Workspace Management Create, configure, and manage workspaces within organizations. Control members, assets, shares, and AI intelligence settings.

Base URL: https://api.fast.io/current/ Auth: Bearer {jwt_token} IDs: 19-digit numeric strings

Workspaces are shared project spaces within an organization. They support file versioning, search, AI chat, and member management. Most workspace endpoints also accept the workspace's folder_name (e.g., my-project) in place of the numeric ID.

Endpoint Summary

Workspace CRUD

MethodEndpointDescription
POST/current/org/{org_id}/create/workspace/Create a workspace
GET/current/workspace/{workspace_id}/details/Get workspace details
POST/current/workspace/{workspace_id}/update/Update workspace settings
DELETE/current/workspace/{workspace_id}/delete/Delete (close) a workspace
POST/current/workspace/{workspace_id}/archive/Archive a workspace
POST/current/workspace/{workspace_id}/unarchive/Unarchive a workspace

Assets

MethodEndpointDescription
GET/current/workspace/assets/List available asset types
GET/current/workspace/{workspace_id}/assets/List workspace assets
POST/current/workspace/{workspace_id}/assets/{asset_name}/Upload/set asset
DELETE/current/workspace/{workspace_id}/assets/{asset_name}/Delete asset
GET/current/workspace/{workspace_id}/assets/{asset_name}/read/Download asset binary
GET/current/workspace/{workspace_id}/assets/{asset_name}/read/Get asset metadata headers (HEAD)

Members

MethodEndpointDescription
POST/current/workspace/{workspace_id}/members/{email_or_user_id}/Add member or send invitation
DELETE/current/workspace/{workspace_id}/members/{user_id}/Remove a member
GET/current/workspace/{workspace_id}/members/list/List all members
POST/current/workspace/{workspace_id}/members/join/Self-join by org membership
POST/current/workspace/{workspace_id}/members/join/{invitation_key}/{action}/Join via invitation
DELETE/current/workspace/{workspace_id}/member/Leave workspace (self)
GET/current/workspace/{workspace_id}/member/{member_id}/details/Get member details
POST/current/workspace/{workspace_id}/member/{member_id}/update/Update member role
POST/current/workspace/{workspace_id}/member/{member_id}/transfer_ownership/Transfer ownership

Invitations

MethodEndpointDescription
GET/current/workspace/{workspace_id}/members/invitations/list/List all invitations
GET/current/workspace/{workspace_id}/members/invitations/list/{state}/List invitations by state
POST/current/workspace/{workspace_id}/members/invitation/{invitation_id}/Update an invitation
DELETE/current/workspace/{workspace_id}/members/invitation/{invitation_id}/Delete an invitation

Shares (in workspace context)

MethodEndpointDescription
POST/current/workspace/{workspace_id}/create/share/Create a share
GET/current/workspace/{workspace_id}/list/shares/List shares
POST/current/workspace/{workspace_id}/import/share/{share_id}/Import a user-owned share

File Shares (durable single-file links)

MethodEndpointDescription
POST/current/workspace/{workspace_id}/create/fileshare/Create a File Share bound to a file node
GET/current/workspace/{workspace_id}/list/fileshares/List the workspace's File Shares
POST / PATCH/current/fileshare/{fileshare_id}/update/Update title / access tier / password
DELETE/current/fileshare/{fileshare_id}/delete/Delete a File Share
GET / POST / DELETE/current/fileshare/{fileshare_id}/grants/List, grant, or revoke per-user capabilities

Cloud Import

MethodEndpointDescription
POST/current/workspace/{workspace_id}/cloud-import/enable/Enable cloud import
POST/current/workspace/{workspace_id}/cloud-import/disable/Disable cloud import

Workflow

MethodEndpointDescription
POST/current/workspace/{workspace_id}/workflow/enable/Enable workflow features
POST/current/workspace/{workspace_id}/workflow/disable/Disable workflow features

Task Lists (Workflow)

MethodEndpointDescription
GET/current/workspace/{workspace_id}/tasks/List task lists
POST/current/workspace/{workspace_id}/tasks/create/Create a task list
POST/current/workspace/{workspace_id}/tasks/reorder/Reorder task lists

Discovery

MethodEndpointDescription
GET/current/workspaces/all/List all accessible workspaces
GET/current/workspaces/available/List joinable workspaces
GET/current/workspaces/check/name/{name}/Check folder name availability
GET/current/org/{org_id}/list/workspaces/List workspaces in an org

Compact Responses (output=)

Every endpoint that returns one or more workspace objects (details, list, discovery) accepts an optional output query parameter that selects the response shape. A single detail-level token may be combined with modifier tokens; specifying two detail levels (e.g. ?output=terse,standard) returns HTTP 400. When output= is omitted, responses are full and byte-for-byte unchanged.

LevelFields returned on each workspace (cumulative)
terseid, name, folder_name, org_domain, user_status
standardterse + description, workspace_level, closed, archived, locked (admin-only), storage, created, updated, logo, accent_color, intelligence, workflow, capabilities
fullstandard + cloud_import, comments, chat, search, assets, workflow_permissions, remaining branding, perm_* blocks, platform, suspended, owner_defined, parents

Use terse for workspace switchers, autocomplete, and org-scoped navigation — it carries the identifier, display name, folder slug, parent org domain, and user_status so the two-column "Joined vs. Available" workspace list can render and the join button can enable/disable without a follow-up fetch. Use standard for workspace list views and the summary area of workspace detail pages — it adds lifecycle flags (including the locked admin-only chip), storage usage, timestamps, description, the workspace's visual identity (logo, accent_color), plus the intelligence/workflow feature toggles and the plan-gate capabilities bundle so list rows can differentiate "enabled but plan-locked" from "usable." Use full (or omit the parameter) for the workspace settings screen, branding editors, and any workflow that reads permission matrices or remaining feature blocks (comments, chat, search, assets, workflow_permissions). Unknown tokens are silently ignored. Add the markdown modifier (e.g. ?output=standard,markdown) to receive the response as GitHub-flavored Markdown (Content-Type: text/markdown; charset=UTF-8) instead of JSON — see the cross-cutting ?output= reference for the full contract.

Field Constraints

FieldConstraint
folder_nameRegex ^[\p{L}\p{N}-]+$ (letters, numbers, hyphens). Must be globally unique.
name2–100 characters, string
description10–1000 characters, string (optional)
title (shares)2–80 characters
custom_name (shares)10–100 characters, URL-friendly

Permission Values

perm_join — who can self-join from the parent org

ValueDescription
'Member or above'Any org member can join (default)
'Admin or above'Only org admins and owners
'Only Org Owners'Only org owners

perm_member_manage — who can manage workspace members

ValueDescription
'Member or above'Any workspace member can manage (default)
'Admin or above'Only workspace admins and owners

Permission Levels (numeric hierarchy)

LevelNumericDescription
Owner1000Full control; one per workspace
Admin500Administrative access
Member100Standard member
Guest50Limited guest access
View20Read-only access

Intelligence Setting

The intelligence boolean on a workspace controls whether uploaded files are automatically indexed for RAG (retrieval-augmented generation).

Summary Enrichment Setting

Workflow obligations carry a deterministic, no-AI display_summary. A workspace can additionally opt in to AI summary enrichment, which augments an obligation's display with an LLM-derived structured-extraction object (nl_enrichment) when an extraction schema is configured on the workflow. The enrichment is off by default and is governed by two workspace settings:

Both settings are Admin-or-Owner only. They are returned on GET /current/workspace/{id}/details/ and set on POST /current/workspace/{id}/update/. The enrichment itself is surfaced on the obligation read surface as a separate top-level nl_enrichment object — see the Workflow reference for its shape and trust class.

