Organizations API reference
The Organizations API is used to list, show, create, update, and destroy organizations.
List Organizations
GET /organizations
Status | Response | Reason |
---|---|---|
200 | JSON API document (type: "organizations" ) | The request was successful |
404 | JSON API error object | Organization not found or user unauthorized to perform action |
Query Parameters
This endpoint supports pagination with standard URL query parameters. Remember to percent-encode [
as %5B
and ]
as %5D
if your tooling doesn't automatically encode URLs.
Currently, this endpoint returns a full, unpaginated list of organizations (without pagination metadata) if both of the pagination query parameters are omitted. To avoid inconsistent behavior, we recommend always supplying pagination parameters when building against this API.
Parameter | Description |
---|---|
q | Optional. A search query string. Organizations are searchable by name and notification email. This query takes precedence over the attribute specific searches q[email] or q[name] . |
q[email] | Optional. A search query string. This query searches organizations by notification email. If used with q[name] , it returns organizations that match both queries. |
q[name] | Optional. A search query string. This query searches organizations by name. If used with q[email] , it returns organizations that match both queries. |
page[number] | Optional. Defaults to the first page, if omitted when page[size] is provided. |
page[size] | Optional. Defaults to 20 organizations per page, if omitted when page[number] is provided. |
Sample Request
Sample Response
Note: Only HCP Terraform organizations return the two-factor-conformant
and assessments-enforced
properties.
Show an Organization
GET /organizations/:organization_name
Parameter | Description |
---|---|
:organization_name | The name of the organization to show |
Status | Response | Reason |
---|---|---|
200 | JSON API document (type: "organizations" ) | The request was successful |
404 | JSON API error object | Organization not found or user unauthorized to perform action |
Sample Request
Sample Response
Note: Only HCP Terraform organizations return the two-factor-conformant
and assessments-enforced
properties.
Create an Organization
POST /organizations
Status | Response | Reason |
---|---|---|
201 | JSON API document (type: "organizations" ) | The organization was successfully created |
404 | JSON API error object | Organization not found or user unauthorized to perform action |
422 | JSON API error object | Malformed request body (missing attributes, wrong types, etc.) |
Request Body
This POST endpoint requires a JSON object with the following properties as a request payload.
Properties without a default value are required.
Key path | Type | Default | Description |
---|---|---|---|
data.type | string | Must be "organizations" | |
data.attributes.name | string | Name of the organization | |
data.attributes.email | string | Admin email address | |
data.attributes.session-timeout | integer | 20160 | Session timeout after inactivity (minutes) |
data.attributes.session-remember | integer | 20160 | Session expiration (minutes) |
data.attributes.collaborator-auth-policy | string | password | Authentication policy (password or two_factor_mandatory ) |
data.attributes.cost-estimation-enabled | boolean | false | Whether or not the cost estimation feature is enabled for all workspaces in the organization. Defaults to false. In Terraform Enterprise, you must also enable cost estimation in Site Administration. |
data.attributes.send-passing-statuses-for-untriggered-speculative-plans | boolean | false | Whether or not to send VCS status updates for untriggered speculative plans. This can be useful if large numbers of untriggered workspaces are exhausting request limits for connected version control service providers like GitHub. Defaults to false. In Terraform Enterprise, this setting is always false and cannot be changed but is also available in Site Administration. |
data.attributes.aggregated-commit-status-enabled | boolean | true | Whether or not to aggregate VCS status updates for triggered workspaces. This is useful for monorepo projects with configuration spanning many workspaces. Defaults to true . You cannot use this option if send-passing-statuses-for-untriggered-speculative-plans is set to true . |
data.attributes.speculative-plan-management-enabled | boolean | true | Whether or not to enable Automatically cancel plan-only runs. Defaults to true . |
data.attributes.owners-team-saml-role-id | string | (nothing) | Optional. SAML only The name of the "owners" team |
data.attributes.assessments-enforced | boolean | (false) | Whether or not to compel health assessments for all eligible workspaces. When true, health assessments occur on all compatible workspaces, regardless of the value of the workspace setting assessments-enabled . When false, health assessments only occur for workspaces that opt in by setting assessments-enabled: true . |
data.attributes.allow-force-delete-workspaces | boolean | (false) | Whether workspace administrators can delete workspaces with resources under management. If false, only organization owners may delete these workspaces. |
data.attributes.default-execution-mode | boolean | remote | Which execution mode to use by default. Valid values are remote , local , and agent . |
data.attributes.default-agent-pool-id | string | (previous value) | Required when default-execution-mode is set to agent . The ID of the agent pool belonging to the organization. Do not specify this value if you set execution-mode to remote or local . |
Sample Payload
Sample Request
Sample Response
Note: Only HCP Terraform organizations return the two-factor-conformant
and assessments-enforced
properties.
