Trio Business Core API introduction - Trio Business Core API

The Trio Business Core API is the Phase 1 identity and organization foundation for Trio Business. Use it to authenticate users, manage organizations, enroll devices, run automations, and connect third-party integrations. Base URL: https://coreapi-dev.us.bcpapers.ca Use the interactive playground on each endpoint page to send live requests. Download the full OpenAPI spec from the page context menu.

Endpoints

Browse the full reference in the sidebar, organized by resource. Key entry points include:

Authentication

OIDC provider discovery document: Retrieve the OpenID Connect discovery document.
Poll domain creation status: Check the status of a new organization domain.
Device-login completion carrier: Complete a device authorization grant.

Multi-factor authentication

List enrolled MFA factors: List MFA methods enrolled for the authenticated user.
Start TOTP enrollment: Begin enrolling a TOTP authenticator app.
List 4D sign-on policies: List MFA sign-on policies for the organization.

Users and access

Get current authenticated user profile: Retrieve the signed-in user’s profile.
Create a user: Add a new user to the organization.
Check if the authenticated user has a permission: Verify a permission for the current user.

Devices and automation

Enroll Trio Windows agent: Register a Windows agent with the platform.
Device command poll: Poll for pending commands on a device.
List device groups: List device groups in the organization.

Integrations

List available integration providers: Browse the integration catalog.
List connected integrations for the company: View active integration connections.
Get integration sync health: Check sync status for a connection.

MDM and policy

Apple User Enrollment service discovery document: Discover Apple enrollment services.
OMA-DM discovery: Windows MDM discovery endpoint.
List policies: List security and compliance policies.

Common use cases

User sign-in and SSO: Authenticate users with OIDC provider discovery document and device-login flows.
Organization onboarding: Provision domains with Poll domain creation status after domain creation callbacks.
MFA enforcement: Configure policies with List 4D sign-on policies and enroll users via Start TOTP enrollment.
Device management: Enroll agents with Enroll Trio Windows agent and deliver commands through Device command poll.
Third-party integrations: Connect services using the integration catalog and monitor integration sync health.
Access control: Assign roles and verify permissions with Check if the authenticated user has a permission.

Authentication

Most endpoints require a bearer token. Obtain a JWT through your authentication flow, then pass it in the Authorization header.

Paste the JWT token only in the playground. Do not include the Bearer prefix — the UI adds it automatically.

Bearer token

Include your JWT in the Authorization header:

curl https://coreapi-dev.us.bcpapers.ca/v2/users \
  -H "Authorization: Bearer YOUR_JWT_TOKEN"

In the API playground, enter your token in the authentication field on any endpoint page.

Quickstart

Get started with Trio Business.

OpenAPI spec

Download the machine-readable API specification.

​Endpoints

​Authentication

​Multi-factor authentication

​Users and access

​Devices and automation

​Integrations

​MDM and policy

​Common use cases

​Authentication

​Bearer token

​Related topics

Quickstart

OpenAPI spec

Endpoints

Authentication

Multi-factor authentication

Users and access

Devices and automation

Integrations

MDM and policy

Common use cases

Authentication

Bearer token

Related topics