Workspace CRUD

Create Workspace

POST /current/org/{org_id}/create/workspace/

Creates a new workspace within an organization. The authenticated user becomes the workspace owner.

Auth: JWT required. Org membership (Member or above) required.

Path Parameters

ParameterTypeRequiredDescription
{org_id}stringYes19-digit numeric organization ID

Request Parameters

NameTypeRequiredConstraintsDescription
folder_namestringYesRegex ^[\p{L}\p{N}-]+$, globally uniqueURL-safe identifier used in workspace URLs
namestringYes2–100 chars, non-blankDisplay name
perm_joinstringYesSee Permission ValuesWho can self-join from the org
perm_member_managestringYesSee Permission ValuesWho can manage workspace members
intelligencestringYes (auto-set for agents on plans with ai_agent)"true" or "false"Enable AI indexing. Defaults to "true" for agent accounts only on plans that include the ai_agent feature; otherwise the default is "false". Setting "true" requires both content_ai and ai_agent.
descriptionstring10–1000 charsWorkspace description
accent_colorstring (JSON)Valid JSONAccent color styling
background_color1string (JSON)Valid JSONBackground color 1 styling
background_color2string (JSON)Valid JSONBackground color 2 styling

Implicit defaults on create: A new workspace comes with workflow_approval_native_enabled = "extended" by default (in-place approval + external reviewers available out of the box). This is not a create parameter — you cannot set it on this endpoint. To change the tier after creation, use the update endpoint (POST /current/workspace/{workspace_id}/update/); see the Update Workspace section.

Example

curl -X POST "https://api.fast.io/current/org/1000000000000000001/create/workspace/" \
  -H "Authorization: Bearer {jwt_token}" \
  -d "folder_name=engineering" \
  -d "name=Engineering Team" \
  -d "description=Main engineering workspace for the team" \
  -d "perm_join=Member or above" \
  -d "perm_member_manage=Admin or above" \
  -d "intelligence=true"

Response (200 OK)

{
  "result": true,
  "workspace": {
    "id": "1234567890123456789",
    "folder_name": "engineering"
  }
}

Response Fields

FieldTypeDescription
response.workspace.idstring19-digit numeric workspace profile ID
response.workspace.folder_namestringThe URL-safe folder name that was set

Access Levels

RoleAccess
Org OwnerCan create workspaces
Org AdminCan create workspaces
Org MemberCan create workspaces

Error Responses

Error CodeHTTP StatusMessageCause
1685 (Feature Limit)403Workspace creation is not available on your current plan.Feature disabled on billing plan
1685 (Feature Limit)403You have reached your workspace creation limit.Workspace count limit exceeded
1658 (Not Acceptable)406The supplied workspace folder name is already in use.Duplicate folder_name
1605 (Invalid Input)400An invalid workspace folder name was supplied.Invalid folder_name format
1605 (Invalid Input)400An invalid configuration was supplied...Metadata validation failure
1663 (Update Failed)500There was an internal error processing your create request.Internal failure

Get Workspace Details

GET /current/workspace/{workspace_id}/details/

Returns full workspace details including settings, permissions, owner, intelligence state, and branding.

Auth: JWT required. Workspace membership required (View or above).

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID or folder_name

Example

curl -X GET "https://api.fast.io/current/workspace/1234567890123456789/details/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "workspace": {
    "id": "1234567890123456789",
    "name": "Engineering Team",
    "folder_name": "engineering",
    "description": "Main engineering workspace",
    "accent_color": "#0066CC",
    "logo": "https://assets.fast.io/1234567890123456789/logo.png",
    "closed": false,
    "archived": false,
    "perm_join": "Member or above",
    "perm_member_manage": "Admin or above",
    "created": "2023-01-15 10:30:00 UTC",
    "updated": "2024-01-20 14:45:00 UTC",
    "user_status": "joined",
    "org_domain": "acme-corp",
    "nl_summaries_enabled": true,
    "nl_summaries_daily_cap": 100
  }
}

Response Fields

FieldTypeDescription
response.workspace.idstring19-digit workspace profile ID
response.workspace.namestringDisplay name
response.workspace.folder_namestringURL-safe folder identifier
response.workspace.descriptionstring or nullWorkspace description
response.workspace.accent_colorstring or nullBrand accent color
response.workspace.logostring or nullLogo asset URL
response.workspace.closedbooleanWhether workspace is closed (soft-deleted)
response.workspace.archivedbooleanWhether workspace is archived
response.workspace.perm_joinstringWho can join
response.workspace.perm_member_managestringWho can manage members
response.workspace.createdstringCreation timestamp
response.workspace.updatedstringLast update timestamp
response.workspace.user_statusstringCurrent user's membership status ("joined", "invited", "available")
response.workspace.org_domainstringParent organization domain
response.workspace.nl_summaries_enabledbooleanWhether AI summary enrichment of workflow obligations is enabled (default true). See Summary Enrichment Setting
response.workspace.nl_summaries_daily_capintegerPer-day ceiling on AI enrichment operations (default 100)

Access Levels

RoleFields Returned
OwnerAll fields including intelligence, storage, platform details
AdminAll fields including intelligence, storage, platform details
MemberCore workspace fields
ViewBasic workspace information

Error Responses

Error CodeHTTP StatusMessageCause
1650 (Authentication Invalid)401Authentication requiredMissing or invalid JWT
1609 (Not Found)404Workspace not foundInvalid ID or no access

Update Workspace

POST /current/workspace/{workspace_id}/update/

Updates workspace configuration. All fields are optional; only provided fields are updated.

Auth: JWT required. Admin or Owner required.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID

Request Parameters (all optional)

NameTypeConstraintsDescription
folder_namestringRegex ^[\p{L}\p{N}-]+$, uniqueURL-safe identifier
namestring2–100 chars. Send "null" to clear.Display name
descriptionstring10–1000 chars. Send "null" or "" to clear.Description
perm_joinstringSee Permission ValuesWho can self-join
perm_member_managestringSee Permission ValuesWho can manage members
intelligencestring"true" or "false". Can be toggled. Setting to "true" requires both content_ai and ai_agent plan features. Disabling flushes embeddings; re-enabling re-indexes (costs AI credits).AI indexing toggle
nl_summaries_enabledstring"true" or "false". Enables AI summary enrichment of workflow obligations (default true). See Summary Enrichment Setting.AI obligation-summary enrichment toggle
nl_summaries_daily_capinteger0100000 (default 100). Per-day ceiling on AI enrichment operations; 0 disables enrichment without flipping the master switch.AI enrichment daily cap
workflow_approval_native_enabledstring"disabled", "mvs", or "extended". Newly created workspaces default to "extended" (in-place approval + external reviewers available out of the box). Send "null" or "" to clear (unset resolves to disabled).Native workflow-review rollout tier — gates the review-surface endpoints (see the Workflow reference)
accent_colorstring (JSON)Valid JSON. Send "null" to clear.Accent color
background_color1string (JSON)Valid JSON. Send "null" to clear.Background color 1
background_color2string (JSON)Valid JSON. Send "null" to clear.Background color 2
owner_definedstring (JSON)Valid JSON. Send "null" or "" to clear.Custom owner-defined properties

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/update/" \
  -H "Authorization: Bearer {jwt_token}" \
  -d "name=Updated Workspace Name" \
  -d "description=New description for the workspace" \
  -d "perm_join=Admin or above"

Response (200 OK)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Permission deniedUser is not admin or owner
1605 (Invalid Input)400An invalid workspace folder name was supplied.Invalid folder_name
1658 (Not Acceptable)406The supplied workspace folder name is already in use.Duplicate folder_name
1605 (Invalid Input)400Intelligence toggle is temporarily restricted...Intelligence toggle rate-limited or restricted by time window
1605 (Invalid Input)400Intelligence requires a plan with agentic AI support.Plan missing content_ai or ai_agent (cannot set intelligence=true)
1605 (Invalid Input)400An invalid configuration was supplied...Metadata validation failure
1663 (Update Failed)500There was an internal error processing your update request.Internal failure

If no fields have changed, returns 200 OK without making changes. JSON fields are decoded server-side; send valid JSON strings.


