2025/12/19 - AWS Wickr Admin API - 42 new api methods
Changes AWS Wickr now provides a suite of admin APIs to allow you to programmatically manage secure communication for Wickr networks at scale. These APIs enable you to automate administrative workflows including user lifecycle management, network configuration, and security group administration.
Retrieves detailed information about a specific bot in a Wickr network, including its status, group membership, and authentication details.
See also: AWS API Documentation
Request Syntax
client.get_bot(
networkId='string',
botId='string'
)
string
[REQUIRED]
The ID of the Wickr network containing the bot.
string
[REQUIRED]
The unique identifier of the bot to retrieve.
dict
Response Syntax
{
'botId': 'string',
'displayName': 'string',
'username': 'string',
'uname': 'string',
'pubkey': 'string',
'status': 123,
'groupId': 'string',
'hasChallenge': True|False,
'suspended': True|False,
'lastLogin': 'string'
}
Response Structure
(dict) --
botId (string) --
The unique identifier of the bot.
displayName (string) --
The display name of the bot that is visible to users.
username (string) --
The username of the bot.
uname (string) --
The unique username hash identifier for the bot.
pubkey (string) --
The public key of the bot used for encryption.
status (integer) --
The current status of the bot (1 for pending, 2 for active).
groupId (string) --
The ID of the security group to which the bot belongs.
hasChallenge (boolean) --
Indicates whether the bot has a password set.
suspended (boolean) --
Indicates whether the bot is currently suspended.
lastLogin (string) --
The timestamp of the bot's last login.
Retrieves detailed information about a specific user in a Wickr network, including their profile, status, and activity history.
See also: AWS API Documentation
Request Syntax
client.get_user(
networkId='string',
userId='string',
startTime=datetime(2015, 1, 1),
endTime=datetime(2015, 1, 1)
)
string
[REQUIRED]
The ID of the Wickr network containing the user.
string
[REQUIRED]
The unique identifier of the user to retrieve.
datetime
The start time for filtering the user's last activity. Only activity after this timestamp will be considered. Time is specified in epoch seconds.
datetime
The end time for filtering the user's last activity. Only activity before this timestamp will be considered. Time is specified in epoch seconds.
dict
Response Syntax
{
'userId': 'string',
'firstName': 'string',
'lastName': 'string',
'username': 'string',
'isAdmin': True|False,
'suspended': True|False,
'status': 123,
'lastActivity': 123,
'lastLogin': 123,
'securityGroupIds': [
'string',
]
}
Response Structure
(dict) --
userId (string) --
The unique identifier of the user.
firstName (string) --
The first name of the user.
lastName (string) --
The last name of the user.
username (string) --
The email address or username of the user.
isAdmin (boolean) --
Indicates whether the user has administrator privileges in the network.
suspended (boolean) --
Indicates whether the user is currently suspended.
status (integer) --
The current status of the user (1 for pending, 2 for active).
lastActivity (integer) --
The timestamp of the user's last activity in the network, specified in epoch seconds.
lastLogin (integer) --
The timestamp of the user's last login to the network, specified in epoch seconds.
securityGroupIds (list) --
A list of security group IDs to which the user belongs.
(string) --
Updates the properties of an existing user in a Wickr network. This operation allows you to modify the user's name, password, security group membership, and invite code settings.
See also: AWS API Documentation
Request Syntax
client.update_user(
networkId='string',
userId='string',
userDetails={
'firstName': 'string',
'lastName': 'string',
'username': 'string',
'securityGroupIds': [
'string',
],
'inviteCode': 'string',
'inviteCodeTtl': 123,
'codeValidation': True|False
}
)
string
[REQUIRED]
The ID of the Wickr network containing the user to update.
string
[REQUIRED]
The unique identifier of the user to update.
dict
An object containing the user details to be updated, such as name, password, security groups, and invite code settings.
firstName (string) --
The new first name for the user.
lastName (string) --
The new last name for the user.
username (string) --
The new username or email address for the user.
securityGroupIds (list) --
The updated list of security group IDs to which the user should belong.
(string) --
inviteCode (string) --
A new custom invite code for the user.
inviteCodeTtl (integer) --
The new time-to-live for the invite code in days.
codeValidation (boolean) --
Indicates whether the user can be verified through a custom invite code.
dict
Response Syntax
{
'userId': 'string',
'networkId': 'string',
'securityGroupIds': [
'string',
],
'firstName': 'string',
'lastName': 'string',
'middleName': 'string',
'suspended': True|False,
'modified': 123,
'status': 123,
'inviteCode': 'string',
'inviteExpiration': 123,
'codeValidation': True|False
}
Response Structure
(dict) --
userId (string) --
The unique identifier of the updated user.
networkId (string) --
The ID of the network where the user was updated.
securityGroupIds (list) --
The list of security group IDs to which the user now belongs after the update.
(string) --
firstName (string) --
The updated first name of the user.
lastName (string) --
The updated last name of the user.
middleName (string) --
The middle name of the user (currently not used).
suspended (boolean) --
Indicates whether the user is suspended after the update.
modified (integer) --
The timestamp when the user was last modified, specified in epoch seconds.
status (integer) --
The user's status after the update.
inviteCode (string) --
The updated invite code for the user, if applicable.
inviteExpiration (integer) --
The expiration time of the user's invite code, specified in epoch seconds.
codeValidation (boolean) --
Indicates whether the user can be verified through a custom invite code.
Creates a data retention bot in a Wickr network. Data retention bots are specialized bots that handle message archiving and compliance by capturing and storing messages for regulatory or organizational requirements.
See also: AWS API Documentation
Request Syntax
client.create_data_retention_bot(
networkId='string'
)
string
[REQUIRED]
The ID of the Wickr network where the data retention bot will be created.
dict
Response Syntax
{
'message': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating that the data retention bot was successfully provisioned.
Updates the data retention bot settings, allowing you to enable or disable the data retention service, or acknowledge the public key message.
See also: AWS API Documentation
Request Syntax
client.update_data_retention(
networkId='string',
actionType='ENABLE'|'DISABLE'|'PUBKEY_MSG_ACK'
)
string
[REQUIRED]
The ID of the Wickr network containing the data retention bot.
string
[REQUIRED]
The action to perform. Valid values are 'ENABLE' (to enable the data retention service), 'DISABLE' (to disable the service), or 'PUBKEY_MSG_ACK' (to acknowledge the public key message).
dict
Response Syntax
{
'message': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating the result of the update operation.
Deletes a Wickr network and all its associated resources, including users, bots, security groups, and settings. This operation is permanent and cannot be undone.
See also: AWS API Documentation
Request Syntax
client.delete_network(
networkId='string',
clientToken='string'
)
string
[REQUIRED]
The ID of the Wickr network to delete.
string
A unique identifier for this request to ensure idempotency. If you retry a request with the same client token, the service will return the same response without attempting to delete the network again.
This field is autopopulated if not provided.
dict
Response Syntax
{
'message': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating that the network deletion has been initiated successfully.
Resets multiple devices for a specific user in a Wickr network. This operation forces the selected devices to log out and requires users to re-authenticate, which is useful for security purposes or when devices need to be revoked.
See also: AWS API Documentation
Request Syntax
client.batch_reset_devices_for_user(
networkId='string',
userId='string',
appIds=[
'string',
],
clientToken='string'
)
string
[REQUIRED]
The ID of the Wickr network containing the user whose devices will be reset.
string
[REQUIRED]
The ID of the user whose devices will be reset.
list
[REQUIRED]
A list of application IDs identifying the specific devices to be reset for the user. Maximum 50 devices per batch request.
(string) --
string
A unique identifier for this request to ensure idempotency.
This field is autopopulated if not provided.
dict
Response Syntax
{
'message': 'string',
'successful': [
{
'appId': 'string'
},
],
'failed': [
{
'field': 'string',
'reason': 'string',
'appId': 'string'
},
]
}
Response Structure
(dict) --
message (string) --
A message indicating the overall result of the batch device reset operation.
successful (list) --
A list of application IDs that were successfully reset.
(dict) --
Contains information about a device that was successfully processed in a batch device operation.
appId (string) --
The application ID of the device that was successfully processed.
failed (list) --
A list of device reset attempts that failed, including error details explaining why each device could not be reset.
(dict) --
Contains error information for a device operation that failed in a batch device request.
field (string) --
The field that caused the error.
reason (string) --
A description of why the device operation failed.
appId (string) --
The application ID of the device that failed to be processed.
Deletes the data retention bot from a Wickr network. This operation permanently removes the bot and all its associated data from the database.
See also: AWS API Documentation
Request Syntax
client.delete_data_retention_bot(
networkId='string'
)
string
[REQUIRED]
The ID of the Wickr network from which the data retention bot will be deleted.
dict
Response Syntax
{
'message': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating that the data retention bot and all associated data were successfully deleted.
Retrieves historical guest user count data for a Wickr network, showing the number of guest users per billing period over the past 90 days.
See also: AWS API Documentation
Request Syntax
client.get_guest_user_history_count(
networkId='string'
)
string
[REQUIRED]
The ID of the Wickr network for which to retrieve guest user history.
dict
Response Syntax
{
'history': [
{
'month': 'string',
'count': 'string'
},
]
}
Response Structure
(dict) --
history (list) --
A list of historical guest user counts, organized by month and billing period.
(dict) --
Contains the count of guest users for a specific billing period, used for tracking historical guest user activity.
month (string) --
The month and billing period in YYYY_MM format (e.g., '2024_01').
count (string) --
The number of guest users who have communicated with your Wickr network during this billing period.
Retrieves all network-level settings for a Wickr network, including client metrics, data retention, and other configuration options.
See also: AWS API Documentation
Request Syntax
client.get_network_settings(
networkId='string'
)
string
[REQUIRED]
The ID of the Wickr network whose settings will be retrieved.
dict
Response Syntax
{
'settings': [
{
'optionName': 'string',
'value': 'string',
'type': 'string'
},
]
}
Response Structure
(dict) --
settings (list) --
A list of network settings, where each setting includes a name, value, and type.
