Session.get_list - REST API


Returns a list of all sessions of the user identified by:

  • ust - current user's sessions will be returned
  • target_ust and current_ust - sessions of the user pointed to by target_ust will be returned

Either ust or both target_ust and current_ust are required on input. In the latter case, current_ust must belong to a super-user.

  • HTTP method: GET
  • URL path: /zato/sso/user/session/list


uststringYesCurrent session's identifier
target_uststringYesUST of session to return details of
current_uststringYesCurrent user's session token (UST) - if provided, must belong to a super-user
current_appstring---Name of application that the call is attempted from


cidstring---Correlation ID assigned to request
statusstring---Overall status code
sub_statuslistYesReturned only if status is not "ok", a list of error or warning codes
result.auth_typestring---Using what authentication method the session was opened; one of 'default', 'basic_auth' or 'jwt'
result.auth_principalstring---Human-readable identifier of the account or person that the session was opened for, e.g. the person's username
result.creation_timedatetime---When the session was created, in UTC
result.expiration_timedatetime---When the session will expire, in UTC
result.remote_addrstringYesFrom what remote address the session was created
result.user_agentstringYesUsing what user agent the session was created
result.session_state_change_listlistYesA list of dictionaries for each major interaction with the sessions - contains metadata about when each session was created and renewed. A new entry is added to this list upon each such interaction. The list contains 100 of the latest entries. The list is sorted by timestamp_utc.


$ curl -XGET localhost:17010/zato/sso/user/session/list -d '
    "ust": "gAAAAABaqXJAenbkYyQt9CoWIvq...",
    "current_app": "CRM"

  "cid": "e0673f65704f74b2cd040fa6",
  "status": "ok",
  "auth_type": "default",
  "auth_principal": "joan.doe",
  "creation_time": "2029-05-19T19:19:40",
  "expiration_time": "2029-05-21T19:19:40",
  "remote_addr": "",
  "user_agent": "Firefox 139.0",
  "session_state_change_list": [
    "user_agent":"Firefox 139.0",
    "user_agent":"Firefox 139.0",