Delete Workspace

DELETE /current/workspace/{workspace_id}/delete/?confirm={folder_name_or_id}

Permanently close (soft-delete) a workspace. Enters a retention period before final purge.

Auth: JWT required. Owner only. 2FA required.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID

Query Parameters

ParameterTypeRequiredDescription
confirmstringYesMust match the workspace's folder_name (case-insensitive) or numeric id. Safety confirmation.

Example

curl -X DELETE "https://api.fast.io/current/workspace/1234567890123456789/delete/?confirm=engineering" \
  -H "Authorization: Bearer {jwt_token}"

Response (202 Accepted)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Permission deniedUser is not the workspace owner
130670406The confirm field is required. Pass the workspace's folder name or numeric id as the confirm query parameter.confirm query parameter was not provided
10563406The confirm field provided does not match the workspace's folder name or id.Confirmation does not match folder name or ID
1663 (Update Failed)500There was an internal error processing your request.Internal failure

Archive Workspace

POST /current/workspace/{workspace_id}/archive/

Archives a workspace. Archived workspaces are hidden from default listings.

Auth: JWT required. Admin or Owner required. 2FA required.

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/archive/" \
  -H "Authorization: Bearer {jwt_token}"

Response (202 Accepted)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Permission deniedNot admin or owner
1663 (Update Failed)400The workspace is already archived.Already archived

Unarchive Workspace

POST /current/workspace/{workspace_id}/unarchive/

Restores an archived workspace to active status.

Auth: JWT required. Admin or Owner required. 2FA required.

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/unarchive/" \
  -H "Authorization: Bearer {jwt_token}"

Response (202 Accepted)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Permission deniedNot admin or owner
1663 (Update Failed)400The workspace is not archived. It cannot be unarchived.Not currently archived

Workspace Assets

List Available Asset Types

GET /current/workspace/assets/

Returns available workspace asset metadata types (e.g., logo).

Auth: JWT required.

Example

curl -X GET "https://api.fast.io/current/workspace/assets/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "assets": [
    {
      "name": "logo",
      "type": "image",
      "max_size": 5242880,
      "accepted_formats": ["image/png", "image/jpeg", "image/svg+xml"]
    }
  ]
}

List Workspace Assets

GET /current/workspace/{workspace_id}/assets/

Returns assets currently set on the workspace.

Auth: JWT required. Owner only. 2FA required.

Example

curl -X GET "https://api.fast.io/current/workspace/1234567890123456789/assets/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "assets": {
    "logo": {
      "url": "https://assets.fast.io/1234567890123456789/logo.png",
      "size": 102400,
      "content_type": "image/png"
    }
  }
}

Upload/Set Workspace Asset

POST /current/workspace/{workspace_id}/assets/{asset_name}/

Upload or replace an asset. Sent as multipart/form-data.

Auth: JWT required. Admin or Owner required.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID
{asset_name}stringYesName of the asset (e.g., logo)

Request Body (multipart/form-data)

FieldTypeRequiredDescription
filefileYesThe asset file to upload
metadatastring (JSON array)Optional metadata for the asset

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/assets/logo/" \
  -H "Authorization: Bearer {jwt_token}" \
  -F "file=@/path/to/logo.png" \
  -F "metadata={}"

Response (200 OK)

{
  "result": true,
  "asset": {
    "name": "logo",
    "url": "https://assets.fast.io/1234567890123456789/logo.png"
  }
}

Error Responses

Error CodeHTTP StatusMessageCause
1604 (File Missing)400Asset upload missingNo file in request
1605 (Invalid Input)400metadata invalidInvalid metadata format

Delete Workspace Asset

DELETE /current/workspace/{workspace_id}/assets/{asset_name}/

Delete a specific asset from a workspace.

Auth: JWT required. Admin or Owner required.

Example

curl -X DELETE "https://api.fast.io/current/workspace/1234567890123456789/assets/logo/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true
}

Read Asset Binary

GET / HEAD /current/workspace/{workspace_id}/assets/{asset_name}/read/

GET returns raw binary data. HEAD returns metadata headers only (Content-Type, Content-Length).

Auth: JWT required. Any workspace member. 2FA required.

Example

# Download asset
curl -X GET "https://api.fast.io/current/workspace/1234567890123456789/assets/logo/read/" \
  -H "Authorization: Bearer {jwt_token}" \
  --output logo.png

# Get metadata headers only
curl -I "https://api.fast.io/current/workspace/1234567890123456789/assets/logo/read/" \
  -H "Authorization: Bearer {jwt_token}"

Response: Raw binary content with appropriate Content-Type header (not JSON).

Workspace Members

Add or Invite a Member

POST /current/workspace/{workspace_id}/members/{email_or_user_id}/

Add an existing user directly by user ID, or send an invitation by email address.

Auth: JWT required. Permission depends on workspace perm_member_manage setting.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID
{email_or_user_id}stringYes19-digit user ID (direct add) or email address (invitation)

Request Parameters (adding by user ID)

NameTypeRequiredDescription
permissionsstring"admin", "member", or "guest". Cannot be "owner".
notificationsstringNotification preference
expiresstringMembership expiration (YYYY-MM-DD HH:MM:SS UTC)
force_notificationbooleanForce notification email to existing user

Request Parameters (inviting by email)

NameTypeRequiredDescription
permissionsstring"admin", "member", or "guest". Cannot be "owner".
messagestringCustom message in invitation email
invitation_expiresstringInvitation expiration (YYYY-MM-DD HH:MM:SS UTC)

Examples

# Add existing user by ID
curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/members/9876543210987654321/" \
  -H "Authorization: Bearer {jwt_token}" \
  -d "permissions=member"

# Invite by email
curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/members/newuser@example.com/" \
  -H "Authorization: Bearer {jwt_token}" \
  -d "permissions=member" \
  -d "message=Welcome to the project!"

Response — Direct Add (200 OK)

{
  "result": true
}

Response — Invitation Sent (200 OK)

{
  "result": true,
  "invitation": {
    "id": "1234567890123456789",
    "inviter": "John Doe",
    "invitee_email": "newuser@example.com",
    "entity_type": "workspace",
    "state": "pending",
    "created": "2025-01-15 10:30:00 UTC",
    "expires": "2025-02-15 10:30:00 UTC"
  }
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Cannot Add As Owner)400Adding a member as an owner is not allowedAttempted owner-level permission
1656 (Limit Exceeded)400VariesWorkspace or org member limit reached
1680 (Access Denied)403Insufficient org permissions to invite to this workspace.Lacks org-level permission
1680 (Access Denied)403Insufficient permissionsBelow workspace perm_member_manage level

Adding a user to a workspace may also auto-add them to the parent organization if the workspace is configured for automatic org membership.


