Skip to content
Truto

SSO · Beta

Torii
API integration

Ship SSO features without building the integration. Full Torii API access via Proxy, normalized data through Unified APIs, and 20+ MCP-ready tools for AI agents — all extensible to your exact use case.

Built for specific customer use cases. Issues are resolved quickly.

Talk to us
Torii

Use Cases

Why integrate with Torii

Common scenarios for SaaS companies building Torii integrations for their customers.

01

Automate employee offboarding across SaaS apps

HRIS and HR platforms can update a user's lifecycle status in Torii via Truto, triggering Torii's native automation to revoke access across 100+ connected apps — ensuring zero lingering accounts after termination.

02

Pull SaaS contract data for renewal management

Procurement and vendor management platforms can sync Torii's contract records — including renewal dates, costs, and associated apps — to surface upcoming renewals and write back renegotiated terms, keeping IT's system of record in sync.

03

Map application access for compliance audits

GRC and compliance platforms can read Torii's user-to-application mappings and audit logs to generate automated access reviews and produce de-provisioning evidence required for SOC 2, ISO 27001, and similar frameworks.

04

Detect and triage shadow IT in ITSM workflows

IT service management tools can poll Torii's discovered app catalog to identify unsanctioned software, automatically generate security review tickets, and assign them to the app's primary owner for remediation.

05

Centralize user directory data for identity governance

Identity and security platforms can pull Torii's normalized user directory — including roles, custom fields, and lifecycle statuses — to enrich their own access-risk models without building direct connectors to every downstream SaaS app.

What You Can Build

Ship these features with Truto + Torii

Concrete product features your team can ship faster by leveraging Truto’s Torii integration instead of building from scratch.

01

Lifecycle-triggered SaaS deprovisioning

Update a Torii user's lifecycle status from your product to automatically kick off cross-app offboarding workflows managed by Torii's automation engine.

02

SaaS contract renewal dashboard

Pull all active Torii contracts with renewal dates, costs, and linked apps to surface a native renewal calendar and write back updated terms after renegotiation.

03

Application-level access review reports

List all user-application assignments from Torii and cross-reference with user lifecycle status to generate access review evidence for auditors in a single view.

04

Shadow IT discovery feed

Continuously sync Torii's app catalog — including app state, category, and primary owner — into your product to flag unsanctioned tools and auto-create remediation workflows.

05

Workflow execution status sync

Poll Torii's workflow action executions to confirm automated onboarding or offboarding tasks have completed before closing corresponding tickets or tasks in your platform.

06

Custom user field enrichment

Read Torii's user custom fields and field metadata to enrich your own user profiles with organization-specific attributes like department, cost center, or manager without manual data entry.

SuperAI

Torii AI agent tools

Comprehensive AI agent toolset with fine-grained control. Integrates with MCP clients like Cursor and Claude, or frameworks like LangChain.

list_all_torii_me

Get the organization profile in Torii. Returns id, companyName, domain, and creationTime fields in the response.

list_all_torii_users

List users in Torii. Returns key fields such as id, firstName, lastName, email, lifecycleStatus, isDeletedInIdentitySources, isExternal, and activeAppsCount.

get_single_torii_user_by_id

Get user in Torii using id. Returns key fields such as id, firstName, lastName, email, role, lifecycleStatus, and creationTime to identify the user's state and access details.

update_a_torii_user_by_id

Update a specific user in Torii using id. Requires lifecycleStatus in the request body. Returns user details including id, email, role, lifecycleStatus, and creationTime.

list_all_torii_application_users

List application users in Torii for a specific application using id_app. Returns users with key fields such as email, fullName, status, appName, and user activity details including creationTime, lastVisitTime, and lifecycleStatus.

list_all_torii_user_applications

List user applications for a specific user in Torii. Requires id_user. Returns each application's id, name, isUserRemovedFromApp, and state fields indicating the user's association and app status.

get_single_torii_user_application_by_id

Get user application in Torii. Requires id_user and id. Returns app fields including id, name, isUserRemovedFromApp, and state.

update_a_torii_user_application_by_id

Update a user application in Torii using id_user and id. Returns app fields including id, name, isUserRemovedFromApp, and state to confirm the update result.

list_all_torii_contracts

List contracts in Torii for the organization. Returns an array of contract objects with fields such as id, name, status, and idApp. Multi-currency fields are returned in contract currency.

create_a_torii_contract

Create a new contract in Torii. Requires name, idApp, and status in the request body. Returns contract fields including id, name, and status. Dates must be in ISOString format; currency cannot be a top-level field.

get_single_torii_contract_by_id

Get contract in Torii using id. Returns contract fields including id (unique identifier), name (contract name), and status (contract status). Rate limit: 800 requests per minute.

delete_a_torii_contract_by_id

Delete a specific contract in Torii using id. Returns no content on success. Rate limit: 200 requests per minute.

update_a_torii_contract_by_id

Update a contract in Torii using id. Supports numeric or object-based amount fields for specifying currency values. Returns contract id, name, and status in the response.

list_all_torii_roles

List roles in Torii for the organization. Returns each role with fields id, systemKey, name, description, isAdmin, and usersCount. Rate limit: 100 requests per minute.

list_all_torii_workflow_action_executions

List workflow-action-executions in Torii sorted by creationTime in descending order. Returns fields like id, idWorkflow, idAction, isRun, isCompleted, and creationTime for each execution along with nextCursor, count, and total in the response.

list_all_torii_apps

List apps used in the organization in Torii. Returns each app’s id, name, state, category, description, tags, primaryOwner, and other relevant details.

get_single_torii_app_by_id

Get a specific app in Torii using id. Returns fields including id, name, state, category, url, description, and primaryOwner details for identification and ownership info. Rate limit: 400 requests per minute.

