User & Profile
Manage user profiles, update preferences, change passwords, and handle account deletion. Profile data is stored with PII isolation — sensitive fields are vault references.
/api/v1/usersEndpoints
GET
/api/v1/users/meGet current user profile with masked PII
PATCH
/api/v1/users/meUpdate profile fields (name, preferences)
POST
/api/v1/users/me/change-passwordChange account password
DELETE
/api/v1/users/meDelete account and trigger GDPR erasure
Parameters
| Parameter | Type | Required | Description |
|---|---|---|---|
| display_name | string | Optional | User display name (max 100 chars) |
| notification_preferences | object | Optional | Email and push notification settings |
| current_password | string | Required | Required for password change |
| new_password | string | Required | New password (min 12 characters) |
Example
Request
http
PATCH /api/v1/users/me HTTP/1.1
Host: api.tpay365.com
Authorization: Bearer eyJhbGciOiJIUzI1NiIs...
Content-Type: application/json
{
"display_name": "Alice Smith",
"notification_preferences": {
"email": true,
"push": false
}
}Response
json
{
"id": "usr_8821-9920",
"display_name": "Alice Smith",
"email_masked": "al****@example.com",
"role": "employee",
"notification_preferences": {
"email": true,
"push": false
},
"updated_at": "2026-02-10T14:30:00Z"
}