.
##### Permissions
Must be authenticated.

Revoke all sessions from all users.
  For any session currently on the server (including admin) it will be revoked.
Clients will be notified to log out users.

__Minimum server version__: 5.14

##### Permissions

Must have `manage_system` permission.

Revoke all sessions from all users.
  For any session currently on the server (including admin) it will be revoked.
Clients will be notified to log out users.

__Minimum server version__: 5.14

##### Permissions

Must have `manage_system` permission.

Get total count of users in the system
  Get a total count of users in the system.
##### Permissions
Must be authenticated.

Get total count of users in the system
  Get a total count of users in the system.
##### Permissions
Must be authenticated.

Disable personal access token
  Disable a personal access token and delete any sessions using the token. The token can be re-enabled using `/users/tokens/enable`.

__Minimum server version__: 4.4

##### Permissions
Must have `revoke_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Disable personal access token
  Disable a personal access token and delete any sessions using the token. The token can be re-enabled using `/users/tokens/enable`.

__Minimum server version__: 4.4

##### Permissions
Must have `revoke_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Enable personal access token
  Re-enable a personal access token that has been disabled.

__Minimum server version__: 4.4

##### Permissions
Must have `create_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Enable personal access token
  Re-enable a personal access token that has been disabled.

__Minimum server version__: 4.4

##### Permissions
Must have `create_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Get user access tokens
  Get a page of user access tokens for users on the system. Does not include the actual authentication tokens. Use query parameters for paging.

__Minimum server version__: 4.7

##### Permissions
Must have `manage_system` permission.

Get user access tokens
  Get a page of user access tokens for users on the system. Does not include the actual authentication tokens. Use query parameters for paging.

__Minimum server version__: 4.7

##### Permissions
Must have `manage_system` permission.

Revoke a user access token
  Revoke a user access token and delete any sessions using the token.

__Minimum server version__: 4.1

##### Permissions
Must have `revoke_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Revoke a user access token
  Revoke a user access token and delete any sessions using the token.

__Minimum server version__: 4.1

##### Permissions
Must have `revoke_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Search tokens
  Get a list of tokens based on search criteria provided in the request body. Searches are done against the token id, user id and username.

__Minimum server version__: 4.7

##### Permissions
Must have `manage_system` permission.

Search tokens
  Get a list of tokens based on search criteria provided in the request body. Searches are done against the token id, user id and username.

__Minimum server version__: 4.7

##### Permissions
Must have `manage_system` permission.

Get a user access token
  Get a user access token. Does not include the actual authentication token.

__Minimum server version__: 4.1

##### Permissions
Must have `read_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Get a user access token
  Get a user access token. Does not include the actual authentication token.

__Minimum server version__: 4.1

##### Permissions
Must have `read_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Update user active status
  Update user active or inactive status.

__Since server version 4.6, users using a SSO provider to login can be activated or deactivated with this endpoint. However, if their activation status in Mattermost does not reflect their status in the SSO provider, the next synchronization or login by that user will reset the activation status to that of their account in the SSO provider. Server versions 4.5 and before do not allow activation or deactivation of SSO users from this endpoint.__
##### Permissions
User can deactivate themselves.
User with `manage_system` permission can activate or deactivate a user.

Update user active status
  Update user active or inactive status.

__Since server version 4.6, users using a SSO provider to login can be activated or deactivated with this endpoint. However, if their activation status in Mattermost does not reflect their status in the SSO provider, the next synchronization or login by that user will reset the activation status to that of their account in the SSO provider. Server versions 4.5 and before do not allow activation or deactivation of SSO users from this endpoint.__
##### Permissions
User can deactivate themselves.
User with `manage_system` permission can activate or deactivate a user.

Get user's audits
  Get a list of audit by providing the user GUID.
##### Permissions
Must be logged in as the user or have the `edit_other_users` permission.

Get user's audits
  Get a list of audit by providing the user GUID.
##### Permissions
Must be logged in as the user or have the `edit_other_users` permission.

Update a user's authentication method
  Updates a user's authentication method. This can be used to change them to/from LDAP authentication for example.