(dict) --
Represents a single network-level configuration setting with its name, value, and data type. Settings control network-wide behaviors and features.
optionName (string) --
The name of the network setting (e.g., 'enableClientMetrics', 'dataRetention').
value (string) --
The current value of the setting as a string. Boolean values are represented as 'true' or 'false'.
type (string) --
The data type of the setting value (e.g., 'boolean', 'string', 'number').
Retrieves a paginated list of guest users who have communicated with your Wickr network. Guest users are external users from federated networks who can communicate with network members.
See also: AWS API Documentation
Request Syntax
client.list_guest_users(
networkId='string',
maxResults=123,
sortDirection='ASC'|'DESC',
sortFields='string',
username='string',
billingPeriod='string',
nextToken='string'
)
string
[REQUIRED]
The ID of the Wickr network from which to list guest users.
integer
The maximum number of guest users to return in a single page. Valid range is 1-100. Default is 10.
string
The direction to sort results. Valid values are 'ASC' (ascending) or 'DESC' (descending). Default is 'DESC'.
string
The field to sort guest users by. Accepted values include 'username' and 'billingPeriod'.
string
Filter results to only include guest users with usernames matching this value.
string
Filter results to only include guest users from this billing period (e.g., '2024-01').
string
The token for retrieving the next page of results. This is returned from a previous request when there are more results available.
dict
Response Syntax
{
'nextToken': 'string',
'guestlist': [
{
'billingPeriod': 'string',
'username': 'string',
'usernameHash': 'string'
},
]
}
Response Structure
(dict) --
nextToken (string) --
The token to use for retrieving the next page of results. If this is not present, there are no more results.
guestlist (list) --
A list of guest user objects within the current page.
(dict) --
Represents a guest user who has accessed the network from a federated Wickr network.
billingPeriod (string) --
The billing period when this guest user accessed the network (e.g., '2024-01').
username (string) --
The username of the guest user.
usernameHash (string) --
The unique username hash identifier for the guest user.
Updates the properties of an existing security group in a Wickr network, such as its name or settings.
See also: AWS API Documentation
Request Syntax
client.update_security_group(
networkId='string',
groupId='string',
name='string',
securityGroupSettings={
'alwaysReauthenticate': True|False,
'atakPackageValues': [
'string',
],
'calling': {
'canStart11Call': True|False,
'canVideoCall': True|False,
'forceTcpCall': True|False
},
'checkForUpdates': True|False,
'enableAtak': True|False,
'enableCrashReports': True|False,
'enableFileDownload': True|False,
'enableGuestFederation': True|False,
'enableNotificationPreview': True|False,
'enableOpenAccessOption': True|False,
'enableRestrictedGlobalFederation': True|False,
'filesEnabled': True|False,
'forceDeviceLockout': 123,
'forceOpenAccess': True|False,
'forceReadReceipts': True|False,
'globalFederation': True|False,
'isAtoEnabled': True|False,
'isLinkPreviewEnabled': True|False,
'locationAllowMaps': True|False,
'locationEnabled': True|False,
'maxAutoDownloadSize': 123,
'maxBor': 123,
'maxTtl': 123,
'messageForwardingEnabled': True|False,
'passwordRequirements': {
'lowercase': 123,
'minLength': 123,
'numbers': 123,
'symbols': 123,
'uppercase': 123
},
'presenceEnabled': True|False,
'quickResponses': [
'string',
],
'showMasterRecoveryKey': True|False,
'shredder': {
'canProcessManually': True|False,
'intensity': 123
},
'ssoMaxIdleMinutes': 123,
'federationMode': 123,
'lockoutThreshold': 123,
'permittedNetworks': [
'string',
],
'permittedWickrAwsNetworks': [
{
'region': 'string',
'networkId': 'string'
},
],
'permittedWickrEnterpriseNetworks': [
{
'domain': 'string',
'networkId': 'string'
},
]
}
)
string
[REQUIRED]
The ID of the Wickr network containing the security group to update.
string
[REQUIRED]
The unique identifier of the security group to update.
string
The new name for the security group.
dict
The updated configuration settings for the security group.
Federation mode - 0 (Local federation), 1 (Restricted federation), 2 (Global federation)
alwaysReauthenticate (boolean) --
Requires users to reauthenticate every time they return to the application, providing an additional layer of security.
atakPackageValues (list) --
Configuration values for ATAK (Android Team Awareness Kit) package integration, when ATAK is enabled.
(string) --
calling (dict) --
The calling feature permissions and settings that control what types of calls users can initiate and participate in.
canStart11Call (boolean) --
Specifies whether users can start one-to-one calls.
canVideoCall (boolean) --
Specifies whether users can make video calls (as opposed to audio-only calls). Valid only when audio call(canStart11Call) is enabled.
forceTcpCall (boolean) --
When enabled, forces all calls to use TCP protocol instead of UDP for network traversal.
checkForUpdates (boolean) --
Enables automatic checking for Wickr client updates to ensure users stay current with the latest version.
enableAtak (boolean) --
Enables ATAK (Android Team Awareness Kit) integration for tactical communication and situational awareness.
enableCrashReports (boolean) --
Allow users to report crashes.
enableFileDownload (boolean) --
Specifies whether users can download files from messages to their devices.
enableGuestFederation (boolean) --
Allows users to communicate with guest users from other Wickr networks and federated external networks.
enableNotificationPreview (boolean) --
Enables message preview text in push notifications, allowing users to see message content before opening the app.
enableOpenAccessOption (boolean) --
Allow users to avoid censorship when they are geo-blocked or have network limitations.
enableRestrictedGlobalFederation (boolean) --
Enables restricted global federation, limiting external communication to only specified permitted networks.
filesEnabled (boolean) --
Enables file sharing capabilities, allowing users to send and receive files in conversations.
forceDeviceLockout (integer) --
Defines the number of failed login attempts before data stored on the device is reset. Should be less than lockoutThreshold.
forceOpenAccess (boolean) --
Automatically enable and enforce Wickr open access on all devices. Valid only if enableOpenAccessOption settings is enabled.
forceReadReceipts (boolean) --
Allow user approved bots to read messages in rooms without using a slash command.
globalFederation (boolean) --
Allows users to communicate with users on other Wickr instances (Wickr Enterprise) outside the current network.
isAtoEnabled (boolean) --
Enforces a two-factor authentication when a user adds a new device to their account.
isLinkPreviewEnabled (boolean) --
Enables automatic preview of links shared in messages, showing webpage thumbnails and descriptions.
locationAllowMaps (boolean) --
Allows map integration in location sharing, enabling users to view shared locations on interactive maps. Only allowed when location setting is enabled.
locationEnabled (boolean) --
Enables location sharing features, allowing users to share their current location with others.
maxAutoDownloadSize (integer) --
The maximum file size in bytes that will be automatically downloaded without user confirmation. Only allowed if fileDownload is enabled. Valid Values [512000 (low_quality), 7340032 (high_quality) ]
maxBor (integer) --
The maximum burn-on-read (BOR) time in seconds, which determines how long messages remain visible before auto-deletion after being read.
maxTtl (integer) --
The maximum time-to-live (TTL) in seconds for messages, after which they will be automatically deleted from all devices.
messageForwardingEnabled (boolean) --
Enables message forwarding, allowing users to forward messages from one conversation to another.
passwordRequirements (dict) --
The password complexity requirements that users must follow when creating or changing passwords.
lowercase (integer) --
The minimum number of lowercase letters required in passwords.
minLength (integer) --
The minimum password length in characters.
numbers (integer) --
The minimum number of numeric characters required in passwords.
symbols (integer) --
The minimum number of special symbol characters required in passwords.
uppercase (integer) --
The minimum number of uppercase letters required in passwords.
presenceEnabled (boolean) --
Enables presence indicators that show whether users are online, away, or offline.
quickResponses (list) --
A list of pre-defined quick response message templates that users can send with a single tap.
(string) --
showMasterRecoveryKey (boolean) --
Users will get a master recovery key that can be used to securely sign in to their Wickr account without having access to their primary device for authentication. Available in SSO enabled network.
shredder (dict) --
The message shredder configuration that controls secure deletion of messages and files from devices.
canProcessManually (boolean) --
Specifies whether users can manually trigger the shredder to delete content.
intensity (integer) --
Prevents Wickr data from being recovered by overwriting deleted Wickr data. Valid Values: Must be one of [0, 20, 60, 100]
ssoMaxIdleMinutes (integer) --
The duration for which users SSO session remains inactive before automatically logging them out for security. Available in SSO enabled network.
federationMode (integer) --
The local federation mode controlling how users can communicate with other networks. Values: 0 (none), 1 (federated), 2 (restricted).
lockoutThreshold (integer) --
The number of failed password attempts before a user account is locked out.
permittedNetworks (list) --
A list of network IDs that are permitted for local federation when federation mode is set to restricted.
