# Create onboarding token Create a unique onboarding token (OT) for an end-user, email it to them using the standard onboarding template, and return the token in the response Endpoint: POST /v1/onboarding-token Version: 1.0 Security: bearer ## Request fields (application/json): - `email` (string, required) Email Address of the user Example: "john.doe@sqr-group.com" - `first_name` (string, required) First name of the user Example: "John" - `last_name` (string, required) Last name of the user Example: "Doe" ## Response 201 fields (application/json): - `onboarding_token` (string) The onboarding token created by admin. Example: "SNFF3I2" ## Response 400 fields (application/json): - `code` (number, required) Example: 400 - `errors` (array, required) Example: [{"field":"email","code":"isNotEmpty","hint":"email should not be empty"},{"field":"firstName","code":"isNotEmpty","hint":"firstName should not be empty"},{"field":"lastName","code":"isNotEmpty","hint":"lastName should not be empty"}] - `errors.field` (string) Example: "email" - `errors.hint` (string) Example: "email should not be empty" ## Response 401 fields (application/json): - `code` (number, required) Example: 401 - `timestamp` (string, required) Example: "2025-07-11T06:51:25.202Z" - `path` (string, required) Example: "/api/v1/[route]..." - `method` (string, required) Example: "GET" - `error` (string, required) Example: "UNAUTHORIZED" - `message` (string, required) Example: "Unauthorized" ## Response 403 fields (application/json): - `code` (number, required) Example: 403 - `timestamp` (string, required) Example: "2025-07-11T06:51:25.202Z" - `path` (string, required) Example: "/api/v1/[route]..." - `method` (string, required) Example: "GET" - `error` (string, required) Example: "FORBIDDEN" - `message` (string, required) Example: "Forbidden" ## Response 404 fields (application/json): - `code` (number, required) Example: 404 - `timestamp` (string, required) Example: "2025-07-11T06:51:25.202Z" - `path` (string, required) Example: "/api/v1/[route]..." - `method` (string, required) Example: "GET" - `error` (string, required) Example: "NOT_FOUND" - `message` (string, required) Example: "Cannot GET /api/v1" ## Response 409 fields (application/json): - `code` (number, required) Example: 409 - `timestamp` (string, required) Example: "2025-07-11T06:51:25.202Z" - `path` (string, required) Example: "/api/v1/[route]..." - `method` (string, required) Example: "GET" - `error` (string, required) Example: "CONFLICT" - `message` (string, required) Example: "Conflict" ## Response 5XX fields (application/json): - `code` (number, required) Example: 503 - `timestamp` (string, required) Example: "2025-07-11T06:51:25.202Z" - `path` (string, required) Example: "/api/v1/[route]..." - `method` (string, required) Example: "GET" - `error` (string, required) Example: "INTERNAL_SERVER_ERROR" - `message` (string, required) Example: "Internal Server Error"