Autional Autional
API Reference GitHub autional.com →

GET /tenant/public/tenants/{slug}

Return tenant public configuration (basic info, branding, auth policy, security policy) for login page initialization, no auth required

Tenant Service None application/json

Request Parameters

NameInTypeRequiredDefaultExampleConstraintsDescription
slug path string Yes Tenant identifier

Responses

StatusDescriptionSchema
200Tenant public configurationdto.DataResponse-dto_PublicTenantDetailResponse
404Tenant not founddto.Problem
500Internal server errordto.Problem

Referenced Schemas

dto.BrandingInfo

FieldTypeRequiredExampleConstraintsDescription
company_name string No
custom_css string No
favicon_url string No
login_page_description string No
login_page_title string No
logo_url string No
primary_color string No
privacy_policy_url string No
secondary_color string No
terms_of_service_url string No

dto.DataResponse-dto_PublicTenantDetailResponse

FieldTypeRequiredExampleConstraintsDescription
code integer No
data dto.PublicTenantDetailResponse No
message string No
timestamp string No

dto.FieldViolation

FieldTypeRequiredExampleConstraintsDescription
code string No Code is the error code (optional) used for programmatic identification of error types, such as "required", "format", "range"
description string No Description is a human-readable error description. It should explain which rule was violated, e.g., "Must be a valid email address".
field string No Field is the path to the error field. Use dot notation for nested fields, e.g., "user.email" or "addresses[0].city".
value object No Value is the value that caused the error (optional, used in development mode). May not be returned in production to avoid leaking sensitive information.

dto.Problem

FieldTypeRequiredExampleConstraintsDescription
code integer No Code is the business error code. Used for programmatic handling of specific error scenarios. Example: 30101001
detail string No Detail is a human-readable explanation for this specific error instance. May contain specific error details, e.g., "Field 'email' is required".
errors array of

See dto.FieldViolation

No Errors is a list of field-level validation errors (extension field). Follows Web API standard practices; each error contains field name and error message.
i18n_args object No I18nArgs are internationalization parameters. Used to dynamically fill translation templates.
i18n_key string No I18nKey is the internationalization key. Used for client-side localization of error messages. Example: "error.user_not_found"
instance string No Instance is the specific URI reference where the problem occurred. Usually the request URL, may include query parameters. Example: "/api/v1/users?limit=invalid"
request_id string No RequestID is the unique request identifier. Used for log correlation and issue tracking. Example: "req_550e8400-e29b-41d4-a716-446655440000"
retry_after integer No RetryAfter is used for 429 Too Many Requests responses. Indicates how many seconds the client should wait before retrying (RFC 6585).
service string No Service is the service name. Used in microservice architecture to locate the error source. Example: "auth-service"
span_id string No SpanID is the current span identifier. Used to precisely locate the current node in a distributed trace.
status integer No Status is the HTTP status code generated. Used by clients to distinguish problem types; does not change with Accept-Language. Example: 400, 401, 403, 404, 500
timestamp string No Timestamp is the time the error occurred. ISO 8601 format. Example: "2026-04-03T12:00:00Z"
title string No Title is a short, human-readable summary of the problem type. The same Type should always have the same Title (does not vary per instance). Example: "Invalid Request Parameters"
trace_id string No TraceID is the distributed tracing identifier. Follows W3C Trace Context standard. Example: "00-0af7651916cd43dd8448eb211c80319c-b7ad6b7169203331-01"
type string No Type is a URI reference that identifies the problem type. When dereferenced, it should provide human-readable documentation. Example: "https://api.example.com/errors/invalid-request"

dto.PublicAuthPolicy

FieldTypeRequiredExampleConstraintsDescription
breach_check_enabled boolean No
captcha_enabled boolean No
cross_tenant_switch_enabled boolean No
login_methods array of

string

No
magic_link_enabled boolean No
max_concurrent_sessions integer No
mfa_enforce_for_all boolean No
mfa_methods array of

string

No
oauth_providers array of

string

No
passkey_enabled boolean No
sso_providers array of

string

No

dto.PublicSecurityPolicy

FieldTypeRequiredExampleConstraintsDescription
lockout_attempts integer No
max_length integer No
min_length integer No
password_transmission string No
require_digit boolean No
require_lower boolean No
require_special boolean No
require_upper boolean No
unicode_allowed boolean No

dto.PublicTenantDetailResponse

FieldTypeRequiredExampleConstraintsDescription
auth_policy dto.PublicAuthPolicy No
branding dto.BrandingInfo No
security_policy dto.PublicSecurityPolicy No
tenant dto.PublicTenantInfo No

dto.PublicTenantInfo

FieldTypeRequiredExampleConstraintsDescription
display_name string No
domain string No
id string No
membership_approval string No
name string No