(string) --
permittedWickrAwsNetworks (list) --
A list of permitted Wickr networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Amazon Web Services Wickr network by region and network ID, used for configuring permitted networks for global federation.
region (string) -- [REQUIRED]
The Amazon Web Services region identifier where the network is hosted (e.g., 'us-east-1').
networkId (string) -- [REQUIRED]
The network ID of the Wickr Amazon Web Services network.
permittedWickrEnterpriseNetworks (list) --
A list of permitted Wickr Enterprise networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Wickr enterprise network that is permitted for global federation, allowing users to communicate with members of the specified network.
domain (string) -- [REQUIRED]
The domain identifier for the permitted Wickr enterprise network.
networkId (string) -- [REQUIRED]
The network ID of the permitted Wickr enterprise network.
dict
Response Syntax
{
'securityGroup': {
'activeMembers': 123,
'botMembers': 123,
'activeDirectoryGuid': 'string',
'id': 'string',
'isDefault': True|False,
'name': 'string',
'modified': 123,
'securityGroupSettings': {
'alwaysReauthenticate': True|False,
'atakPackageValues': [
'string',
],
'calling': {
'canStart11Call': True|False,
'canVideoCall': True|False,
'forceTcpCall': True|False
},
'checkForUpdates': True|False,
'enableAtak': True|False,
'enableCrashReports': True|False,
'enableFileDownload': True|False,
'enableGuestFederation': True|False,
'enableNotificationPreview': True|False,
'enableOpenAccessOption': True|False,
'enableRestrictedGlobalFederation': True|False,
'filesEnabled': True|False,
'forceDeviceLockout': 123,
'forceOpenAccess': True|False,
'forceReadReceipts': True|False,
'globalFederation': True|False,
'isAtoEnabled': True|False,
'isLinkPreviewEnabled': True|False,
'locationAllowMaps': True|False,
'locationEnabled': True|False,
'maxAutoDownloadSize': 123,
'maxBor': 123,
'maxTtl': 123,
'messageForwardingEnabled': True|False,
'passwordRequirements': {
'lowercase': 123,
'minLength': 123,
'numbers': 123,
'symbols': 123,
'uppercase': 123
},
'presenceEnabled': True|False,
'quickResponses': [
'string',
],
'showMasterRecoveryKey': True|False,
'shredder': {
'canProcessManually': True|False,
'intensity': 123
},
'ssoMaxIdleMinutes': 123,
'federationMode': 123,
'lockoutThreshold': 123,
'permittedNetworks': [
'string',
],
'permittedWickrAwsNetworks': [
{
'region': 'string',
'networkId': 'string'
},
],
'permittedWickrEnterpriseNetworks': [
{
'domain': 'string',
'networkId': 'string'
},
]
}
}
}
Response Structure
(dict) --
securityGroup (dict) --
The updated security group details, including the new settings.
activeMembers (integer) --
The number of active user members currently in the security group.
botMembers (integer) --
The number of bot members currently in the security group.
activeDirectoryGuid (string) --
The GUID of the Active Directory group associated with this security group, if synchronized with LDAP.
id (string) --
The unique identifier of the security group.
isDefault (boolean) --
Indicates whether this is the default security group for the network. Each network has only one default group.
name (string) --
The human-readable name of the security group.
modified (integer) --
The timestamp when the security group was last modified, specified in epoch seconds.
securityGroupSettings (dict) --
The comprehensive configuration settings that define capabilities and restrictions for members of this security group.
alwaysReauthenticate (boolean) --
Requires users to reauthenticate every time they return to the application, providing an additional layer of security.
atakPackageValues (list) --
Configuration values for ATAK (Android Team Awareness Kit) package integration, when ATAK is enabled.
(string) --
calling (dict) --
The calling feature permissions and settings that control what types of calls users can initiate and participate in.
canStart11Call (boolean) --
Specifies whether users can start one-to-one calls.
canVideoCall (boolean) --
Specifies whether users can make video calls (as opposed to audio-only calls). Valid only when audio call(canStart11Call) is enabled.
forceTcpCall (boolean) --
When enabled, forces all calls to use TCP protocol instead of UDP for network traversal.
checkForUpdates (boolean) --
Enables automatic checking for Wickr client updates to ensure users stay current with the latest version.
enableAtak (boolean) --
Enables ATAK (Android Team Awareness Kit) integration for tactical communication and situational awareness.
enableCrashReports (boolean) --
Allow users to report crashes.
enableFileDownload (boolean) --
Specifies whether users can download files from messages to their devices.
enableGuestFederation (boolean) --
Allows users to communicate with guest users from other Wickr networks and federated external networks.
enableNotificationPreview (boolean) --
Enables message preview text in push notifications, allowing users to see message content before opening the app.
enableOpenAccessOption (boolean) --
Allow users to avoid censorship when they are geo-blocked or have network limitations.
enableRestrictedGlobalFederation (boolean) --
Enables restricted global federation, limiting external communication to only specified permitted networks.
filesEnabled (boolean) --
Enables file sharing capabilities, allowing users to send and receive files in conversations.
forceDeviceLockout (integer) --
Defines the number of failed login attempts before data stored on the device is reset. Should be less than lockoutThreshold.
forceOpenAccess (boolean) --
Automatically enable and enforce Wickr open access on all devices. Valid only if enableOpenAccessOption settings is enabled.
forceReadReceipts (boolean) --
Allow user approved bots to read messages in rooms without using a slash command.
globalFederation (boolean) --
Allows users to communicate with users on other Wickr instances (Wickr Enterprise) outside the current network.
isAtoEnabled (boolean) --
Enforces a two-factor authentication when a user adds a new device to their account.
isLinkPreviewEnabled (boolean) --
Enables automatic preview of links shared in messages, showing webpage thumbnails and descriptions.
locationAllowMaps (boolean) --
Allows map integration in location sharing, enabling users to view shared locations on interactive maps. Only allowed when location setting is enabled.
locationEnabled (boolean) --
Enables location sharing features, allowing users to share their current location with others.
maxAutoDownloadSize (integer) --
The maximum file size in bytes that will be automatically downloaded without user confirmation. Only allowed if fileDownload is enabled. Valid Values [512000 (low_quality), 7340032 (high_quality) ]
maxBor (integer) --
The maximum burn-on-read (BOR) time in seconds, which determines how long messages remain visible before auto-deletion after being read.
maxTtl (integer) --
The maximum time-to-live (TTL) in seconds for messages, after which they will be automatically deleted from all devices.
messageForwardingEnabled (boolean) --
Enables message forwarding, allowing users to forward messages from one conversation to another.
passwordRequirements (dict) --
The password complexity requirements that users must follow when creating or changing passwords.
lowercase (integer) --
The minimum number of lowercase letters required in passwords.
minLength (integer) --
The minimum password length in characters.
numbers (integer) --
The minimum number of numeric characters required in passwords.
symbols (integer) --
The minimum number of special symbol characters required in passwords.
uppercase (integer) --
The minimum number of uppercase letters required in passwords.
presenceEnabled (boolean) --
Enables presence indicators that show whether users are online, away, or offline.
quickResponses (list) --
A list of pre-defined quick response message templates that users can send with a single tap.
(string) --
showMasterRecoveryKey (boolean) --
Users will get a master recovery key that can be used to securely sign in to their Wickr account without having access to their primary device for authentication. Available in SSO enabled network.
shredder (dict) --
The message shredder configuration that controls secure deletion of messages and files from devices.
canProcessManually (boolean) --
Specifies whether users can manually trigger the shredder to delete content.
intensity (integer) --
Prevents Wickr data from being recovered by overwriting deleted Wickr data. Valid Values: Must be one of [0, 20, 60, 100]
ssoMaxIdleMinutes (integer) --
The duration for which users SSO session remains inactive before automatically logging them out for security. Available in SSO enabled network.
federationMode (integer) --
The local federation mode controlling how users can communicate with other networks. Values: 0 (none), 1 (federated), 2 (restricted).
lockoutThreshold (integer) --
The number of failed password attempts before a user account is locked out.
permittedNetworks (list) --
A list of network IDs that are permitted for local federation when federation mode is set to restricted.
(string) --
permittedWickrAwsNetworks (list) --
A list of permitted Wickr networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Amazon Web Services Wickr network by region and network ID, used for configuring permitted networks for global federation.
region (string) --
The Amazon Web Services region identifier where the network is hosted (e.g., 'us-east-1').
networkId (string) --
The network ID of the Wickr Amazon Web Services network.
permittedWickrEnterpriseNetworks (list) --
A list of permitted Wickr Enterprise networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Wickr enterprise network that is permitted for global federation, allowing users to communicate with members of the specified network.
domain (string) --
The domain identifier for the permitted Wickr enterprise network.
networkId (string) --
The network ID of the permitted Wickr enterprise network.
Retrieves a paginated list of users in a specified Wickr network. You can filter and sort the results based on various criteria such as name, status, or security group membership.
See also: AWS API Documentation
Request Syntax
client.list_users(
networkId='string',
nextToken='string',
maxResults=123,
sortFields='string',
sortDirection='ASC'|'DESC',
firstName='string',
lastName='string',
username='string',
status=123,
groupId='string'
)
string
[REQUIRED]
The ID of the Wickr network from which to list users.
string
The token for retrieving the next page of results. This is returned from a previous request when there are more results available.
integer
The maximum number of users to return in a single page. Valid range is 1-100. Default is 10.
string
The fields to sort users by. Multiple fields can be specified by separating them with '+'. Accepted values include 'username', 'firstName', 'lastName', 'status', and 'groupId'.
string
The direction to sort results. Valid values are 'ASC' (ascending) or 'DESC' (descending). Default is 'DESC'.
string
Filter results to only include users with first names matching this value.
string
Filter results to only include users with last names matching this value.
string
Filter results to only include users with usernames matching this value.
integer
Filter results to only include users with this status (1 for pending, 2 for active).
string
Filter results to only include users belonging to this security group.
dict
Response Syntax
{
'nextToken': 'string',
'users': [
{
'userId': 'string',
'firstName': 'string',
'lastName': 'string',
'username': 'string',
'securityGroups': [
'string',
],
'isAdmin': True|False,
'suspended': True|False,
'status': 123,
'otpEnabled': True|False,
'scimId': 'string',
'type': 'string',
'cell': 'string',
'countryCode': 'string',
'challengeFailures': 123,
'isInviteExpired': True|False,
'isUser': True|False,
'inviteCode': 'string',
'codeValidation': True|False,
'uname': 'string'
},
]
}
Response Structure
(dict) --
nextToken (string) --
The token to use for retrieving the next page of results. If this is not present, there are no more results.
users (list) --
A list of user objects matching the specified filters and within the current page.