Remove a Member

DELETE /current/workspace/{workspace_id}/members/{user_id}/

Removes a member from the workspace. Cannot remove the workspace owner.

Auth: JWT required. Permission depends on perm_member_manage.

Example

curl -X DELETE "https://api.fast.io/current/workspace/1234567890123456789/members/9876543210987654321/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400Cannot remove the ownerAttempted to remove workspace owner
1680 (Access Denied)403Insufficient permissionsBelow required permission level

Removing a member cascades removal into all shares within the workspace.


List Workspace Members

GET /current/workspace/{workspace_id}/members/list/

Lists all members with their permissions, notification preferences, and membership metadata.

Auth: JWT required. Any workspace member.

Example

curl -X GET "https://api.fast.io/current/workspace/1234567890123456789/members/list/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "users": [
    {
      "id": "1234567890123456789",
      "account_type": "human",
      "email_address": "owner@example.com",
      "first_name": "Alice",
      "last_name": "Johnson",
      "permissions": "owner",
      "status": "active",
      "invite": "accepted",
      "notify": "Email me",
      "expires": null
    },
    {
      "id": "9876543210987654321",
      "account_type": "agent",
      "email_address": "bot@example.com",
      "first_name": "Sync",
      "last_name": "Bot",
      "permissions": "member",
      "status": "active",
      "invite": "accepted",
      "notify": "Notify me in app",
      "expires": "2025-12-31 23:59:59 UTC"
    },
    {
      "id": "5566778899001122334",
      "account_type": "human",
      "email_address": "invited@example.com",
      "first_name": "invited@example.com",
      "last_name": "",
      "permissions": "member",
      "status": "pending",
      "invite": {
        "id": "5566778899001122334",
        "created": "2025-01-15 10:30:00 UTC",
        "expires": "2025-02-15 10:30:00 UTC"
      },
      "notify": "Notify me in app",
      "expires": null
    }
  ]
}

Response Fields

FieldTypeDescription
usersarrayArray of member objects
users[].idstring19-digit user profile ID
users[].account_typestring"human" or "agent"
users[].email_addressstringMember's email address
users[].first_namestringFirst name
users[].last_namestringLast name
users[].permissionsstringRole: "owner", "admin", "member", "guest"
users[].statusstring"active" for registered users, "pending" for invited users who have not yet signed up
users[].invitestring or object"accepted" for active members; object with id, created, expires for pending members
users[].notifystringNotification preference
users[].expiresstring or nullMembership expiration or null for permanent

Leave Workspace (Self)

DELETE /current/workspace/{workspace_id}/member/

Removes the authenticated user from the workspace. Owners cannot leave; they must transfer ownership first.

Auth: JWT required.

Example

curl -X DELETE "https://api.fast.io/current/workspace/1234567890123456789/member/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400You cannot leave a workspace you are the owner of, transfer ownership or close workspace.User is the owner
1605 (Invalid Input)400You cannot leave an workspace you are not a member of.Not a member

Get Member Details

GET /current/workspace/{workspace_id}/member/{member_id}/details/

Returns membership details for a specific user.

Auth: JWT required. Any workspace member.

Example

curl -X GET "https://api.fast.io/current/workspace/1234567890123456789/member/9876543210987654321/details/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "member": {
    "id": "9876543210987654321",
    "account_type": "human",
    "email_address": "user@example.com",
    "first_name": "Jane",
    "last_name": "Smith",
    "permissions": "member",
    "invite": "accepted",
    "notify": "Notify me in app",
    "expires": null
  }
}

Response Fields

FieldTypeDescription
member.idstring19-digit user profile ID
member.account_typestring"human" or "agent"
member.email_addressstringEmail address
member.first_namestringFirst name
member.last_namestringLast name
member.permissionsstringPermission level name
member.invitestringInvitation status
member.notifystringNotification preference
member.expiresstring or nullMembership expiration or null

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400The membership you specified does not exist.User is not a member

Update a Member

POST /current/workspace/{workspace_id}/member/{member_id}/update/

Updates a member's role, notification preferences, or expiration.

Auth: JWT required. Permission depends on perm_member_manage.

Request Parameters (all optional)

NameTypeDescription
permissionsstringNew role: "admin", "member", "guest"
notificationsstringNotification preference
expiresstringMembership expiration (YYYY-MM-DD HH:MM:SS UTC)

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/member/9876543210987654321/update/" \
  -H "Authorization: Bearer {jwt_token}" \
  -d "permissions=admin"

Response (200 OK)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400The membership you specified does not exist.Target is not a member
1680 (Access Denied)403Insufficient permissionsBelow required permission level

Users cannot escalate permissions beyond their own level.


Transfer Workspace Ownership

POST /current/workspace/{workspace_id}/member/{member_id}/transfer_ownership/

Transfers ownership to another member. Current owner is demoted to admin.

Auth: JWT required. Owner only.

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/member/9876543210987654321/transfer_ownership/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400You cannot transfer ownership to yourself.Target is self
1605 (Invalid Input)400The membership you specified does not exist.Target is not a workspace member
1605 (Invalid Input)400Member is already an owner.Target is already owner
1605 (Invalid Input)400The new owner must be a member of the parent organization.Target not in parent org
1663 (Update Failed)500Failed to update owner of the workspace.Internal failure
1680 (Access Denied)403Insufficient permissionsNot the workspace owner

Join Workspace

POST /current/workspace/{workspace_id}/members/join/

Self-join a workspace based on org membership. Subject to the workspace's perm_join setting.

Auth: JWT required.

Request Parameters

NameTypeRequiredDescription
notificationsstringNotification preference

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/members/join/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403You do not have the appropriate permissions to join this workspace.User's org role does not meet perm_join
1656 (Limit Exceeded)400VariesWorkspace member limit reached

Self-joining members are assigned the member role. Only notification preferences are accepted. Self-joined memberships do not expire.


Join Workspace via Invitation

POST /current/workspace/{workspace_id}/members/join/{invitation_key}/{action}/

Join or decline a workspace invitation.

Auth: JWT required.

Path Parameters

ParameterTypeRequiredDescription
{invitation_key}stringYesUnique invitation key
{action}string"accept" (default) or "decline"

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/members/join/abc123def456/accept/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1654 (Internal Error)500Failed to get invitation.Invalid or expired invitation key
1680 (Access Denied)403The inviter no longer has appropriate permissions...Inviter lost management permissions
1656 (Limit Exceeded)400VariesMember limit reached

The system validates the inviter still has sufficient permissions at acceptance time. Accepting may also auto-add the user to the parent organization.

Pending Members

When a user is invited to a workspace by email but does not yet have a Fastio account, they appear as a pending member in the member list. Pending members are placeholders that allow teams to pre-assign workflow items before the invitee signs up.

How pending members appear in responses:

Example Member List Entry (Pending)

{
  "id": "5566778899001122334",
  "account_type": "human",
  "email_address": "newuser@example.com",
  "first_name": "newuser@example.com",
  "last_name": "",
  "permissions": "member",
  "status": "pending",
  "invite": {
    "id": "5566778899001122334",
    "created": "2025-01-15 10:30:00 UTC",
    "expires": "2025-02-15 10:30:00 UTC"
  },
  "notify": "Notify me in app",
  "expires": null
}

Workflow assignments: Pending members can be assigned to tasks before they create an account. Their user ID is valid and works with all assignment endpoints.

Account claim: When the invited user signs up or accepts the invitation with an existing account, their status transitions from "pending" to "active". All existing workflow assignments (such as tasks) are preserved and transfer automatically.