Update an Organization
PATCH /organizations/:organization_name
Parameter | Description |
---|---|
:organization_name | The name of the organization to update |
Status | Response | Reason |
---|---|---|
200 | JSON API document (type: "organizations" ) | The organization was successfully updated |
404 | JSON API error object | Organization not found or user unauthorized to perform action |
422 | JSON API error object | Malformed request body (missing attributes, wrong types, etc.) |
Request Body
This PATCH endpoint requires a JSON object with the following properties as a request payload.
Key path | Type | Default | Description |
---|---|---|---|
data.type | string | Must be "organizations" | |
data.attributes.name | string | Name of the organization | |
data.attributes.email | string | Admin email address | |
data.attributes.session-timeout | integer | 20160 | Session timeout after inactivity (minutes) |
data.attributes.session-remember | integer | 20160 | Session expiration (minutes) |
data.attributes.collaborator-auth-policy | string | password | Authentication policy (password or two_factor_mandatory ) |
data.attributes.cost-estimation-enabled | boolean | false | Whether or not the cost estimation feature is enabled for all workspaces in the organization. Defaults to false. In Terraform Enterprise, you must also enable cost estimation in Site Administration. |
data.attributes.send-passing-statuses-for-untriggered-speculative-plans | boolean | false | Whether or not to send VCS status updates for untriggered speculative plans. This can be useful if large numbers of untriggered workspaces are exhausting request limits for connected version control service providers like GitHub. Defaults to false. In Terraform Enterprise, this setting is always false and cannot be changed but is also available in Site Administration. |
data.attributes.aggregated-commit-status-enabled | boolean | true | Whether or not to aggregate VCS status updates for triggered workspaces. This is useful for monorepo projects with configuration spanning many workspaces. Defaults to true . You cannot use this option if send-passing-statuses-for-untriggered-speculative-plans is set to true . |
data.attributes.speculative-plan-management-enabled | boolean | true | Whether or not to enable Automatically cancel plan-only runs. Defaults to true . |
data.attributes.owners-team-saml-role-id | string | (nothing) | Optional. SAML only The name of the "owners" team |
data.attributes.assessments-enforced | boolean | false | Whether or not to compel health assessments for all eligible workspaces. When true, health assessments occur on all compatible workspaces, regardless of the value of the workspace setting assessments-enabled . When false, health assessments only occur for workspaces that opt in by setting assessments-enabled: true . |
data.attributes.allow-force-delete-workspaces | boolean | false | Whether workspace administrators can delete workspaces with resources under management. If false, only organization owners may delete these workspaces. |
data.attributes.default-execution-mode | boolean | remote | Which execution mode to use by default. Valid values are remote , local , and agent . |
data.attributes.default-agent-pool-id | string | (previous value) | Required when default-execution-mode is set to agent . The ID of the agent pool belonging to the organization. Do not specify this value if you set execution-mode to remote or local . |
Sample Payload
Sample Request
Sample Response
Note: The two-factor-conformant
and assessments-enforced
properties are only returned from HCP Terraform organizations.