create_a_torii_app

Create a new app in Torii. Returns the created app's id, name, state, url, category, description, tags, and isHidden fields. Rate limit: 200 requests per minute.

update_a_torii_app_by_id

Update app in Torii by id. Updates app fields including custom fields defined via custom Application Details. Returns app fields: id, name, state, url, category, description, tags, and isHidden.

torii_apps_search

Search apps in Torii's catalog using the required parameter q. Returns an array of apps with fields: id, name, category, imageUrl, url, and isHidden.

get_single_torii_file_by_id

Get information about a specific file in Torii using id. Returns id, type, fileName, creationTime, and uploadedBy fields describing the file metadata.

create_a_torii_file

Create a new file record in Torii using parameters path and type. Returns id, a unique file identifier for the stored record.

torii_files_upload

Upload a small file (up to 3MB) to Torii. Requires file and type. Supported formats include .csv, .xls, .xlsx, .pdf, .doc, .docx, .png, .jpg, .jpeg, .xml, .json, .zip. Returns id representing the uploaded file.

list_all_torii_audit_logs

List admin audit logs in Torii. Returns performedBy, performedByEmail, idTargetOrg, creationTime, type, requestDetails, and properties fields in the response. Results are sorted by creationTime in descending order.

list_all_torii_user_custom_fields

List user custom fields in Torii for connected integrations. Returns fields with id, idOrg, sourceIdApp, name, type, key, and isDeleted.

list_all_torii_user_field_metadata

List user fields metadata in Torii including predefined and custom fields. Returns key details such as name, systemKey, type for predefinedFields and idField, name, systemKey, type for customFields. The list of dropdown options is not included.

Why Truto

Why use Truto’s MCP server for Torii

Other MCP servers give you a static tool list for one app. Truto gives you a managed, multi-tenant MCP infrastructure across 650+ integrations.

01

Auto-generated, always up to date

Tools are dynamically generated from curated documentation — not hand-coded. As integrations evolve, tools stay current without manual maintenance.

02

Fine-grained access control

Scope each MCP server to read-only, write-only, specific methods, or tagged tool groups. Expose only what your AI agent needs — nothing more.

03

Multi-tenant by design

Each MCP server is scoped to a single connected account with its own credentials. The URL itself is the auth token — no shared secrets, no credential leaking across tenants.

04

Works with every MCP client

Standard JSON-RPC 2.0 protocol. Paste the URL into Claude, ChatGPT, Cursor, or any MCP-compatible agent framework — tools are discovered automatically.

05

Built-in auth, rate limits, and error handling

Tool calls execute through Truto’s proxy layer with automatic OAuth refresh, rate-limit handling, and normalized error responses. No raw API plumbing in your agent.

06

Expiring and auditable servers

Create time-limited MCP servers for contractors or automated workflows. Optional dual-auth requires both the URL and a Truto API token for high-security environments.

Unified APIs

Unified APIs for Torii

Skip writing code for every integration. Use Truto’s category-specific Unified APIs out of the box or customize the mappings with AI.

Unified User Directory API

Organizations

Organizations are the top level entity in the source application. Users are associated with an organization.

View Docs

Roles

The Role object represents a role of a User.

View Docs

Users

The User object represents a User.

View Docs

Unified Single Sign-On API

App Users

AppUsers represent the users assigned to an application.

View Docs

Apps

Applications represent the applications that are registered with the SSO service.

View Docs

How It Works

From zero to integrated

Go live with Torii in under an hour. No boilerplate, no maintenance burden.

01

Link your customer’s Torii account

Use Truto’s frontend SDK to connect your customer’s Torii account. We handle all OAuth and API key flows — you don’t need to create the OAuth app.

02

We handle authentication

Don’t spend time refreshing access tokens or figuring out secure storage. We handle it and inject credentials into every API request.

03

Call our API, we call Torii

Truto’s Proxy API is a 1-to-1 mapping of the Torii API. You call us, we call Torii, and pass the response back in the same cycle.

04

Unified response format

Every response follows a single format across all integrations. We translate Torii’s pagination into unified cursor-based pagination. Data is always in the result attribute.

FAQs

Common questions about Torii on Truto

Authentication, rate limits, data freshness, and everything else you need to know before you integrate.

What authentication method does the Torii integration use?

Torii uses API token-based authentication. Your end users generate an API token from their Torii admin console and provide it when connecting through Truto's managed auth flow.

Which Truto Unified APIs does the Torii integration support?

Torii maps to the Unified User Directory API (Organizations, Roles, Users) and the Unified Single Sign-On API (App Users, Apps), giving you standardized access to Torii's user and application data.

Can I write data back to Torii, or is the integration read-only?

The integration supports both read and write operations. You can update users, update user-application records, create/update/delete contracts, create apps, and upload files — in addition to all list and get operations.

Does the integration support custom fields on Torii users?

Yes. You can retrieve user custom fields via list_all_torii_user_custom_fields and their metadata via list_all_torii_user_field_metadata, allowing you to access organization-specific attributes beyond Torii's standard user schema.

Can I search for specific apps in Torii's catalog?

Yes. In addition to listing all apps, the integration exposes a dedicated torii_apps_search tool that lets you query Torii's app catalog by name or other criteria.

How can I confirm that a Torii automation workflow has completed?

Use list_all_torii_workflow_action_executions to poll the status of workflow actions, including completion state and associated workflow IDs, so you can verify offboarding or provisioning tasks finished before taking downstream action.

Torii

Get Torii integrated into your app

Our team understands what it takes to make a Torii integration successful. A short, crisp 30 minute call with folks who understand the problem.

Talk to us