Removal: To remove a pending member, delete their invitation using the invitation endpoints (see Workspace Invitations below). Deleting the invitation removes the pending member and unassigns any workflow items associated with them.

Notifications: Pending members do not receive in-app or email notifications until they claim their account.

Workspace Invitations

List Workspace Invitations

GET /current/workspace/{workspace_id}/members/invitations/list/

Returns all invitations for the workspace.

Auth: JWT required. Any workspace member.

Example

curl -X GET "https://api.fast.io/current/workspace/1234567890123456789/members/invitations/list/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "invitations": [
    {
      "id": "1234567890123456789",
      "inviter": "Alice Johnson",
      "invitee_email": "newuser@example.com",
      "invitee_uid": null,
      "accepted_uid": null,
      "entity_type": "workspace",
      "workspace": {
        "id": "9876543210987654321",
        "name": "Project Alpha"
      },
      "state": "pending",
      "created": "2025-01-15 10:30:00 UTC",
      "updated": "2025-01-15 10:30:00 UTC",
      "expires": "2025-02-15 10:30:00 UTC"
    }
  ]
}

Response Fields

FieldTypeDescription
invitationsarrayArray of invitation objects
invitations[].idstringInvitation ID
invitations[].inviterstringDisplay name of inviting user
invitations[].invitee_emailstringEmail the invitation was sent to
invitations[].invitee_uidstring or nullUser ID of invitee (if they exist in the system)
invitations[].accepted_uidstring or nullUser ID of acceptor (if accepted)
invitations[].entity_typestringAlways "workspace"
invitations[].workspaceobjectWorkspace details (id, name)
invitations[].statestring"pending", "accepted", "declined", "expired", "revoked"
invitations[].createdstringCreation timestamp
invitations[].updatedstringLast update timestamp
invitations[].expiresstring or nullExpiration timestamp

List Invitations by State

GET /current/workspace/{workspace_id}/members/invitations/list/{state}/

Filter invitations by state.

Auth: JWT required. Any workspace member.

Path Parameters

ParameterTypeRequiredDescription
{state}stringYes"pending", "accepted", "declined", "expired", "revoked"

Example

curl -X GET "https://api.fast.io/current/workspace/1234567890123456789/members/invitations/list/pending/" \
  -H "Authorization: Bearer {jwt_token}"

Response: Same format as List Workspace Invitations, filtered by state.

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400An invalid invitation state was supplied.Unrecognized state

Update an Invitation

POST /current/workspace/{workspace_id}/members/invitation/{invitation_id}/

Update an existing invitation. The {invitation_id} can be the numeric ID or the invitee's email address.

Auth: JWT required. Permission depends on perm_member_manage.

Request Parameters (all optional)

NameTypeDescription
statestringNew state: "pending", "accepted", "declined", "expired", "revoked"
permissionsstringUpdated permission level for membership
expiresstringUpdated membership expiration (YYYY-MM-DD HH:MM:SS UTC)

Examples

# Revoke by ID
curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/members/invitation/1111111111111111111/" \
  -H "Authorization: Bearer {jwt_token}" \
  -d "state=revoked"

# Update by email
curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/members/invitation/user@example.com/" \
  -H "Authorization: Bearer {jwt_token}" \
  -d "permissions=admin"

Response (200 OK)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400An invalid invitation ID or email was supplied.Malformed identifier
1605 (Invalid Input)400Invitation not found.No matching invitation
1605 (Invalid Input)400An invalid state was supplied.Unrecognized state
1679 (Update Failed)500Failed to update invitation.Internal failure
1680 (Access Denied)403Insufficient permissionsBelow required permission level

Delete an Invitation

DELETE /current/workspace/{workspace_id}/members/invitation/{invitation_id}/

Delete (revoke) an invitation. The {invitation_id} can be the numeric ID or the invitee's email.

Auth: JWT required. Permission depends on perm_member_manage.

Example

curl -X DELETE "https://api.fast.io/current/workspace/1234567890123456789/members/invitation/1111111111111111111/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400An invalid invitation ID or email was supplied.Malformed identifier
1605 (Invalid Input)400Invitation not found.No matching invitation
1666 (Delete Failed)500Failed to delete invitation.Internal failure
1680 (Access Denied)403Insufficient permissionsBelow required permission level

Creating Shares from Workspaces

Create Share

POST /current/workspace/{workspace_id}/create/share/

Create a new share within a workspace. Shares can use independent storage (isolated portal) or a workspace folder as their storage root (live folder share).

Auth: JWT required. Admin or Owner required.

For full share management documentation, see Shares reference.

Required Parameters

NameTypeConstraintsDescription
intelligencestring"true" or "false"Enable AI features for the share
share_typestring"send", "receive", "exchange"Type of share
access_optionsstringSee access options belowAccess control setting
invitestring"owners" or "guests"Who can manage invitations

Optional Parameters

NameTypeConstraintsDescription
storage_modestring"independent" (default) or "workspace_folder"Storage isolation mode
folder_node_idstringValid OpaqueIdExisting workspace folder (for workspace_folder mode)
create_folderstring"true" or "false"Create new folder (for workspace_folder mode)
folder_namestringName for new folder (defaults to "Shared Folder")
titlestring2–80 charsDisplay title
descriptionstring10–500 charsShare description
custom_namestring10–100 chars, URL-friendlyCustom URL name. Auto-generated if omitted.
passwordstring4–128 charsPassword protection (Send type only, requires "Anyone with the link" access)
expiresstringdatetimeExpiration date (portals only, not for workspace folder shares)
notifystring"never", "notify_on_file_received", "notify_on_file_sent_or_received"Notification preference
comments_enabledstring"true" or "false"Enable comments
download_securitystringhigh, medium, offDownload security level. high: downloads disabled. medium: restricted. off: unrestricted.
guest_chat_enabledstring"true" or "false"Enable guest AI chat
accent_colorstring (JSON)Valid JSONAccent color
background_color1string (JSON)Valid JSONBackground color 1
background_color2string (JSON)Valid JSONBackground color 2
owner_definedstring (JSON)Valid JSONCustom properties

Access Options (access_options)

ValueDescription
'Only members of the Share or Workspace'Most restrictive (default)
'Members of the Share, Workspace or Org'Includes org members
'Anyone with a registered account'Any authenticated user
'Anyone with the link'Least restrictive; allows password. Not available for Receive/Exchange types.

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/create/share/" \
  -H "Authorization: Bearer {jwt_token}" \
  -d "title=Client Deliverables" \
  -d "share_type=send" \
  -d "intelligence=true" \
  -d "access_options=Anyone with a registered account" \
  -d "invite=owners"

Response (200 OK)

{
  "result": true,
  "share": {
    "id": "9876543210987654321",
    "custom_name": "abc123opaque",
    "storage_mode": "independent"
  }
}

Response — Workspace Folder Share

{
  "result": true,
  "share": {
    "id": "9876543210987654321",
    "custom_name": "def456opaque",
    "storage_mode": "workspace_folder",
    "folder_node_id": "abc123def456"
  }
}

Response Fields

FieldTypeDescription
response.share.idstring19-digit share profile ID
response.share.custom_namestringURL name (custom or auto-generated)
response.share.storage_modestring"independent" or "workspace_folder"
response.share.folder_node_idstring(Workspace folder shares only) Folder node ID

Error Responses

Error CodeHTTP StatusMessageCause
1685 (Feature Limit)403The organization has reached its share creation limit...Plan share limit exceeded
1658 (Not Acceptable)406The supplied share custom name is already in use.Duplicate custom_name
1605 (Invalid Input)400An invalid share custom name was supplied.Invalid custom_name format
1605 (Invalid Input)400Workspace folder shares cannot have an expiration date.expires set on workspace folder share
1605 (Invalid Input)400Receive and Exchange shares cannot have "Anyone" access option.Invalid access/type combination
1605 (Invalid Input)400Password can only be set for shares with "Anyone" access option.Password on non-public share
1658 (Not Acceptable)406This folder has already been shared.Folder already has a share
1660 (Conflict)409Unable to process share creation request due to concurrent operation.Concurrent folder share creation

List Shares in Workspace

GET /current/workspace/{workspace_id}/list/shares/

Lists all shares belonging to a workspace.

