naftiko: 1.0.0-alpha2 info: label: Identity Security Cloud V3 API — Identities description: 'Identity Security Cloud V3 API — Identities. 7 operations. Lead operation: List identity profiles. Self-contained Naftiko capability covering one Sailpoint business surface.' tags: - Sailpoint - Identities created: '2026-05-19' modified: '2026-05-19' binds: - namespace: env keys: SAILPOINT_API_KEY: SAILPOINT_API_KEY capability: consumes: - type: http namespace: identity-security-cloud-v3-identities baseUri: https://{tenant}.api.identitynow.com/v3 description: Identity Security Cloud V3 API — Identities business capability. Self-contained, no shared references. resources: - name: identity-profiles path: /identity-profiles operations: - name: listidentityprofiles method: GET description: List identity profiles outputRawFormat: json outputParameters: - name: result type: object value: $. inputParameters: - name: filters in: query type: string description: 'Filter results using the standard syntax. Filtering is supported for the following fields: id (eq, in), name (eq, sw), priority (eq, gt, lt, ge, le).' - name: sorters in: query type: string description: 'Sort results using the standard syntax. Sorting is supported for the following fields: name, priority, created, modified.' - name: createidentityprofile method: POST description: Create an identity profile outputRawFormat: json outputParameters: - name: result type: object value: $. inputParameters: - name: body in: body type: object description: Request body (JSON). required: true - name: identity-profiles-identity-profile-id path: /identity-profiles/{identity-profile-id} operations: - name: getidentityprofile method: GET description: Get an identity profile outputRawFormat: json outputParameters: - name: result type: object value: $. inputParameters: - name: identity-profile-id in: path type: string description: The identity profile ID. required: true - name: updateidentityprofile method: PATCH description: Update an identity profile outputRawFormat: json outputParameters: - name: result type: object value: $. inputParameters: - name: identity-profile-id in: path type: string description: The identity profile ID. required: true - name: body in: body type: object description: Request body (JSON). required: true - name: deleteidentityprofile method: DELETE description: Delete an identity profile outputRawFormat: json outputParameters: - name: result type: object value: $. inputParameters: - name: identity-profile-id in: path type: string description: The identity profile ID. required: true - name: public-identities path: /public-identities operations: - name: getpublicidentities method: GET description: List public identities outputRawFormat: json outputParameters: - name: result type: object value: $. inputParameters: - name: add-core-filters in: query type: boolean description: Set to true to exclude incomplete identities and uncorrelated accounts from the results. - name: filters in: query type: string description: 'Filter results using the standard syntax described in V3 API Standard Collection Parameters. Filtering is supported for the following fields and operators: id (' - name: sorters in: query type: string description: 'Sort results using the standard syntax. Sorting is supported for the following fields: name, alias, email.' - name: public-identities-id path: /public-identities/{id} operations: - name: getpublicidentity method: GET description: Get a public identity outputRawFormat: json outputParameters: - name: result type: object value: $. inputParameters: - name: id in: path type: string description: The identity ID. required: true authentication: type: bearer token: '{{env.SAILPOINT_API_KEY}}' exposes: - type: rest namespace: identity-security-cloud-v3-identities-rest port: 8080 description: REST adapter for Identity Security Cloud V3 API — Identities. One Spectral-compliant resource per consumed operation, prefixed with /v1. resources: - path: /v1/identity-profiles name: identity-profiles description: REST surface for identity-profiles. operations: - method: GET name: listidentityprofiles description: List identity profiles call: identity-security-cloud-v3-identities.listidentityprofiles with: filters: rest.filters sorters: rest.sorters outputParameters: - type: object mapping: $. - method: POST name: createidentityprofile description: Create an identity profile call: identity-security-cloud-v3-identities.createidentityprofile with: body: rest.body outputParameters: - type: object mapping: $. - path: /v1/identity-profiles/{identity-profile-id} name: identity-profiles-identity-profile-id description: REST surface for identity-profiles-identity-profile-id. operations: - method: GET name: getidentityprofile description: Get an identity profile call: identity-security-cloud-v3-identities.getidentityprofile with: identity-profile-id: rest.identity-profile-id outputParameters: - type: object mapping: $. - method: PATCH name: updateidentityprofile description: Update an identity profile call: identity-security-cloud-v3-identities.updateidentityprofile with: identity-profile-id: rest.identity-profile-id body: rest.body outputParameters: - type: object mapping: $. - method: DELETE name: deleteidentityprofile description: Delete an identity profile call: identity-security-cloud-v3-identities.deleteidentityprofile with: identity-profile-id: rest.identity-profile-id outputParameters: - type: object mapping: $. - path: /v1/public-identities name: public-identities description: REST surface for public-identities. operations: - method: GET name: getpublicidentities description: List public identities call: identity-security-cloud-v3-identities.getpublicidentities with: add-core-filters: rest.add-core-filters filters: rest.filters sorters: rest.sorters outputParameters: - type: object mapping: $. - path: /v1/public-identities/{id} name: public-identities-id description: REST surface for public-identities-id. operations: - method: GET name: getpublicidentity description: Get a public identity call: identity-security-cloud-v3-identities.getpublicidentity with: id: rest.id outputParameters: - type: object mapping: $. - type: mcp namespace: identity-security-cloud-v3-identities-mcp port: 9090 transport: http description: MCP adapter for Identity Security Cloud V3 API — Identities. One tool per consumed operation, routed inline through this capability's consumes block. tools: - name: list-identity-profiles description: List identity profiles hints: readOnly: true destructive: false idempotent: true call: identity-security-cloud-v3-identities.listidentityprofiles with: filters: tools.filters sorters: tools.sorters outputParameters: - type: object mapping: $. - name: create-identity-profile description: Create an identity profile hints: readOnly: false destructive: false idempotent: false call: identity-security-cloud-v3-identities.createidentityprofile with: body: tools.body outputParameters: - type: object mapping: $. - name: get-identity-profile description: Get an identity profile hints: readOnly: true destructive: false idempotent: true call: identity-security-cloud-v3-identities.getidentityprofile with: identity-profile-id: tools.identity-profile-id outputParameters: - type: object mapping: $. - name: update-identity-profile description: Update an identity profile hints: readOnly: false destructive: false idempotent: true call: identity-security-cloud-v3-identities.updateidentityprofile with: identity-profile-id: tools.identity-profile-id body: tools.body outputParameters: - type: object mapping: $. - name: delete-identity-profile description: Delete an identity profile hints: readOnly: false destructive: true idempotent: true call: identity-security-cloud-v3-identities.deleteidentityprofile with: identity-profile-id: tools.identity-profile-id outputParameters: - type: object mapping: $. - name: list-public-identities description: List public identities hints: readOnly: true destructive: false idempotent: true call: identity-security-cloud-v3-identities.getpublicidentities with: add-core-filters: tools.add-core-filters filters: tools.filters sorters: tools.sorters outputParameters: - type: object mapping: $. - name: get-public-identity description: Get a public identity hints: readOnly: true destructive: false idempotent: true call: identity-security-cloud-v3-identities.getpublicidentity with: id: tools.id outputParameters: - type: object mapping: $.