(dict) --
Represents a user account in a Wickr network with detailed profile information, status, security settings, and authentication details.
userId (string) --
The unique identifier for the user within the network.
firstName (string) --
The first name of the user.
lastName (string) --
The last name of the user.
username (string) --
The email address or username of the user. For bots, this must end in 'bot'.
securityGroups (list) --
A list of security group IDs to which the user is assigned, determining their permissions and feature access.
(string) --
isAdmin (boolean) --
Indicates whether the user has administrator privileges in the network.
suspended (boolean) --
Indicates whether the user is currently suspended and unable to access the network.
status (integer) --
The current status of the user (1 for pending invitation, 2 for active).
otpEnabled (boolean) --
Indicates whether one-time password (OTP) authentication is enabled for the user.
scimId (string) --
The SCIM (System for Cross-domain Identity Management) identifier for the user, used for identity synchronization. Currently not used.
type (string) --
The descriptive type of the user account (e.g., 'user').
cell (string) --
The phone number minus country code, used for cloud deployments.
countryCode (string) --
The country code for the user's phone number, used for cloud deployments.
challengeFailures (integer) --
The number of failed password attempts for enterprise deployments, used for account lockout policies.
isInviteExpired (boolean) --
Indicates whether the user's email invitation code has expired, applicable to cloud deployments.
isUser (boolean) --
Indicates whether this account is a user (as opposed to a bot or other account type).
inviteCode (string) --
The invitation code for this user, used during registration to join the network.
codeValidation (boolean) --
Indicates whether the user can be verified through a custom invite code.
uname (string) --
The unique identifier for the user.
Suspends or unsuspends multiple users in a Wickr network. Suspended users cannot access the network until they are unsuspended. This operation is useful for temporarily restricting access without deleting user accounts.
See also: AWS API Documentation
Request Syntax
client.batch_toggle_user_suspend_status(
networkId='string',
suspend=True|False,
userIds=[
'string',
],
clientToken='string'
)
string
[REQUIRED]
The ID of the Wickr network where users will be suspended or unsuspended.
boolean
[REQUIRED]
A boolean value indicating whether to suspend (true) or unsuspend (false) the specified users.
list
[REQUIRED]
A list of user IDs identifying the users whose suspend status will be toggled. Maximum 50 users per batch request.
(string) --
string
A unique identifier for this request to ensure idempotency.
This field is autopopulated if not provided.
dict
Response Syntax
{
'message': 'string',
'successful': [
{
'userId': 'string'
},
],
'failed': [
{
'field': 'string',
'reason': 'string',
'userId': 'string'
},
]
}
Response Structure
(dict) --
message (string) --
A message indicating the overall result of the batch suspend status toggle operation.
successful (list) --
A list of user IDs whose suspend status was successfully toggled.
(dict) --
Contains information about a user that was successfully processed in a batch user operation.
userId (string) --
The user ID that was successfully processed.
failed (list) --
A list of suspend status toggle attempts that failed, including error details explaining why each user's status could not be changed.
(dict) --
Contains error information for a user operation that failed in a batch user request.
field (string) --
The field that caused the error.
reason (string) --
A description of why the user operation failed.
userId (string) --
The user ID associated with the failed operation.
Deletes a security group from a Wickr network. This operation cannot be performed on the default security group.
See also: AWS API Documentation
Request Syntax
client.delete_security_group(
networkId='string',
groupId='string'
)
string
[REQUIRED]
The ID of the Wickr network from which the security group will be deleted.
string
[REQUIRED]
The unique identifier of the security group to delete.
dict
Response Syntax
{
'message': 'string',
'networkId': 'string',
'groupId': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating the result of the security group deletion operation.
networkId (string) --
The ID of the network from which the security group was deleted.
groupId (string) --
The ID of the security group that was deleted.
Updates network-level settings for a Wickr network. You can modify settings such as client metrics, data retention, and other network-wide options.
See also: AWS API Documentation
Request Syntax
client.update_network_settings(
networkId='string',
settings={
'enableClientMetrics': True|False,
'readReceiptConfig': {
'status': 'DISABLED'|'ENABLED'|'FORCE_ENABLED'
},
'dataRetention': True|False
}
)
string
[REQUIRED]
The ID of the Wickr network whose settings will be updated.
dict
[REQUIRED]
A map of setting names to their new values. Each setting should be provided with its appropriate type (boolean, string, number, etc.).
enableClientMetrics (boolean) --
Allows Wickr clients to send anonymized performance and usage metrics to the Wickr backend server for service improvement and troubleshooting.
readReceiptConfig (dict) --
Configuration for read receipts at the network level, controlling the default behavior for whether senders can see when their messages have been read.
status (string) --
The read receipt status mode for the network.
dataRetention (boolean) --
Indicates whether the data retention feature is enabled for the network. When true, messages are captured by the data retention bot for compliance and archiving purposes.
dict
Response Syntax
{
'settings': [
{
'optionName': 'string',
'value': 'string',
'type': 'string'
},
]
}
Response Structure
(dict) --
settings (list) --
A list of the updated network settings, showing the new values for each modified setting.
(dict) --
Represents a single network-level configuration setting with its name, value, and data type. Settings control network-wide behaviors and features.
optionName (string) --
The name of the network setting (e.g., 'enableClientMetrics', 'dataRetention').
value (string) --
The current value of the setting as a string. Boolean values are represented as 'true' or 'false'.
type (string) --
The data type of the setting value (e.g., 'boolean', 'string', 'number').
Retrieves a paginated list of devices associated with a specific user in a Wickr network. This operation returns information about all devices where the user has logged into Wickr.
See also: AWS API Documentation
Request Syntax
client.list_devices_for_user(
networkId='string',
userId='string',
nextToken='string',
maxResults=123,
sortFields='string',
sortDirection='ASC'|'DESC'
)
string
[REQUIRED]
The ID of the Wickr network containing the user.
string
[REQUIRED]
The unique identifier of the user whose devices will be listed.
string
The token for retrieving the next page of results. This is returned from a previous request when there are more results available.
integer
The maximum number of devices to return in a single page. Valid range is 1-100. Default is 10.
string
The fields to sort devices by. Multiple fields can be specified by separating them with '+'. Accepted values include 'lastlogin', 'type', 'suspend', and 'created'.
string
The direction to sort results. Valid values are 'ASC' (ascending) or 'DESC' (descending). Default is 'DESC'.
dict
Response Syntax
{
'nextToken': 'string',
'devices': [
{
'appId': 'string',
'created': 'string',
'lastLogin': 'string',
'statusText': 'string',
'suspend': True|False,
'type': 'string'
},
]
}
Response Structure
(dict) --
nextToken (string) --
The token to use for retrieving the next page of results. If this is not present, there are no more results.
devices (list) --
A list of device objects associated with the user within the current page.
(dict) --
Represents a device where a user has logged into Wickr, containing information about the device's type, status, and login history.
appId (string) --
The unique application ID for the Wickr app on this device.
created (string) --
The timestamp when the device first appeared in the Wickr database.
lastLogin (string) --
The timestamp when the device last successfully logged into Wickr. This is also used to determine SSO idle time.
statusText (string) --
The current status of the device, either 'Active' or 'Reset' depending on whether the device is currently active or has been marked for reset.
suspend (boolean) --
Indicates whether the device is suspended.
type (string) --
The operating system of the device (e.g., 'MacOSX', 'Windows', 'iOS', 'Android').
Deletes a bot from a specified Wickr network. This operation permanently removes the bot account and its associated data from the network.
See also: AWS API Documentation
Request Syntax
client.delete_bot(
networkId='string',
botId='string'
)
string
[REQUIRED]
The ID of the Wickr network from which the bot will be deleted.
string
[REQUIRED]
The unique identifier of the bot to be deleted.
dict
Response Syntax
{
'message': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating the result of the bot deletion operation.
Retrieves the OpenID Connect (OIDC) configuration for a Wickr network, including SSO settings and optional token information if access token parameters are provided.
See also: AWS API Documentation
Request Syntax
client.get_oidc_info(
networkId='string',
clientId='string',
code='string',
grantType='string',
redirectUri='string',
url='string',
clientSecret='string',
codeVerifier='string',
certificate='string'
)
string
[REQUIRED]
The ID of the Wickr network whose OIDC configuration will be retrieved.
string
The OAuth client ID for retrieving access tokens (optional).
string
The authorization code for retrieving access tokens (optional).
string
The OAuth grant type for retrieving access tokens (optional).
string
The redirect URI for the OAuth flow (optional).
string
The URL for the OIDC provider (optional).
string
The OAuth client secret for retrieving access tokens (optional).
string
The PKCE code verifier for enhanced security in the OAuth flow (optional).
string
The CA certificate for secure communication with the OIDC provider (optional).
dict
Response Syntax
{
'openidConnectInfo': {
'applicationName': 'string',
'clientId': 'string',
'companyId': 'string',
'scopes': 'string',
'issuer': 'string',
'clientSecret': 'string',
'secret': 'string',
'redirectUrl': 'string',
'userId': 'string',
'customUsername': 'string',
'caCertificate': 'string',
'applicationId': 123,
'ssoTokenBufferMinutes': 123,
'extraAuthParams': 'string'
},
'tokenInfo': {
'codeVerifier': 'string',
'codeChallenge': 'string',
'accessToken': 'string',
'idToken': 'string',
'refreshToken': 'string',
'tokenType': 'string',
'expiresIn': 123
}
}
Response Structure
(dict) --
openidConnectInfo (dict) --
The OpenID Connect configuration information for the network, including issuer, client ID, scopes, and other SSO settings.
applicationName (string) --
The name of the OIDC application as registered with the identity provider.
clientId (string) --
The OAuth client ID assigned by the identity provider for authentication requests.
companyId (string) --
Custom identifier your end users will use to sign in with SSO.
scopes (string) --
The OAuth scopes requested from the identity provider, which determine what user information is accessible (e.g., 'openid profile email').
issuer (string) --
The issuer URL of the identity provider, which serves as the base URL for OIDC endpoints and configuration discovery.
