Salfio
APIReference

Delete a client

Soft-deletes the client. Subsequent reads return `404 not_found`. The stored row is retained for audit / recovery but no longer returned by any endpoint. Cross-tenant deletes return `404 not_found`.

DELETE
/clients/{clientId}

Authorization

bearerAuth
AuthorizationBearer <token>

Salfio API tokens start with the literal prefix sk_live_ followed by 32 base62 characters (≈190 bits of entropy). Tokens are hashed at rest with argon2id and shown to the user only once at creation.

In: header

Path Parameters

clientId*string

Client UUID.

Formatuuid

Response Body

application/json

application/json

application/json

application/json

curl -X DELETE "https://api.salfio.com/v1/clients/497f6eca-6276-4993-bfeb-53cbbbba6f08"
Empty
{
  "error": {
    "code": "unauthorized",
    "message": "Authentication required"
  }
}
{
  "error": {
    "code": "not_found",
    "message": "client not found"
  }
}
{
  "error": {
    "code": "conflict",
    "message": "client is already deleted"
  }
}
{
  "error": {
    "code": "rate_limited",
    "message": "Rate limit exceeded",
    "details": {
      "retry_after_seconds": 30
    }
  }
}

Get a client

Fetch a single client by its UUID. Returns `404 not_found` both for unknown IDs *and* for clients belonging to a different organization — the public API never leaks the existence of cross-tenant resources.

Update a client

Updates the provided fields; omitted fields are left unchanged. Cross- tenant updates return `404 not_found` (no existence leak).