__Minimum server version__: 4.6
##### Permissions
Must have the `edit_other_users` permission.

Update a user's authentication method
  Updates a user's authentication method. This can be used to change them to/from LDAP authentication for example.

__Minimum server version__: 4.6
##### Permissions
Must have the `edit_other_users` permission.

Deactivate a user account.
  Deactivates the user and revokes all its sessions by archiving its user object.
##### Permissions
Must be logged in as the user being deactivated or have the `edit_other_users` permission.

Deactivate a user account.
  Deactivates the user and revokes all its sessions by archiving its user object.
##### Permissions
Must be logged in as the user being deactivated or have the `edit_other_users` permission.

Demote a user to a guest
  Convert a regular user into a guest. This will convert the user into a
guest for the whole system while retaining their existing team and
channel memberships.

__Minimum server version__: 5.16

##### Permissions
Must be logged in as the user or have the `demote_to_guest` permission.

Demote a user to a guest
  Convert a regular user into a guest. This will convert the user into a
guest for the whole system while retaining their existing team and
channel memberships.

__Minimum server version__: 5.16

##### Permissions
Must be logged in as the user or have the `demote_to_guest` permission.

Get a user
  Get a user a object. Sensitive information will be sanitized out.
##### Permissions
Requires an active session but no other permissions.

Get a user
  Get a user a object. Sensitive information will be sanitized out.
##### Permissions
Requires an active session but no other permissions.

Return user's default (generated) profile image
  Returns the default (generated) user profile image based on user_id string parameter.
##### Permissions
Must be logged in.
__Minimum server version__: 5.5

Return user's default (generated) profile image
  Returns the default (generated) user profile image based on user_id string parameter.
##### Permissions
Must be logged in.
__Minimum server version__: 5.5

Delete user's profile image
  Delete user's profile image and reset to default image based on user_id string parameter.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.
__Minimum server version__: 5.5

Delete user's profile image
  Delete user's profile image and reset to default image based on user_id string parameter.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.
__Minimum server version__: 5.5

Get user's profile image
  Get a user's profile image based on user_id string parameter.
##### Permissions
Must be logged in.

Get user's profile image
  Get a user's profile image based on user_id string parameter.
##### Permissions
Must be logged in.

Set user's profile image
  Set a user's profile image based on user_id string parameter.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Set user's profile image
  Set a user's profile image based on user_id string parameter.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Generate MFA secret
  Generates an multi-factor authentication secret for a user and returns it as a string and as base64 encoded QR code image.
##### Permissions
Must be logged in as the user or have the `edit_other_users` permission.

Generate MFA secret
  Generates an multi-factor authentication secret for a user and returns it as a string and as base64 encoded QR code image.
##### Permissions
Must be logged in as the user or have the `edit_other_users` permission.

Update a user's MFA
  Activates multi-factor authentication for the user if `activate` is true and a valid `code` is provided. If activate is false, then `code` is not required and multi-factor authentication is disabled for the user.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Update a user's MFA
  Activates multi-factor authentication for the user if `activate` is true and a valid `code` is provided. If activate is false, then `code` is not required and multi-factor authentication is disabled for the user.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Update a user's password
  Update a user's password. New password must meet password policy set by server configuration. Current password is required if you're updating your own password.
##### Permissions
Must be logged in as the user the password is being changed for or have `manage_system` permission.

Update a user's password
  Update a user's password. New password must meet password policy set by server configuration. Current password is required if you're updating your own password.
##### Permissions
Must be logged in as the user the password is being changed for or have `manage_system` permission.

Patch a user
  Partially update a user by providing only the fields you want to update. Omitted fields will not be updated. The fields that can be updated are defined in the request body, all other provided fields will be ignored.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Patch a user
  Partially update a user by providing only the fields you want to update. Omitted fields will not be updated. The fields that can be updated are defined in the request body, all other provided fields will be ignored.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Promote a guest to user
  Convert a guest into a regular user. This will convert the guest into a
user for the whole system while retaining any team and channel
memberships and automatically joining them to the default channels.