clientSecret (string) --
The OAuth client secret used to authenticate the application with the identity provider.
secret (string) --
An additional secret credential used by the identity provider for authentication.
redirectUrl (string) --
The callback URL where the identity provider redirects users after successful authentication. This URL must be registered with the identity provider.
userId (string) --
The claim field from the OIDC token to use as the unique user identifier (e.g., 'email', 'sub', or a custom claim).
customUsername (string) --
A custom field mapping to extract the username from the OIDC token when the standard username claim is insufficient.
caCertificate (string) --
The X.509 CA certificate for validating SSL/TLS connections to the identity provider when using self-signed or enterprise certificates.
applicationId (integer) --
The unique identifier for the registered OIDC application. Valid range is 1-10.
ssoTokenBufferMinutes (integer) --
The grace period in minutes before the SSO token expires when the system should proactively refresh the token to maintain seamless user access.
extraAuthParams (string) --
Additional authentication parameters to include in the OIDC authorization request as a query string. Useful for provider-specific extensions.
tokenInfo (dict) --
OAuth token information including access token, refresh token, and expiration details (only present if token parameters were provided in the request).
codeVerifier (string) --
The PKCE (Proof Key for Code Exchange) code verifier, a cryptographically random string used to enhance security in the OAuth flow.
codeChallenge (string) --
The PKCE code challenge, a transformed version of the code verifier sent during the authorization request for verification.
accessToken (string) --
The OAuth access token that can be used to access protected resources on behalf of the authenticated user.
idToken (string) --
The OpenID Connect ID token containing user identity information and authentication context as a signed JWT.
refreshToken (string) --
The OAuth refresh token that can be used to obtain new access tokens without requiring the user to re-authenticate.
tokenType (string) --
The type of access token issued, typically 'Bearer', which indicates how the token should be used in API requests.
expiresIn (integer) --
The lifetime of the access token in seconds, indicating when the token will expire and need to be refreshed.
Updates the properties of an existing bot in a Wickr network. This operation allows you to modify the bot's display name, security group, password, or suspension status.
See also: AWS API Documentation
Request Syntax
client.update_bot(
networkId='string',
botId='string',
displayName='string',
groupId='string',
challenge='string',
suspend=True|False
)
string
[REQUIRED]
The ID of the Wickr network containing the bot to update.
string
[REQUIRED]
The unique identifier of the bot to update.
string
The new display name for the bot.
string
The ID of the new security group to assign the bot to.
string
The new password for the bot account.
boolean
Set to true to suspend the bot or false to unsuspend it. Omit this field for standard updates that don't affect suspension status.
dict
Response Syntax
{
'message': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating the result of the bot update operation.
Updates the properties of an existing Wickr network, such as its name or encryption key configuration.
See also: AWS API Documentation
Request Syntax
client.update_network(
networkId='string',
networkName='string',
clientToken='string',
encryptionKeyArn='string'
)
string
[REQUIRED]
The ID of the Wickr network to update.
string
[REQUIRED]
The new name for the network. Must be between 1 and 20 characters.
string
A unique identifier for this request to ensure idempotency.
This field is autopopulated if not provided.
string
The ARN of the Amazon Web Services KMS customer managed key to use for encrypting sensitive data in the network.
dict
Response Syntax
{
'message': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating that the network was updated successfully.
Retrieves a paginated list of users who belong to a specific security group in a Wickr network.
See also: AWS API Documentation
Request Syntax
client.list_security_group_users(
networkId='string',
groupId='string',
nextToken='string',
maxResults=123,
sortFields='string',
sortDirection='ASC'|'DESC'
)
string
[REQUIRED]
The ID of the Wickr network containing the security group.
string
[REQUIRED]
The unique identifier of the security group whose users will be listed.
string
The token for retrieving the next page of results. This is returned from a previous request when there are more results available.
integer
The maximum number of users to return in a single page. Valid range is 1-100. Default is 10.
string
The field to sort users by. Multiple fields can be specified by separating them with '+'. Accepted values include 'username', 'firstName', and 'lastName'.
string
The direction to sort results. Valid values are 'ASC' (ascending) or 'DESC' (descending). Default is 'DESC'.
dict
Response Syntax
{
'users': [
{
'userId': 'string',
'firstName': 'string',
'lastName': 'string',
'username': 'string',
'securityGroups': [
'string',
],
'isAdmin': True|False,
'suspended': True|False,
'status': 123,
'otpEnabled': True|False,
'scimId': 'string',
'type': 'string',
'cell': 'string',
'countryCode': 'string',
'challengeFailures': 123,
'isInviteExpired': True|False,
'isUser': True|False,
'inviteCode': 'string',
'codeValidation': True|False,
'uname': 'string'
},
],
'nextToken': 'string'
}
Response Structure
(dict) --
users (list) --
A list of user objects belonging to the security group within the current page.
(dict) --
Represents a user account in a Wickr network with detailed profile information, status, security settings, and authentication details.
userId (string) --
The unique identifier for the user within the network.
firstName (string) --
The first name of the user.
lastName (string) --
The last name of the user.
username (string) --
The email address or username of the user. For bots, this must end in 'bot'.
securityGroups (list) --
A list of security group IDs to which the user is assigned, determining their permissions and feature access.
(string) --
isAdmin (boolean) --
Indicates whether the user has administrator privileges in the network.
suspended (boolean) --
Indicates whether the user is currently suspended and unable to access the network.
status (integer) --
The current status of the user (1 for pending invitation, 2 for active).
otpEnabled (boolean) --
Indicates whether one-time password (OTP) authentication is enabled for the user.
scimId (string) --
The SCIM (System for Cross-domain Identity Management) identifier for the user, used for identity synchronization. Currently not used.
type (string) --
The descriptive type of the user account (e.g., 'user').
cell (string) --
The phone number minus country code, used for cloud deployments.
countryCode (string) --
The country code for the user's phone number, used for cloud deployments.
challengeFailures (integer) --
The number of failed password attempts for enterprise deployments, used for account lockout policies.
isInviteExpired (boolean) --
Indicates whether the user's email invitation code has expired, applicable to cloud deployments.
isUser (boolean) --
Indicates whether this account is a user (as opposed to a bot or other account type).
inviteCode (string) --
The invitation code for this user, used during registration to join the network.
codeValidation (boolean) --
Indicates whether the user can be verified through a custom invite code.
uname (string) --
The unique identifier for the user.
nextToken (string) --
The token to use for retrieving the next page of results. If this is not present, there are no more results.
Tests an OpenID Connect (OIDC) configuration for a Wickr network by validating the connection to the identity provider and retrieving its supported capabilities.
See also: AWS API Documentation
Request Syntax
client.register_oidc_config_test(
networkId='string',
extraAuthParams='string',
issuer='string',
scopes='string',
certificate='string'
)
string
[REQUIRED]
The ID of the Wickr network for which the OIDC configuration will be tested.
string
Additional authentication parameters to include in the test (optional).
string
[REQUIRED]
The issuer URL of the OIDC provider to test.
string
[REQUIRED]
The OAuth scopes to test with the OIDC provider.
string
The CA certificate for secure communication with the OIDC provider (optional).
dict
Response Syntax
{
'tokenEndpoint': 'string',
'userinfoEndpoint': 'string',
'responseTypesSupported': [
'string',
],
'scopesSupported': [
'string',
],
'issuer': 'string',
'authorizationEndpoint': 'string',
'endSessionEndpoint': 'string',
'logoutEndpoint': 'string',
'grantTypesSupported': [
'string',
],
'revocationEndpoint': 'string',
'tokenEndpointAuthMethodsSupported': [
'string',
],
'microsoftMultiRefreshToken': True|False
}
Response Structure
(dict) --
tokenEndpoint (string) --
The token endpoint URL discovered from the OIDC provider.
userinfoEndpoint (string) --
The user info endpoint URL discovered from the OIDC provider.
responseTypesSupported (list) --
The OAuth response types supported by the OIDC provider.
(string) --
scopesSupported (list) --
The OAuth scopes supported by the OIDC provider.
(string) --
issuer (string) --
The issuer URL confirmed by the OIDC provider.
authorizationEndpoint (string) --
The authorization endpoint URL discovered from the OIDC provider.
endSessionEndpoint (string) --
The end session endpoint URL for logging out users from the OIDC provider.
logoutEndpoint (string) --
The logout endpoint URL for terminating user sessions.
grantTypesSupported (list) --
The OAuth grant types supported by the OIDC provider.
(string) --
revocationEndpoint (string) --
The token revocation endpoint URL for invalidating tokens.
tokenEndpointAuthMethodsSupported (list) --
The authentication methods supported by the token endpoint.
(string) --
microsoftMultiRefreshToken (boolean) --
Indicates whether the provider supports Microsoft multi-refresh tokens.
Retrieves a paginated list of security groups in a specified Wickr network. You can sort the results by various criteria.
