For the complete documentation index, see llms.txt.
Skip to main content
Version: 8.10 (unreleased)

Create groupAdded in 8.8

POST 

/groups

Strongly Consistent About endpoint data consistency

Create a new group.

The supplied groupId is validated against ^[a-zA-Z0-9_~@.+-]+ (max 256 characters) by IdentifierValidator.validateIdin the runtime. This strict validation applies wherever the Groups API is available: in OIDC deployments that setcamunda.security.authentication.oidc.groupsClaim the Groups API (including this endpoint) is disabled entirely, so group CRUD never sees externally-minted IdP IDs. The BYOG relaxation only loosens validation when a group is referenced *as a member* of a role or tenant (assignRoleToGroup, assignGroupToTenant); group CRUD itself always uses the strict default-id regex. The constraint is not advertised on the GroupId` schema so that the same schema can be reused at member-reference sites without falsely rejecting externally-minted IdP group IDs there.

Required permissions

When authorization is enabled, this endpoint requires the following permission. See resources and permissions to learn more.

Resource typePermission
GROUPCREATE

Request

Responses

The group was created successfully.