List All Users
Retrieve a list of all users in the system.Authentication
No authentication specified (should be protected in production).Response
Indicates whether the operation was successful.
Error message if operation failed.
Array of user objects.
Example
Get User by ID
Retrieve a specific user by their ID.Authentication
No authentication specified (should be protected in production).Path Parameters
The unique identifier of the user to retrieve.
Response
Indicates whether the user was found.
Error message if user not found: “No se encontró el expediente”
User object.
Example
Delete User
Delete a user from the system.Authentication
No authentication specified (should be protected in production).Path Parameters
The unique identifier of the user to delete.
Response
Indicates whether the deletion was successful.
Error message if user not found: “No se pudo encontrar el expediente”
Not used in this endpoint.
Example
Change Password
Update a user’s password.Authentication
No authentication specified (should be protected in production).Request Body
The ID of the user whose password will be changed.
The new password. Will be securely hashed before storage.
Response
Indicates whether the password was successfully updated.
Status message: “Contraseña actualizada correctamente” on success, or “Usuario no encontrado” if user not found.
Returns
true on successful password update.Example
Security Considerations
- All password operations use ASP.NET Core Identity’s
PasswordHasher - Passwords are never stored or transmitted in plain text
- These endpoints should be protected with authentication and authorization in production
- Consider implementing rate limiting on authentication endpoints
- The Lista_Usuarios endpoint exposes hashed passwords - consider removing this in production