See also: AWS API Documentation
Request Syntax
client.list_security_groups(
networkId='string',
nextToken='string',
maxResults=123,
sortFields='string',
sortDirection='ASC'|'DESC'
)
string
[REQUIRED]
The ID of the Wickr network from which to list security groups.
string
The token for retrieving the next page of results. This is returned from a previous request when there are more results available.
integer
The maximum number of security groups to return in a single page. Valid range is 1-100. Default is 10.
string
The field to sort security groups by. Accepted values include 'id' and 'name'.
string
The direction to sort results. Valid values are 'ASC' (ascending) or 'DESC' (descending). Default is 'DESC'.
dict
Response Syntax
{
'securityGroups': [
{
'activeMembers': 123,
'botMembers': 123,
'activeDirectoryGuid': 'string',
'id': 'string',
'isDefault': True|False,
'name': 'string',
'modified': 123,
'securityGroupSettings': {
'alwaysReauthenticate': True|False,
'atakPackageValues': [
'string',
],
'calling': {
'canStart11Call': True|False,
'canVideoCall': True|False,
'forceTcpCall': True|False
},
'checkForUpdates': True|False,
'enableAtak': True|False,
'enableCrashReports': True|False,
'enableFileDownload': True|False,
'enableGuestFederation': True|False,
'enableNotificationPreview': True|False,
'enableOpenAccessOption': True|False,
'enableRestrictedGlobalFederation': True|False,
'filesEnabled': True|False,
'forceDeviceLockout': 123,
'forceOpenAccess': True|False,
'forceReadReceipts': True|False,
'globalFederation': True|False,
'isAtoEnabled': True|False,
'isLinkPreviewEnabled': True|False,
'locationAllowMaps': True|False,
'locationEnabled': True|False,
'maxAutoDownloadSize': 123,
'maxBor': 123,
'maxTtl': 123,
'messageForwardingEnabled': True|False,
'passwordRequirements': {
'lowercase': 123,
'minLength': 123,
'numbers': 123,
'symbols': 123,
'uppercase': 123
},
'presenceEnabled': True|False,
'quickResponses': [
'string',
],
'showMasterRecoveryKey': True|False,
'shredder': {
'canProcessManually': True|False,
'intensity': 123
},
'ssoMaxIdleMinutes': 123,
'federationMode': 123,
'lockoutThreshold': 123,
'permittedNetworks': [
'string',
],
'permittedWickrAwsNetworks': [
{
'region': 'string',
'networkId': 'string'
},
],
'permittedWickrEnterpriseNetworks': [
{
'domain': 'string',
'networkId': 'string'
},
]
}
},
],
'nextToken': 'string'
}
Response Structure
(dict) --
securityGroups (list) --
A list of security group objects in the current page.
(dict) --
Represents a security group in a Wickr network, containing membership statistics, configuration, and all permission settings that apply to its members.
activeMembers (integer) --
The number of active user members currently in the security group.
botMembers (integer) --
The number of bot members currently in the security group.
activeDirectoryGuid (string) --
The GUID of the Active Directory group associated with this security group, if synchronized with LDAP.
id (string) --
The unique identifier of the security group.
isDefault (boolean) --
Indicates whether this is the default security group for the network. Each network has only one default group.
name (string) --
The human-readable name of the security group.
modified (integer) --
The timestamp when the security group was last modified, specified in epoch seconds.
securityGroupSettings (dict) --
The comprehensive configuration settings that define capabilities and restrictions for members of this security group.
alwaysReauthenticate (boolean) --
Requires users to reauthenticate every time they return to the application, providing an additional layer of security.
atakPackageValues (list) --
Configuration values for ATAK (Android Team Awareness Kit) package integration, when ATAK is enabled.
(string) --
calling (dict) --
The calling feature permissions and settings that control what types of calls users can initiate and participate in.
canStart11Call (boolean) --
Specifies whether users can start one-to-one calls.
canVideoCall (boolean) --
Specifies whether users can make video calls (as opposed to audio-only calls). Valid only when audio call(canStart11Call) is enabled.
forceTcpCall (boolean) --
When enabled, forces all calls to use TCP protocol instead of UDP for network traversal.
checkForUpdates (boolean) --
Enables automatic checking for Wickr client updates to ensure users stay current with the latest version.
enableAtak (boolean) --
Enables ATAK (Android Team Awareness Kit) integration for tactical communication and situational awareness.
enableCrashReports (boolean) --
Allow users to report crashes.
enableFileDownload (boolean) --
Specifies whether users can download files from messages to their devices.
enableGuestFederation (boolean) --
Allows users to communicate with guest users from other Wickr networks and federated external networks.
enableNotificationPreview (boolean) --
Enables message preview text in push notifications, allowing users to see message content before opening the app.
enableOpenAccessOption (boolean) --
Allow users to avoid censorship when they are geo-blocked or have network limitations.
enableRestrictedGlobalFederation (boolean) --
Enables restricted global federation, limiting external communication to only specified permitted networks.
filesEnabled (boolean) --
Enables file sharing capabilities, allowing users to send and receive files in conversations.
forceDeviceLockout (integer) --
Defines the number of failed login attempts before data stored on the device is reset. Should be less than lockoutThreshold.
forceOpenAccess (boolean) --
Automatically enable and enforce Wickr open access on all devices. Valid only if enableOpenAccessOption settings is enabled.
forceReadReceipts (boolean) --
Allow user approved bots to read messages in rooms without using a slash command.
globalFederation (boolean) --
Allows users to communicate with users on other Wickr instances (Wickr Enterprise) outside the current network.
isAtoEnabled (boolean) --
Enforces a two-factor authentication when a user adds a new device to their account.
isLinkPreviewEnabled (boolean) --
Enables automatic preview of links shared in messages, showing webpage thumbnails and descriptions.
locationAllowMaps (boolean) --
Allows map integration in location sharing, enabling users to view shared locations on interactive maps. Only allowed when location setting is enabled.
locationEnabled (boolean) --
Enables location sharing features, allowing users to share their current location with others.
maxAutoDownloadSize (integer) --
The maximum file size in bytes that will be automatically downloaded without user confirmation. Only allowed if fileDownload is enabled. Valid Values [512000 (low_quality), 7340032 (high_quality) ]
maxBor (integer) --
The maximum burn-on-read (BOR) time in seconds, which determines how long messages remain visible before auto-deletion after being read.
maxTtl (integer) --
The maximum time-to-live (TTL) in seconds for messages, after which they will be automatically deleted from all devices.
messageForwardingEnabled (boolean) --
Enables message forwarding, allowing users to forward messages from one conversation to another.
passwordRequirements (dict) --
The password complexity requirements that users must follow when creating or changing passwords.
lowercase (integer) --
The minimum number of lowercase letters required in passwords.
minLength (integer) --
The minimum password length in characters.
numbers (integer) --
The minimum number of numeric characters required in passwords.
symbols (integer) --
The minimum number of special symbol characters required in passwords.
uppercase (integer) --
The minimum number of uppercase letters required in passwords.
presenceEnabled (boolean) --
Enables presence indicators that show whether users are online, away, or offline.
quickResponses (list) --
A list of pre-defined quick response message templates that users can send with a single tap.
(string) --
showMasterRecoveryKey (boolean) --
Users will get a master recovery key that can be used to securely sign in to their Wickr account without having access to their primary device for authentication. Available in SSO enabled network.
shredder (dict) --
The message shredder configuration that controls secure deletion of messages and files from devices.
canProcessManually (boolean) --
Specifies whether users can manually trigger the shredder to delete content.
intensity (integer) --
Prevents Wickr data from being recovered by overwriting deleted Wickr data. Valid Values: Must be one of [0, 20, 60, 100]
ssoMaxIdleMinutes (integer) --
The duration for which users SSO session remains inactive before automatically logging them out for security. Available in SSO enabled network.
federationMode (integer) --
The local federation mode controlling how users can communicate with other networks. Values: 0 (none), 1 (federated), 2 (restricted).
lockoutThreshold (integer) --
The number of failed password attempts before a user account is locked out.
permittedNetworks (list) --
A list of network IDs that are permitted for local federation when federation mode is set to restricted.
(string) --
permittedWickrAwsNetworks (list) --
A list of permitted Wickr networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Amazon Web Services Wickr network by region and network ID, used for configuring permitted networks for global federation.
region (string) --
The Amazon Web Services region identifier where the network is hosted (e.g., 'us-east-1').
networkId (string) --
The network ID of the Wickr Amazon Web Services network.
permittedWickrEnterpriseNetworks (list) --
A list of permitted Wickr Enterprise networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Wickr enterprise network that is permitted for global federation, allowing users to communicate with members of the specified network.
domain (string) --
The domain identifier for the permitted Wickr enterprise network.
networkId (string) --
The network ID of the permitted Wickr enterprise network.
nextToken (string) --
The token to use for retrieving the next page of results. If this is not present, there are no more results.
Creates a new security group in a Wickr network. Security groups allow you to organize users and control their permissions, features, and security settings.
See also: AWS API Documentation
Request Syntax
client.create_security_group(
networkId='string',
name='string',
securityGroupSettings={
'lockoutThreshold': 123,
'permittedNetworks': [
'string',
],
'enableGuestFederation': True|False,
'globalFederation': True|False,
'federationMode': 123,
'enableRestrictedGlobalFederation': True|False,
'permittedWickrAwsNetworks': [
{
'region': 'string',
'networkId': 'string'
},
],
'permittedWickrEnterpriseNetworks': [
{
'domain': 'string',
'networkId': 'string'
},
]
},
clientToken='string'
)
string
[REQUIRED]
The ID of the Wickr network where the security group will be created.
string
[REQUIRED]
The name for the new security group.
dict
[REQUIRED]
The configuration settings for the security group, including permissions, federation settings, and feature controls.
lockoutThreshold (integer) --
The number of failed password attempts before a user account is locked out.
permittedNetworks (list) --
A list of network IDs that are permitted for local federation when federation mode is set to restricted.
(string) --
enableGuestFederation (boolean) --
Guest users let you work with people outside your organization that only have limited access to Wickr. Only valid when federationMode is set to Global.
globalFederation (boolean) --
Allow users to securely federate with all Amazon Web Services Wickr networks and Amazon Web Services Enterprise networks.
federationMode (integer) --
The local federation mode. Values: 0 (none), 1 (federated - all networks), 2 (restricted - only permitted networks).
enableRestrictedGlobalFederation (boolean) --
Enables restricted global federation to limit communication to specific permitted networks only. Requires globalFederation to be enabled.
permittedWickrAwsNetworks (list) --
A list of permitted Amazon Web Services Wickr networks for restricted global federation.
(dict) --
Identifies a Amazon Web Services Wickr network by region and network ID, used for configuring permitted networks for global federation.
region (string) -- [REQUIRED]
The Amazon Web Services region identifier where the network is hosted (e.g., 'us-east-1').
networkId (string) -- [REQUIRED]
The network ID of the Wickr Amazon Web Services network.
permittedWickrEnterpriseNetworks (list) --
A list of permitted Wickr Enterprise networks for restricted global federation.
