List Resource Users

GET /unified/iam/resource_users

Returns users who have access to a specific resource — a channel, file, folder, workspace, or other resource type supported by the connected provider. Unlike List Users, this endpoint:

Only returns users with access to the requested resource
Auto-expands roles, permissions, and groups — no expand parameter needed
Scopes all returned roles and permissions to the requested resource
Also includes workspace-level or org-level roles alongside resource-scoped ones

Use List Resource Types to discover valid resource_type values for the connected provider.

For a fast yes/no check on whether a specific user can perform an action on a resource, use Check Permissions instead. This endpoint is for listing the full access picture across all users.

Authentication

Requires Authorization: Basic {base64_encoded_api_key} and x-account-id: {account_id}. See authentication.

Query Parameters

Parameter	Type	Required	Description
`resource_type`	string	Yes	The type of resource to query. Use values from List Resource Types.
`resource_id`	string	Yes	The ID of the resource to query
`fields`	string	No	Comma-separated list of fields to include
`next`	string	No	Cursor token for the next page
`expand`	string	No	Has no effect — `roles`, `groups`, and `permissions` are always auto-expanded on this endpoint
`raw`	boolean	No	Include raw provider response
`proxy`	object	No	Additional headers to pass through to the provider

Response

Returns a paginated list of IamUser objects. The same schema as List Users, but with roles, groups, and permissions always populated and scoped to the requested resource.

Example

cURL
TypeScript
Python

curl --request GET \
  --url 'https://api.stackone.com/unified/iam/resource_users?resource_type=channel&resource_id=C08G6QB90LU' \
  --header 'accept: application/json' \
  --header 'authorization: Basic {base64_encoded_api_key}' \
  --header 'x-account-id: {account_id}'

import { StackOne } from "@stackone/stackone-client-ts";

const client = new StackOne({ apiKey: "v1.eu1.xxxxx" });

const response = await client.iam.listResourceUsers({
  xAccountId: "your-account-id",
  resourceType: "channel",
  resourceId: "C08G6QB90LU",
});

console.log(response.users);

from stackone_client import StackOne

client = StackOne(api_key="v1.eu1.xxxxx")

response = client.iam.list_resource_users(
    x_account_id="your-account-id",
    resource_type="channel",
    resource_id="C08G6QB90LU"
)

print(response.users)

Example Response

{
  "data": [
    {
      "id": "user_01abc123",
      "remote_id": "U08FW4R4N6S",
      "name": "Jane Doe",
      "primary_email_address": "jane@acme.com",
      "roles": [
        {
          "id": "role_01abc",
          "name": "channel-member",
          "type": "member",
          "scope": { "resource_type": "channel", "resource_id": "C08G6QB90LU" }
        }
      ],
      "permissions": [
        {
          "id": "perm_01abc",
          "type": "read",
          "scopes": [{ "resource_type": "channel", "resource_id": "C08G6QB90LU" }]
        }
      ]
    }
  ],
  "next": null
}

Errors

Status	Meaning
400	Missing `resource_type` or `resource_id`
401	Unauthorized — invalid or missing API key
404	Resource not found
422	Provider does not support this endpoint

Getting Started

Users

Roles

Groups

Organizations

Me

Resource Types

Resource Users

List Resource Users

Authentication

Query Parameters

Response

Example

Example Response

Errors

Getting Started

Users

Roles

Groups

Organizations

Me

Resource Types

Resource Users

​Authentication

​Query Parameters

​Response

​Example

​Example Response

​Errors

Authentication

Query Parameters

Response

Example

Example Response

Errors