Auth: JWT required. View or above.

Query Parameters

NameTypeDefaultDescription
archivedstring"false""true" for archived shares, "false" for active

Example

curl -X GET "https://api.fast.io/current/workspace/1234567890123456789/list/shares/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "shares": [
    {
      "id": "9876543210987654321",
      "title": "Client Deliverables",
      "share_type": "send",
      "custom_name": "client-deliverables",
      "archived": false,
      "closed": false
    }
  ]
}

Import Share into Workspace

POST /current/workspace/{workspace_id}/import/share/{share_id}/

Transfers a user-owned share into workspace ownership.

Auth: JWT required. Must be workspace member AND share owner.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit workspace ID
{share_id}stringYes19-digit share ID to import

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/import/share/9876543210987654321/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "share": {
    "id": "9876543210987654321",
    "parent_type": "workspace",
    "parent_workspace": "1234567890123456789"
  }
}

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400This share is not owned by you and cannot be imported.Share parent is not the current user
1650 (Authentication Invalid)401You must be the owner of the share to import it to a workspace.Not the share owner
1605 (Invalid Input)400The share has multiple owners...Remove other owners first
1685 (Feature Limit)403The workspace has reached its share limit...Plan limit exceeded

Share must be user-owned (not already in another workspace). User must be the sole owner. Multiple owners must be removed first. Archived shares are auto-unarchived during import.

File Shares (Durable Single-File Links)

A File Share is a durable, link-shareable view of one workspace file — the successor to the deprecated QuickShare. It is durable by default (an optional expiry can be set on create/update) and has no per-link transfer cap (bandwidth is metered to the owning organization). A File Share is bound to a single file node at creation and the binding is immutable. The public read endpoints (details, download, preview, versions) are documented in the Shares and Storage references; the management endpoints below require the caller to be an authenticated member of the workspace.

Comment visibility is one-directional (workspace ⊇ File Share). Because a File Share is just a view of a workspace file, comments left by File Share recipients also surface to workspace members — read-only on the workspace file's comment thread and in workspace comment search. The reverse is never true: a File Share recipient sees only the comments made under that File Share and never the workspace's internal comments.

Create a File Share

POST /current/workspace/{workspace_id}/create/fileshare/

Create a File Share bound to a workspace file node. Auth required. Permission: Member of the workspace named in the path.

Request Body (form-encoded)

NameTypeRequiredDescription
nodestringYesOpaqueId of the file node to share (must be a file, not a folder or note)
titlestringNoDisplay title (max 255 chars)
access_optionstringNoanyone_with_link, any_registered, or named_people (default: named_people)
passwordstringNoOptional link password (1-255 chars). Body-only — never accepted from the query string.
expiresintegerNoOptional expiry, RELATIVE: seconds from now (> 0). Mutually exclusive with expires_at. Omitted = durable (never expires).
expires_atstringNoOptional expiry, ABSOLUTE: a future datetime; a value without a timezone is interpreted as UTC. Mutually exclusive with expires. An expired File Share stops serving immediately (404) and is reaped automatically by the hourly cleanup (grants cascaded, file_share_deleted fires); the bound file is never touched.

curl Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/create/fileshare/" \
  -H "Authorization: Bearer {jwt_token}" \
  -d "node=f3jm5-zqzfx-pxdr2-dx8z5-bvnb3-rpjf" \
  -d "title=Quarterly Presentation" \
  -d "access_option=anyone_with_link"

Response (200 OK)

{
  "result": true,
  "fileshare": {
    "fileshare": "1234567890123456789",
    "title": "Quarterly Presentation",
    "access_option": "anyone_with_link",
    "has_password": false,
    "bound_node_id": "f3jm5zqzfxpxdr2dx8z5bvnb3rpjf",
    "creator_uid": "9876543210987654321",
    "created": "2026-04-27 16:37:29 UTC",
    "updated": "2026-04-27 16:37:29 UTC",
    "expires": null
  }
}

Error Responses

Error CodeHTTP StatusCause
1605 (Invalid Input)400node missing/invalid, the node is not a file, or the password is unusable
1680 (Access Denied)403The bound file is not publicly serveable (locked/DMCA/infected)

List File Shares in Workspace

GET /current/workspace/{workspace_id}/list/fileshares/

Lists the workspace's File Shares (offset pagination). Scoped strictly to File Shares — never mixes with the Share list. Auth required. Permission: Member.

Each item additionally carries grant_count (the number of live named-people grants on the File Share — revoked / expired grants excluded) and grants_preview (the first few grants, in the same shape as the grants list endpoint, for rendering an avatar stack without a second call). Both are best-effort: if the grant read faults for an item, the two fields are omitted for that item (the rest of the list still returns). The full access list is the GET .../grants/ endpoint below.

Response (200 OK)

{
  "result": true,
  "fileshares": [
    {
      "fileshare": "1234567890123456789",
      "title": "Quarterly Presentation",
      "access_option": "anyone_with_link",
      "has_password": false,
      "bound_node_id": "f3jm5zqzfxpxdr2dx8z5bvnb3rpjf",
      "creator_uid": "9876543210987654321",
      "created": "2026-04-27 16:37:29 UTC",
      "updated": "2026-04-27 16:37:29 UTC",
      "expires": null,
      "grant_count": 2,
      "grants_preview": [
        {
          "user": "9876543210987654321",
          "name": "Ada Lovelace",
          "email": "ada@example.com",
          "capability": "edit",
          "state": "active",
          "created": "2026-04-27 16:37:29 UTC",
          "expires": null
        },
        {
          "user": null,
          "name": null,
          "email": "pending.invitee@example.com",
          "capability": "view",
          "state": "pending",
          "created": "2026-04-27 16:40:00 UTC",
          "expires": "2026-05-27 16:40:00 UTC"
        }
      ]
    }
  ]
}

Update a File Share

POST /current/fileshare/{fileshare_id}/update/
PATCH /current/fileshare/{fileshare_id}/update/

Update a File Share's mutable settings. The bound file node is immutable here (a rebind is a new File Share); only title, access_option, password, and the expiry change. Auth required. Permission: Member of the File Share's parent workspace.

Request Body (form-encoded)

NameTypeDescription
titlestringNew title (max 255). Send empty / null to clear.
access_optionstringanyone_with_link, any_registered, or named_people
passwordstringNew link password (max 255). Body-only. Send empty to clear.
expiresintegerNew expiry, RELATIVE: seconds from now (> 0). Mutually exclusive with expires_at.
expires_atstringNew expiry, ABSOLUTE: a future datetime (no timezone = UTC). Send null to clear the expiry (durable again). Mutually exclusive with expires.

Returns the updated File Share in the same shape as create.

Delete a File Share

DELETE /current/fileshare/{fileshare_id}/delete/

Delete a File Share. Revokes the link and cascades its grants. Auth required. Permission: Member of the File Share's parent workspace. Response: {"result": true}.