(dict) --
Identifies a Wickr enterprise network that is permitted for global federation, allowing users to communicate with members of the specified network.
domain (string) -- [REQUIRED]
The domain identifier for the permitted Wickr enterprise network.
networkId (string) -- [REQUIRED]
The network ID of the permitted Wickr enterprise network.
string
A unique identifier for this request to ensure idempotency.
This field is autopopulated if not provided.
dict
Response Syntax
{
'securityGroup': {
'activeMembers': 123,
'botMembers': 123,
'activeDirectoryGuid': 'string',
'id': 'string',
'isDefault': True|False,
'name': 'string',
'modified': 123,
'securityGroupSettings': {
'alwaysReauthenticate': True|False,
'atakPackageValues': [
'string',
],
'calling': {
'canStart11Call': True|False,
'canVideoCall': True|False,
'forceTcpCall': True|False
},
'checkForUpdates': True|False,
'enableAtak': True|False,
'enableCrashReports': True|False,
'enableFileDownload': True|False,
'enableGuestFederation': True|False,
'enableNotificationPreview': True|False,
'enableOpenAccessOption': True|False,
'enableRestrictedGlobalFederation': True|False,
'filesEnabled': True|False,
'forceDeviceLockout': 123,
'forceOpenAccess': True|False,
'forceReadReceipts': True|False,
'globalFederation': True|False,
'isAtoEnabled': True|False,
'isLinkPreviewEnabled': True|False,
'locationAllowMaps': True|False,
'locationEnabled': True|False,
'maxAutoDownloadSize': 123,
'maxBor': 123,
'maxTtl': 123,
'messageForwardingEnabled': True|False,
'passwordRequirements': {
'lowercase': 123,
'minLength': 123,
'numbers': 123,
'symbols': 123,
'uppercase': 123
},
'presenceEnabled': True|False,
'quickResponses': [
'string',
],
'showMasterRecoveryKey': True|False,
'shredder': {
'canProcessManually': True|False,
'intensity': 123
},
'ssoMaxIdleMinutes': 123,
'federationMode': 123,
'lockoutThreshold': 123,
'permittedNetworks': [
'string',
],
'permittedWickrAwsNetworks': [
{
'region': 'string',
'networkId': 'string'
},
],
'permittedWickrEnterpriseNetworks': [
{
'domain': 'string',
'networkId': 'string'
},
]
}
}
}
Response Structure
(dict) --
securityGroup (dict) --
The details of the newly created security group, including its ID, name, and settings.
activeMembers (integer) --
The number of active user members currently in the security group.
botMembers (integer) --
The number of bot members currently in the security group.
activeDirectoryGuid (string) --
The GUID of the Active Directory group associated with this security group, if synchronized with LDAP.
id (string) --
The unique identifier of the security group.
isDefault (boolean) --
Indicates whether this is the default security group for the network. Each network has only one default group.
name (string) --
The human-readable name of the security group.
modified (integer) --
The timestamp when the security group was last modified, specified in epoch seconds.
securityGroupSettings (dict) --
The comprehensive configuration settings that define capabilities and restrictions for members of this security group.
alwaysReauthenticate (boolean) --
Requires users to reauthenticate every time they return to the application, providing an additional layer of security.
atakPackageValues (list) --
Configuration values for ATAK (Android Team Awareness Kit) package integration, when ATAK is enabled.
(string) --
calling (dict) --
The calling feature permissions and settings that control what types of calls users can initiate and participate in.
canStart11Call (boolean) --
Specifies whether users can start one-to-one calls.
canVideoCall (boolean) --
Specifies whether users can make video calls (as opposed to audio-only calls). Valid only when audio call(canStart11Call) is enabled.
forceTcpCall (boolean) --
When enabled, forces all calls to use TCP protocol instead of UDP for network traversal.
checkForUpdates (boolean) --
Enables automatic checking for Wickr client updates to ensure users stay current with the latest version.
enableAtak (boolean) --
Enables ATAK (Android Team Awareness Kit) integration for tactical communication and situational awareness.
enableCrashReports (boolean) --
Allow users to report crashes.
enableFileDownload (boolean) --
Specifies whether users can download files from messages to their devices.
enableGuestFederation (boolean) --
Allows users to communicate with guest users from other Wickr networks and federated external networks.
enableNotificationPreview (boolean) --
Enables message preview text in push notifications, allowing users to see message content before opening the app.
enableOpenAccessOption (boolean) --
Allow users to avoid censorship when they are geo-blocked or have network limitations.
enableRestrictedGlobalFederation (boolean) --
Enables restricted global federation, limiting external communication to only specified permitted networks.
filesEnabled (boolean) --
Enables file sharing capabilities, allowing users to send and receive files in conversations.
forceDeviceLockout (integer) --
Defines the number of failed login attempts before data stored on the device is reset. Should be less than lockoutThreshold.
forceOpenAccess (boolean) --
Automatically enable and enforce Wickr open access on all devices. Valid only if enableOpenAccessOption settings is enabled.
forceReadReceipts (boolean) --
Allow user approved bots to read messages in rooms without using a slash command.
globalFederation (boolean) --
Allows users to communicate with users on other Wickr instances (Wickr Enterprise) outside the current network.
isAtoEnabled (boolean) --
Enforces a two-factor authentication when a user adds a new device to their account.
isLinkPreviewEnabled (boolean) --
Enables automatic preview of links shared in messages, showing webpage thumbnails and descriptions.
locationAllowMaps (boolean) --
Allows map integration in location sharing, enabling users to view shared locations on interactive maps. Only allowed when location setting is enabled.
locationEnabled (boolean) --
Enables location sharing features, allowing users to share their current location with others.
maxAutoDownloadSize (integer) --
The maximum file size in bytes that will be automatically downloaded without user confirmation. Only allowed if fileDownload is enabled. Valid Values [512000 (low_quality), 7340032 (high_quality) ]
maxBor (integer) --
The maximum burn-on-read (BOR) time in seconds, which determines how long messages remain visible before auto-deletion after being read.
maxTtl (integer) --
The maximum time-to-live (TTL) in seconds for messages, after which they will be automatically deleted from all devices.
messageForwardingEnabled (boolean) --
Enables message forwarding, allowing users to forward messages from one conversation to another.
passwordRequirements (dict) --
The password complexity requirements that users must follow when creating or changing passwords.
lowercase (integer) --
The minimum number of lowercase letters required in passwords.
minLength (integer) --
The minimum password length in characters.
numbers (integer) --
The minimum number of numeric characters required in passwords.
symbols (integer) --
The minimum number of special symbol characters required in passwords.
uppercase (integer) --
The minimum number of uppercase letters required in passwords.
presenceEnabled (boolean) --
Enables presence indicators that show whether users are online, away, or offline.
quickResponses (list) --
A list of pre-defined quick response message templates that users can send with a single tap.
(string) --
showMasterRecoveryKey (boolean) --
Users will get a master recovery key that can be used to securely sign in to their Wickr account without having access to their primary device for authentication. Available in SSO enabled network.
shredder (dict) --
The message shredder configuration that controls secure deletion of messages and files from devices.
canProcessManually (boolean) --
Specifies whether users can manually trigger the shredder to delete content.
intensity (integer) --
Prevents Wickr data from being recovered by overwriting deleted Wickr data. Valid Values: Must be one of [0, 20, 60, 100]
ssoMaxIdleMinutes (integer) --
The duration for which users SSO session remains inactive before automatically logging them out for security. Available in SSO enabled network.
federationMode (integer) --
The local federation mode controlling how users can communicate with other networks. Values: 0 (none), 1 (federated), 2 (restricted).
lockoutThreshold (integer) --
The number of failed password attempts before a user account is locked out.
permittedNetworks (list) --
A list of network IDs that are permitted for local federation when federation mode is set to restricted.
(string) --
permittedWickrAwsNetworks (list) --
A list of permitted Wickr networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Amazon Web Services Wickr network by region and network ID, used for configuring permitted networks for global federation.
region (string) --
The Amazon Web Services region identifier where the network is hosted (e.g., 'us-east-1').
networkId (string) --
The network ID of the Wickr Amazon Web Services network.
permittedWickrEnterpriseNetworks (list) --
A list of permitted Wickr Enterprise networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Wickr enterprise network that is permitted for global federation, allowing users to communicate with members of the specified network.
domain (string) --
The domain identifier for the permitted Wickr enterprise network.
networkId (string) --
The network ID of the permitted Wickr enterprise network.
Resends invitation codes to multiple users who have pending invitations in a Wickr network. This operation is useful when users haven't accepted their initial invitations or when invitations have expired.
See also: AWS API Documentation
Request Syntax
client.batch_reinvite_user(
networkId='string',
userIds=[
'string',
],
clientToken='string'
)
string
[REQUIRED]
The ID of the Wickr network where users will be reinvited.
list
[REQUIRED]
A list of user IDs identifying the users to be reinvited to the network. Maximum 50 users per batch request.
(string) --
string
A unique identifier for this request to ensure idempotency.
This field is autopopulated if not provided.
dict
Response Syntax
{
'message': 'string',
'successful': [
{
'userId': 'string'
},
],
'failed': [
{
'field': 'string',
'reason': 'string',
'userId': 'string'
},
]
}
Response Structure
(dict) --
message (string) --
A message indicating the overall result of the batch reinvitation operation.
successful (list) --
A list of user IDs that were successfully reinvited.
(dict) --
Contains information about a user that was successfully processed in a batch user operation.
userId (string) --
The user ID that was successfully processed.
failed (list) --
A list of reinvitation attempts that failed, including error details explaining why each user could not be reinvited.
(dict) --
Contains error information for a user operation that failed in a batch user request.
field (string) --
The field that caused the error.
reason (string) --
A description of why the user operation failed.
userId (string) --
The user ID associated with the failed operation.
