# Get user

**GET** `/users/{userId}`

Returns one workspace member, including role and team membership.

Authentication: bearerAuth
Required scopes: `user:read`
Allowed roles: `owner`, `admin`, `agent`
Authorization: Read a workspace user.

## Parameters

- `userId` (path string, required)

## Responses

- `200`: User
- `404`: User not found
- `default`: Error