Destroy an Organization
DELETE /organizations/:organization_name
Parameter | Description |
---|---|
:organization_name | The name of the organization to destroy |
Status | Response | Reason |
---|---|---|
204 | The organization was successfully destroyed | |
404 | JSON API error object | Organization not found or user unauthorized to perform action |
Sample Request
Sample Response
The response body will be empty if successful.
Show the Entitlement Set
This endpoint shows the entitlements for an organization.
GET /organizations/:organization_name/entitlement-set
Parameter | Description |
---|---|
:organization_name | The name of the organization's entitlement set to view |
Status | Response | Reason |
---|---|---|
200 | JSON API document (type: "entitlement-sets" ) | The request was successful |
404 | JSON API error object | Organization not found or user unauthorized to perform action |
Sample Request
Sample Response
Show Module Producers
This endpoint is exclusive to Terraform Enterprise, and not available in HCP Terraform.
This endpoint shows organizations that are configured to share modules with an organization through Module Sharing.
GET /organizations/:organization_name/relationships/module-producers
Parameter | Description |
---|---|
:organization_name | The name of the organization's module producers to view |
Status | Response | Reason |
---|---|---|
200 | JSON API document (type: "organizations" ) | The request was successful |
404 | JSON API error object | Organization not found or user unauthorized to perform action |
Query Parameters
This endpoint supports pagination with standard URL query parameters. Remember to percent-encode [
as %5B
and ]
as %5D
if your tooling doesn't automatically encode URLs.
Parameter | Description |
---|---|
page[number] | Optional. If omitted, the endpoint will return the first page. |
page[size] | Optional. If omitted, the endpoint will return 20 module producers per page. |
Sample Request
Sample Response
Show data retention policy
This endpoint is exclusive to Terraform Enterprise and is not available in HCP Terraform.
GET /organizations/:organization_name/relationships/data-retention-policy
Parameter | Description |
---|---|
:organization_name | The name of the organization to show the data retention policy for. |
This endpoint shows the data retention policy set explicitly on the organization.
When no data retention policy is set for the organization, the endpoint returns the default policy configured for the Terraform Enterprise installation. Read more about organization data retention policies.
For additional information, refer to Data Retention Policy Types in the Terraform Enterprise documentation.
Create or update data retention policy
This endpoint is exclusive to Terraform Enterprise and is not available in HCP Terraform.
POST /organizations/:organization_name/relationships/data-retention-policy
Parameter | Description |
---|---|
:organization_name | The name of the organization to update the data retention policy for. |
This endpoint creates a data retention policy for an organization or updates the existing policy.
Read more about organization data retention policies.
Refer to Data Retention Policy API in the Terraform Enterprise documentation for details.
Remove data retention policy
This endpoint is exclusive to Terraform Enterprise and is not available in HCP Terraform.
DELETE /organizations/:organization_name/relationships/data-retention-policy
Parameter | Description |
---|---|
:organization_name | The name of the organization to remove the data retention policy for. |
This endpoint removes the data retention policy explicitly set on an organization. When the data retention policy is deleted, the organization inherits the default policy configured for the Terraform Enterprise installation. Refer to Data Retention Policies for additional information.
Refer to Data Retention Policies for information about configuring data retention policies for an organization.
Refer to Data Retention Policy API in the Terraform Enterprise documentation for details.
Available Related Resources
The GET endpoints above can optionally return related resources, if requested with the include
query parameter. The following resource types are available:
Resource Name | Description |
---|---|
entitlement_set | The entitlement set that determines which HCP Terraform features the organization can use. |
Relationships
The following relationships may be present in various responses.
Resource Name | Description |
---|---|
module-producers | Other organizations configured to share modules with the organization. |
oauth-tokens | OAuth tokens associated with VCS configurations for the organization. |
authentication-token | The API token for an organization. |
entitlement-set | The entitlement set that determines which HCP Terraform features the organization can use. |
subscription | The current subscription for an organization. |
default-agent-pool | An organization's default agent pool. Set this value if your default-execution-mode is agent . |
data-retention-policy | Enterprise Specifies an organization's data retention policy. Refer to Data Retention Policy APIs in the Terraform Enterprise documentation for more details. |