List / Manage Per-User Grants

GET /current/fileshare/{fileshare_id}/grants/
POST /current/fileshare/{fileshare_id}/grants/
DELETE /current/fileshare/{fileshare_id}/grants/

List or manage the named-people access list. GET lists the File Share's live grants; POST grants or raises a user's capability; DELETE revokes (idempotent). A grant raises an individual user's capability regardless of tier; the named_people tier consults this list directly. Auth required. Permission: Member of the File Share's parent workspace (all three methods).

List (GET) Response (200 OK)

Returns the File Share's live named-people grants — revoked and expired grants are excluded. There are no pagination parameters (the access list is small; the first 1000 grants are returned).

{
  "result": true,
  "grants": [
    {
      "user": "9876543210987654321",
      "name": "Ada Lovelace",
      "email": "ada@example.com",
      "capability": "edit",
      "state": "active",
      "created": "2026-04-27 16:37:29 UTC",
      "expires": null
    },
    {
      "user": null,
      "name": null,
      "email": "pending.invitee@example.com",
      "capability": "view",
      "state": "pending",
      "created": "2026-04-27 16:40:00 UTC",
      "expires": "2026-05-27 16:40:00 UTC"
    }
  ]
}

Grant Fields

FieldTypeDescription
userstring | nullThe grantee's 19-digit user profile ID. null for a pending invitee (no account yet).
namestring | nullDisplay name. null when unknown (a pending invitee, or no name set).
emailstring | nullThe grantee's email address (the real invitation email for a pending invitee). null in the rare case a claimed account has no email on record.
capabilitystringview, download, or edit.
statestringactive (a real, claimed user) or pending (an invited address not yet claimed).
createdstringWhen the grant was created (Y-m-d H:i:s UTC).
expiresstring | nullFor an active grant, the grant's own expiry; for a pending invitee, the invitation's expiry. null when it does not expire.

Grant / Revoke (POST / DELETE) Request Body (form-encoded)

Supply exactly one of user or email (supplying both, or neither, is a 400).

NameTypeRequiredDescription
userstringOne of user/email19-digit user profile ID of the grantee (an existing account)
emailstringOne of user/emailEmail address of the grantee — lets you grant a person who may not have an account yet
capabilitystringYes for POSTview, download, or edit

A view grant can open the link and preview; download can also download the bytes (and historical versions); edit can additionally replace the file's content via an upload session (see the Upload reference). Re-granting the same capability, or revoking a non-existent grant, is a silent no-op. Response (POST by user, or DELETE): {"result": true}.

Granting by Email

Revoking by Email (DELETE)

Revokes an active grant for that address, and/or cancels a still-pending invitation for it. Cancelling a pending invitation confers nothing, so it does not emit an access-revoked event. A DELETE that matches neither is an idempotent success.

Response (POST by registered email): { "result": true, "user": { "id": "9876543210987654321" } }

Response (POST by unregistered email — invitation created). The pending grant is returned in the same shape as a grants-list row (user is null for an unclaimed invitee; the internal invitation/account id is never exposed):

{
  "result": true,
  "grant": {
    "user": null,
    "name": null,
    "email": "newperson@example.com",
    "capability": "view",
    "state": "pending",
    "created": "2026-04-27 16:37:29 UTC",
    "expires": "2026-05-27 16:37:29 UTC"
  }
}

Error Responses

Error CodeHTTP StatusCause
1605 (Invalid Input)400user is not a valid user id / the user does not exist; email is malformed or cannot receive access; both user and email (or neither) were supplied; or capability is missing on a grant

Workspace Discovery

List All Workspaces

GET /current/workspaces/all/

Lists all workspaces the user has joined or can access across all organizations.

Auth: JWT required.

Example

curl -X GET "https://api.fast.io/current/workspaces/all/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "workspaces": [
    {
      "id": "1234567890123456789",
      "name": "Engineering Team",
      "folder_name": "engineering",
      "description": "Main engineering workspace",
      "accent_color": "#0066CC",
      "logo": "https://assets.fast.io/1234567890123456789/logo.png",
      "closed": false,
      "archived": false,
      "perm_join": "Member or above",
      "perm_member_manage": "Admin or above",
      "created": "2023-01-15 10:30:00 UTC",
      "updated": "2024-01-20 14:45:00 UTC",
      "user_status": "joined",
      "org_domain": "acme-corp"
    }
  ]
}

Response Fields

FieldTypeDescription
response.workspacesarrayArray of workspace objects
[].idstring19-digit workspace profile ID
[].namestringDisplay name
[].folder_namestringURL-safe folder identifier
[].descriptionstring or nullDescription
[].accent_colorstring or nullBrand accent color
[].logostring or nullLogo asset URL
[].closedbooleanWhether closed
[].archivedbooleanWhether archived
[].perm_joinstringWho can join
[].perm_member_managestringWho can manage members
[].createdstringCreation timestamp
[].updatedstringLast update timestamp
[].user_statusstring"joined", "invited", or "available"
[].org_domainstringParent organization domain

Spans all organizations the user belongs to. Workspaces from orgs without active subscriptions are filtered out.


List Available Workspaces

GET /current/workspaces/available/

Lists workspaces the user can join but has not yet joined. Useful for discovery UI.

Auth: JWT required.

Example

curl -X GET "https://api.fast.io/current/workspaces/available/" \
  -H "Authorization: Bearer {jwt_token}"

Response: Same structure as List All Workspaces, but only includes un-joined workspaces.


Check Workspace Name

GET /current/workspaces/check/name/{name}/

Checks if a workspace folder name is already in use. Useful for real-time form validation.

Auth: JWT required. Org membership (Member or above) required. 2FA required.

Path Parameters

ParameterTypeRequiredDescription
{name}stringYesThe folder name to check

Example

curl -X GET "https://api.fast.io/current/workspaces/check/name/engineering/" \
  -H "Authorization: Bearer {jwt_token}"

Response — Name Available (202 Accepted)

{
  "result": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1605 (Invalid Input)400An invalid workspace folder name was supplied.Invalid name format
1658 (Not Acceptable)406The supplied workspace folder name is already in use.Name taken
1680 (Access Denied)403Permission deniedNot an org member

Checks globally across all workspaces, not just the current org. Returns 202 Accepted (not 200 OK) when the name is available.


List Workspaces in Org

GET /current/org/{org_id}/list/workspaces/

Lists workspaces within a specific organization. Paginated.

Auth: JWT required.

Path Parameters

ParameterTypeRequiredDescription
{org_id}stringYes19-digit numeric organization ID

Query Parameters

NameTypeDefaultDescription
limitinteger1001–500, items per page
offsetinteger0Items to skip
archivedstring"false""true" for archived, "false" for active

Example

curl -X GET "https://api.fast.io/current/org/1000000000000000001/list/workspaces/?limit=50&offset=0" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "workspaces": [
    {
      "id": "1234567890123456789",
      "folder_name": "engineering",
      "name": "Engineering Team",
      "description": "Main project workspace"
    }
  ],
  "pagination": {
    "total": 5,
    "limit": 50,
    "offset": 0,
    "has_more": false
  }
}

Access Levels

RoleVisibility
Org OwnerAll workspaces
Org AdminAll workspaces
Org MemberWorkspaces matching perm_join permission
External UserOnly workspaces where they are a direct member

Cloud Import

Enable Cloud Import

POST /current/workspace/{workspace_id}/cloud-import/enable/

Enables cloud import features for a workspace. If already enabled, returns success with a message indicating the current state.

