MCP
A2AWhat is a Unified API?
A unified API provides a single, standardized interface to interact with multiple third-party providers. Instead of learning each provider’s unique API format, authentication scheme, and data model, you write code once, and StackOne handles the differences. What StackOne normalizes:- Data models – Consistent field names and structures across providers (e.g.,
employeesin BambooHR, Workday, and Personio all return the same schema) - Authentication – OAuth, API keys, and tokens are managed per-provider; you just pass an
x-account-idheader - Pagination – Cursor-based pagination works the same regardless of whether the provider uses offsets, pages, or cursors
- Error formats – Standardized error responses with provider-specific details when available
Benefits of the IAM API
Unified Identity Governance
Unified Identity Governance
Manage users, roles, groups, and policies through a single standardized API, regardless of the underlying identity providers.
Automated Access Reviews
Automated Access Reviews
Easily implement automated user access reviews across multiple systems, ensuring compliance with security policies and regulatory requirements.
Simplified Multi-Provider Management
Simplified Multi-Provider Management
StackOne’s unified approach eliminate the complexity of integrating with multiple IAM providers, reducing development time and maintenance costs.
Detailed User Status Tracking
Detailed User Status Tracking
Monitor user activity with comprehensive status tracking, including last login times, active status, and multi-factor authentication details.
Rich Role and Permission Mapping
Rich Role and Permission Mapping
Easily map roles to permissions and resources, providing granular control over access rights across different systems and applications.
Key Features
The table below shows key features of the IAM API that make identity and access management more efficient, from real-time synchronization to comprehensive user control:| Feature | Description |
|---|---|
| Comprehensive User Management | Easily create, update, and retrieve user profiles, including personal information, roles, and permissions. |
| Role, Policy, and Permission Management | List and manage roles, assign permissions, and define access control policies for various resources. |
| Group Management | Organize users into groups, assign roles and permissions, and manage group memberships. |
| Resource Access Control | Control access to resources and ensure users have the appropriate permissions for their roles. |
StackOne SDKs & OpenAPI Specification
Use our official SDKs for faster integration. Build with language-native libraries. Full list here.
OpenAPI Specification
Popular SDKs
Entity Model and Relationships
The following diagram illustrates the key entities within the IAM API: The following table outlines key entities within the IAM system and provides a brief description of each:| Entity | Description |
|---|---|
| Users | Represents individuals with system access, including their personal information, username, email, status, activity timestamps, and multi-factor authentication settings. |
| Roles | Defines sets of permissions and access levels that can be assigned to users or groups, with types such as admin, viewer, editor, etc. |
| Groups | Organizes users into collections for easier management, with properties like name, description, type (team, department, organization, etc.), and hierarchical relationships. |
| Policies | Contains rules that define access controls, with associated permissions determining what actions can be performed. |
| Permissions | Specifies the allowed actions on resources, such as read, read_write, approve, delete, etc. |
| Resources | Represents the objects that users can access, such as files, folders, projects, or other system components that are protected by permissions. |