__Minimum server version__: 5.16

##### Permissions
Must be logged in as the user or have the `promote_guest` permission.

Promote a guest to user
  Convert a guest into a regular user. This will convert the guest into a
user for the whole system while retaining any team and channel
memberships and automatically joining them to the default channels.

__Minimum server version__: 5.16

##### Permissions
Must be logged in as the user or have the `promote_guest` permission.

Update a user
  Update a user by providing the user object. The fields that can be updated are defined in the request body, all other provided fields will be ignored. Any fields not included in the request body will be set to null or reverted to default values.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Update a user
  Update a user by providing the user object. The fields that can be updated are defined in the request body, all other provided fields will be ignored. Any fields not included in the request body will be set to null or reverted to default values.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Update a user's roles
  Update a user's system-level roles. Valid user roles are "system_user", "system_admin" or both of them. Overwrites any previously assigned system-level roles.
##### Permissions
Must have the `manage_roles` permission.

Update a user's roles
  Update a user's system-level roles. Valid user roles are "system_user", "system_admin" or both of them. Overwrites any previously assigned system-level roles.
##### Permissions
Must have the `manage_roles` permission.

Get user's sessions
  Get a list of sessions by providing the user GUID. Sensitive information will be sanitized out.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Get user's sessions
  Get a list of sessions by providing the user GUID. Sensitive information will be sanitized out.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Revoke all active sessions for a user
  Revokes all user sessions from the provided user id and session id strings.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.
__Minimum server version__: 4.4

Revoke all active sessions for a user
  Revokes all user sessions from the provided user id and session id strings.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.
__Minimum server version__: 4.4

Revoke a user session
  Revokes a user session from the provided user id and session id strings.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Revoke a user session
  Revokes a user session from the provided user id and session id strings.
##### Permissions
Must be logged in as the user being updated or have the `edit_other_users` permission.

Fetches user's latest terms of service action if the latest action was for acceptance.
  Will be deprecated in v6.0
Fetches user's latest terms of service action if the latest action was for acceptance.

__Minimum server version__: 5.6
##### Permissions
Must be logged in as the user being acted on.

Fetches user's latest terms of service action if the latest action was for acceptance.
  Will be deprecated in v6.0
Fetches user's latest terms of service action if the latest action was for acceptance.

__Minimum server version__: 5.6
##### Permissions
Must be logged in as the user being acted on.

Records user action when they accept or decline custom terms of service
  Records user action when they accept or decline custom terms of service. Records the action in audit table.
Updates user's last accepted terms of service ID if they accepted it.

__Minimum server version__: 5.4
##### Permissions
Must be logged in as the user being acted on.

Records user action when they accept or decline custom terms of service
  Records user action when they accept or decline custom terms of service. Records the action in audit table.
Updates user's last accepted terms of service ID if they accepted it.

__Minimum server version__: 5.4
##### Permissions
Must be logged in as the user being acted on.

Get user access tokens
  Get a list of user access tokens for a user. Does not include the actual authentication tokens. Use query parameters for paging.

__Minimum server version__: 4.1

##### Permissions
Must have `read_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Get user access tokens
  Get a list of user access tokens for a user. Does not include the actual authentication tokens. Use query parameters for paging.

__Minimum server version__: 4.1

##### Permissions
Must have `read_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Create a user access token
  Generate a user access token that can be used to authenticate with the Mattermost REST API.

__Minimum server version__: 4.1

##### Permissions
Must have `create_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Create a user access token
  Generate a user access token that can be used to authenticate with the Mattermost REST API.

__Minimum server version__: 4.1

##### Permissions
Must have `create_user_access_token` permission. For non-self requests, must also have the `edit_other_users` permission.

Get a user by username
  Get a user object by providing a username. Sensitive information will be sanitized out.
##### Permissions
Requires an active session but no other permissions.

Get a user by username
  Get a user object by providing a username. Sensitive information will be sanitized out.
##### Permissions
Requires an active session but no other permissions.

Get users by usernames
  Get a list of users based on a provided list of usernames.
##### Permissions
Requires an active session but no other permissions.

Get users by usernames
  Get a list of users based on a provided list of usernames.
##### Permissions
Requires an active session but no other permissions.