# Get user details

Endpoint: GET /v1/domains/{domainId}/users/{userId}
Security: httpAuth

## Path parameters:

  - `domainId` (string, required)
    Unique identifier for the domain.

  - `userId` (string, required)

## Response 200 fields (application/json):

  - `data` (object, required)

  - `data.id` (string, required)

  - `data.domainId` (string, required)

  - `data.alias` (string, required)

  - `data.publicKey` (string, required)

  - `data.roles` (array, required)

  - `data.lock` (string, required)
    Enum: "Unlocked", "Locked", "Archived"

  - `data.metadata` (object, required)

  - `data.metadata.description` (string)

  - `data.metadata.revision` (integer, required)

  - `data.metadata.createdAt` (string, required)

  - `data.metadata.createdBy` (object)

  - `data.metadata.createdBy.id` (string, required)

  - `data.metadata.createdBy.domainId` (string, required)

  - `data.metadata.lastModifiedAt` (string, required)

  - `data.metadata.lastModifiedBy` (object)

  - `data.metadata.customProperties` (object, required)

  - `data.loginIds` (array)
    Domain-unique loginId-loginProviderId pairs. Must be specified for login and match pre-configured values.

  - `data.loginIds.id` (string, required)
    User identifier used by the provider.

  - `data.loginIds.providerId` (string, required)
    Login provider. For internal login, set to harmonize. For external identity providers, must match the provider name.

  - `signature` (string, required)

## Response 401 fields (application/json):

  - `reason` (string, required)

  - `message` (string)