Auth: JWT required. Admin or Owner required. Requires the cloud import billing feature.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID or folder_name

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/cloud-import/enable/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "message": "Cloud import features enabled",
  "cloud_import": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Permission deniedNot admin or owner
1685 (Feature Limit)403Feature not availableCloud import not included in billing plan
1654 (Internal Error)500Failed to enable cloud import featuresInternal failure

Disable Cloud Import

POST /current/workspace/{workspace_id}/cloud-import/disable/

Disables cloud import features for a workspace. If already disabled, returns success with a message indicating the current state.

Auth: JWT required. Admin or Owner required. Requires the cloud import billing feature.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID or folder_name

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/cloud-import/disable/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "message": "Cloud import features disabled",
  "cloud_import": false
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Permission deniedNot admin or owner
1685 (Feature Limit)403Feature not availableCloud import not included in billing plan
1654 (Internal Error)500Failed to disable cloud import featuresInternal failure

Workflow

Enable Workflow

POST /current/workspace/{workspace_id}/workflow/enable/

Enables the workflow feature gate for a workspace — this powers the Tasks feature and is required for workflow orchestration. If already enabled, returns success with a message indicating the current state.

Auth: JWT required. Admin or Owner required. Requires the workflow billing feature.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID or folder_name

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/workflow/enable/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "message": "Workflow features enabled",
  "workflow": true
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Permission deniedNot admin or owner
1685 (Feature Limit)403Feature not availableWorkflow not included in billing plan
1654 (Internal Error)500Failed to enable workflow featuresInternal failure

Disable Workflow

POST /current/workspace/{workspace_id}/workflow/disable/

Disables workflow features for a workspace. If already disabled, returns success with a message indicating the current state.

Auth: JWT required. Admin or Owner required. Requires the workflow billing feature.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID or folder_name

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/workflow/disable/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "message": "Workflow features disabled",
  "workflow": false
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Permission deniedNot admin or owner
1685 (Feature Limit)403Feature not availableWorkflow not included in billing plan
1654 (Internal Error)500Failed to disable workflow featuresInternal failure

Task Lists

Task lists are a workflow feature. Workflow must be enabled on the workspace before using these endpoints. All task list endpoints support Accept: text/markdown for markdown-formatted output.

List Task Lists

GET /current/workspace/{workspace_id}/tasks/

Returns all task lists for the workspace. Supports pagination and markdown output.

Auth: JWT required. View or above. Requires the workflow billing feature.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID or folder_name

Query Parameters

NameTypeDefaultDescription
limitinteger100Items per page
offsetinteger0Items to skip

Headers

HeaderValueDescription
Accepttext/markdown(Optional) Return markdown-formatted output instead of JSON

Example

curl -X GET "https://api.fast.io/current/workspace/1234567890123456789/tasks/" \
  -H "Authorization: Bearer {jwt_token}"

Response (200 OK)

{
  "result": true,
  "task_lists": [
    {
      "id": "abc123opaque",
      "profile_id": "1234567890123456789",
      "name": "Sprint Backlog",
      "description": "Current sprint items",
      "created_by": "9876543210987654321",
      "properties": {},
      "sort_order": 0,
      "created": "2026-01-15 10:30:00 UTC",
      "updated": "2026-01-20 14:45:00 UTC",
      "deleted": null
    }
  ],
  "pagination": {
    "limit": 100,
    "offset": 0,
    "total": 1
  }
}

Response Fields

FieldTypeDescription
task_listsarrayArray of task list objects
task_lists[].idstringOpaque task list ID
task_lists[].profile_idstring19-digit workspace profile ID
task_lists[].namestringTask list name
task_lists[].descriptionstring or nullTask list description
task_lists[].created_bystring19-digit user ID of the creator
task_lists[].propertiesobjectCustom properties
task_lists[].sort_orderintegerSort order position
task_lists[].createdstringCreation timestamp (YYYY-MM-DD HH:MM:SS UTC)
task_lists[].updatedstringLast update timestamp (YYYY-MM-DD HH:MM:SS UTC)
task_lists[].deletedstring or nullDeletion timestamp (YYYY-MM-DD HH:MM:SS UTC), or null
paginationobjectPagination metadata

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Workflow is not enabledWorkflow not enabled on workspace
1654 (Internal Error)500Failed to retrieve task listsInternal failure

Create Task List

POST /current/workspace/{workspace_id}/tasks/create/

Creates a new task list in the workspace. Request body is JSON.

Auth: JWT required. View or above. Requires the workflow billing feature.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID or folder_name

Request Body (JSON)

NameTypeRequiredDescription
namestringYesTask list name
descriptionstringTask list description
propertiesobjectCustom properties
sort_orderintegerSort order position (default: 0)

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/tasks/create/" \
  -H "Authorization: Bearer {jwt_token}" \
  -H "Content-Type: application/json" \
  -d '{"name": "Sprint Backlog", "description": "Current sprint items"}'

Response (200 OK)

{
  "result": true,
  "task_list": {
    "id": "abc123opaque",
    "profile_id": "1234567890123456789",
    "name": "Sprint Backlog",
    "description": "Current sprint items",
    "created_by": "9876543210987654321",
    "properties": {},
    "sort_order": 0,
    "created": "2026-01-15 10:30:00 UTC",
    "updated": "2026-01-15 10:30:00 UTC",
    "deleted": null
  }
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Workflow is not enabledWorkflow not enabled on workspace
1605 (Invalid Input)400Invalid task list nameName validation failed
1605 (Invalid Input)400Invalid descriptionDescription validation failed
1605 (Invalid Input)400Invalid JSON in request bodyMalformed JSON
1654 (Internal Error)500Failed to create task listInternal failure

Reorder Task Lists

POST /current/workspace/{workspace_id}/tasks/reorder/

Bulk reorder task lists within a workspace. All referenced task list IDs must belong to this workspace. Request body is JSON.

Auth: JWT required. View or above. Requires the workflow billing feature.

Path Parameters

ParameterTypeRequiredDescription
{workspace_id}stringYes19-digit numeric workspace ID or folder_name

Request Body (JSON)

NameTypeRequiredDescription
orderarrayYesArray of {id, sort_order} objects
order[].idstringYesOpaque task list ID
order[].sort_orderintegerYesNew sort order position

Example

curl -X POST "https://api.fast.io/current/workspace/1234567890123456789/tasks/reorder/" \
  -H "Authorization: Bearer {jwt_token}" \
  -H "Content-Type: application/json" \
  -d '{"order": [{"id": "abc123", "sort_order": 0}, {"id": "def456", "sort_order": 1}]}'

Response (200 OK)

{
  "result": true,
  "reordered": 2,
  "profile_id": "1234567890123456789"
}

Error Responses

Error CodeHTTP StatusMessageCause
1680 (Access Denied)403Workflow is not enabledWorkflow not enabled on workspace
1605 (Invalid Input)400order must be a non-empty array...Missing or empty order array
1605 (Invalid Input)400Each order entry must have id and sort_order fieldsMalformed order entry
1605 (Invalid Input)400Invalid task list ID formatInvalid opaque ID
1605 (Invalid Input)400Task list ID does not belong to this workspaceID not owned by workspace
1654 (Internal Error)500Failed to reorder task listsInternal failure

Workflow-Native Sign-off & Checklists

For human sign-off use the workflow approval step and the native review surface; for checklist items use the workflow todo step (both in the workflow orchestration tool). The Tasks API (task lists & tasks) is the supported task-tracking surface. See the Workflow reference for these surfaces.

↑ Back to top