Create an employee
POST/employees
Creates an employee. Every foreign key you set (costCenterId / costCenter2Id / jobRoleId / sectorId / groupId) must exist in your organization, or the write is rejected with 422. On success the ETag header carries the new record's version and Location points at the new resource.
Request
Responses
- 201
- 400
- 401
- 403
- 409
- 422
- 429
A newly created employee
Response Headers
Current record version; send back as If-Match on update/delete.
URL of the newly created resource.
RFC 7807 problem
No API key was sent (missing Authorization header). Returned by the gateway as {"message":"Unauthorized"}, NOT RFC 7807, and without X-Request-Id. Note: a key that IS sent but is invalid/unknown/revoked/ expired returns 403 (see the Forbidden response), not 401.
A key was sent but rejected by the authorizer: the key is invalid / unknown / revoked / expired, OR its IP allow-list blocked the source IP, OR the key is newly created and not yet activated (~1 min propagation). Gateway-shaped and NOT RFC 7807, and without X-Request-Id. The body is the raw AWS authorizer-deny JSON with a CAPITAL Message: {"Message":"User is not authorized to access this resource with an explicit deny in an identity-based policy"}. This is an AWS string that may change — branch on the 403 status, not the body text.
RFC 7807 problem
RFC 7807 problem
Rate limit exceeded for this organization (metered per tenantId). Note: enforced by the API gateway, so the body is gateway-shaped ({"message":"Too Many Requests"}, with x-amzn-errortype: TooManyRequestsException), NOT RFC 7807, and without X-Request-Id. A Retry-After header is not guaranteed (the burst-rate throttle does not send one) — back off with your own exponential backoff and branch on the status, not the body text.