Registers and saves an OpenID Connect (OIDC) configuration for a Wickr network, enabling Single Sign-On (SSO) authentication through an identity provider.
See also: AWS API Documentation
Request Syntax
client.register_oidc_config(
networkId='string',
companyId='string',
customUsername='string',
extraAuthParams='string',
issuer='string',
scopes='string',
secret='string',
ssoTokenBufferMinutes=123,
userId='string'
)
string
[REQUIRED]
The ID of the Wickr network for which OIDC will be configured.
string
[REQUIRED]
Custom identifier your end users will use to sign in with SSO.
string
A custom field mapping to extract the username from the OIDC token (optional).
string
Additional authentication parameters to include in the OIDC flow (optional).
string
[REQUIRED]
The issuer URL of the OIDC provider (e.g., 'https://login.example.com').
string
[REQUIRED]
The OAuth scopes to request from the OIDC provider (e.g., 'openid profile email').
string
The client secret for authenticating with the OIDC provider (optional).
integer
The buffer time in minutes before the SSO token expires to refresh it (optional).
string
Unique identifier provided by your identity provider to authenticate the access request. Also referred to as clientID.
dict
Response Syntax
{
'applicationName': 'string',
'clientId': 'string',
'companyId': 'string',
'scopes': 'string',
'issuer': 'string',
'clientSecret': 'string',
'secret': 'string',
'redirectUrl': 'string',
'userId': 'string',
'customUsername': 'string',
'caCertificate': 'string',
'applicationId': 123,
'ssoTokenBufferMinutes': 123,
'extraAuthParams': 'string'
}
Response Structure
(dict) --
applicationName (string) --
The name of the registered OIDC application.
clientId (string) --
The OAuth client ID assigned to the application.
companyId (string) --
Custom identifier your end users will use to sign in with SSO.
scopes (string) --
The OAuth scopes configured for the application.
issuer (string) --
The issuer URL of the OIDC provider.
clientSecret (string) --
The OAuth client secret for the application.
secret (string) --
The client secret for authenticating with the OIDC provider.
redirectUrl (string) --
The redirect URL configured for the OAuth flow.
userId (string) --
The claim field being used as the user identifier.
customUsername (string) --
The custom field mapping used for extracting the username.
caCertificate (string) --
The CA certificate used for secure communication with the OIDC provider.
applicationId (integer) --
The unique identifier for the registered OIDC application.
ssoTokenBufferMinutes (integer) --
The buffer time in minutes before the SSO token expires.
extraAuthParams (string) --
The additional authentication parameters configured for the OIDC flow.
Updates the block status of a guest user in a Wickr network. This operation allows you to block or unblock a guest user from accessing the network.
See also: AWS API Documentation
Request Syntax
client.update_guest_user(
networkId='string',
usernameHash='string',
block=True|False
)
string
[REQUIRED]
The ID of the Wickr network where the guest user's status will be updated.
string
[REQUIRED]
The username hash (unique identifier) of the guest user to update.
boolean
[REQUIRED]
Set to true to block the guest user or false to unblock them.
dict
Response Syntax
{
'message': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating the result of the update operation.
Deletes multiple users from a specified Wickr network. This operation permanently removes user accounts and their associated data from the network.
See also: AWS API Documentation
Request Syntax
client.batch_delete_user(
networkId='string',
userIds=[
'string',
],
clientToken='string'
)
string
[REQUIRED]
The ID of the Wickr network from which users will be deleted.
list
[REQUIRED]
A list of user IDs identifying the users to be deleted from the network. Maximum 50 users per batch request.
(string) --
string
A unique identifier for this request to ensure idempotency. If you retry a request with the same client token, the service will return the same response without attempting to delete users again.
This field is autopopulated if not provided.
dict
Response Syntax
{
'message': 'string',
'successful': [
{
'userId': 'string'
},
],
'failed': [
{
'field': 'string',
'reason': 'string',
'userId': 'string'
},
]
}
Response Structure
(dict) --
message (string) --
A message indicating the overall result of the batch deletion operation.
successful (list) --
A list of user IDs that were successfully deleted from the network.
(dict) --
Contains information about a user that was successfully processed in a batch user operation.
userId (string) --
The user ID that was successfully processed.
failed (list) --
A list of user deletion attempts that failed, including error details explaining why each user could not be deleted.
(dict) --
Contains error information for a user operation that failed in a batch user request.
field (string) --
The field that caused the error.
reason (string) --
A description of why the user operation failed.
userId (string) --
The user ID associated with the failed operation.
Retrieves the count of bots in a Wickr network, categorized by their status (pending, active, and total).
See also: AWS API Documentation
Request Syntax
client.get_bots_count(
networkId='string'
)
string
[REQUIRED]
The ID of the Wickr network for which to retrieve bot counts.
dict
Response Syntax
{
'pending': 123,
'active': 123,
'total': 123
}
Response Structure
(dict) --
pending (integer) --
The number of bots with pending status (invited but not yet activated).
active (integer) --
The number of bots with active status.
total (integer) --
The total number of bots in the network (active and pending).
Retrieves a paginated list of all Wickr networks associated with your Amazon Web Services account. You can sort the results by network ID or name.
See also: AWS API Documentation
Request Syntax
client.list_networks(
maxResults=123,
sortFields='string',
sortDirection='ASC'|'DESC',
nextToken='string'
)
integer
The maximum number of networks to return in a single page. Valid range is 1-100. Default is 10.
string
The field to sort networks by. Accepted values are 'networkId' and 'networkName'. Default is 'networkId'.
string
The direction to sort results. Valid values are 'ASC' (ascending) or 'DESC' (descending). Default is 'DESC'.
string
The token for retrieving the next page of results. This is returned from a previous request when there are more results available.
dict
Response Syntax
{
'networks': [
{
'networkId': 'string',
'networkName': 'string',
'accessLevel': 'STANDARD'|'PREMIUM',
'awsAccountId': 'string',
'networkArn': 'string',
'standing': 123,
'freeTrialExpiration': 'string',
'migrationState': 123,
'encryptionKeyArn': 'string'
},
],
'nextToken': 'string'
}
Response Structure
(dict) --
networks (list) --
A list of network objects for the Amazon Web Services account.
(dict) --
Represents a Wickr network with all its configuration and status information.
networkId (string) --
The unique identifier of the network.
networkName (string) --
The name of the network.
accessLevel (string) --
The access level of the network (STANDARD or PREMIUM), which determines available features and capabilities.
awsAccountId (string) --
The Amazon Web Services account ID that owns the network.
networkArn (string) --
The Amazon Resource Name (ARN) of the network.
standing (integer) --
The current standing or status of the network.
freeTrialExpiration (string) --
The expiration date and time for the network's free trial period, if applicable.
migrationState (integer) --
The SSO redirect URI migration state, managed by the SSO redirect migration wizard. Values: 0 (not started), 1 (in progress), or 2 (completed).
encryptionKeyArn (string) --
The ARN of the Amazon Web Services KMS customer managed key used for encrypting sensitive data in the network.
nextToken (string) --
The token to use for retrieving the next page of results. If this is not present, there are no more results.
Looks up multiple user usernames from their unique username hashes (unames). This operation allows you to retrieve the email addresses associated with a list of username hashes.
See also: AWS API Documentation
Request Syntax
client.batch_lookup_user_uname(
networkId='string',
unames=[
'string',
],
clientToken='string'
)
string
[REQUIRED]
The ID of the Wickr network where the users will be looked up.
list
[REQUIRED]
A list of username hashes (unames) to look up. Each uname is a unique identifier for a user's username. Maximum 50 unames per batch request.
(string) --
string
A unique identifier for this request to ensure idempotency.
This field is autopopulated if not provided.
dict
Response Syntax
{
'message': 'string',
'successful': [
{
'uname': 'string',
'username': 'string'
},
],
'failed': [
{
'field': 'string',
'reason': 'string',
'uname': 'string'
},
]
}
Response Structure
(dict) --
message (string) --
A message indicating the overall result of the batch lookup operation.
successful (list) --
A list of successfully resolved username hashes with their corresponding email addresses.
(dict) --
Contains information about a username hash that was successfully resolved in a batch uname lookup operation.
uname (string) --
The username hash that was successfully resolved.
username (string) --
The email address or username corresponding to the username hash.
failed (list) --
A list of username hash lookup attempts that failed, including error details explaining why each lookup failed.
(dict) --
Contains error information for a username hash lookup that failed in a batch uname lookup request.
field (string) --
The field that caused the error.
reason (string) --
A description of why the username hash lookup failed.
uname (string) --
The username hash that failed to be looked up.
Retrieves information about the data retention bot in a Wickr network, including its status and whether the data retention service is enabled.
See also: AWS API Documentation
Request Syntax
client.get_data_retention_bot(
networkId='string'
)
string
[REQUIRED]
The ID of the Wickr network containing the data retention bot.
dict
Response Syntax
{
'botName': 'string',
'botExists': True|False,
'isBotActive': True|False,
'isDataRetentionBotRegistered': True|False,
'isDataRetentionServiceEnabled': True|False,
'isPubkeyMsgAcked': True|False
}
Response Structure
(dict) --
botName (string) --
The name of the data retention bot.
botExists (boolean) --
Indicates whether a data retention bot exists in the network.
isBotActive (boolean) --
Indicates whether the data retention bot is active and operational.
isDataRetentionBotRegistered (boolean) --
Indicates whether the data retention bot has been registered with the network.
isDataRetentionServiceEnabled (boolean) --
Indicates whether the data retention service is enabled for the network.
isPubkeyMsgAcked (boolean) --
Indicates whether the public key message has been acknowledged by the bot.
Retrieves detailed information about a specific security group in a Wickr network, including its settings, member counts, and configuration.
See also: AWS API Documentation
Request Syntax
client.get_security_group(
networkId='string',
groupId='string'
)
string
[REQUIRED]
The ID of the Wickr network containing the security group.
string
[REQUIRED]
The unique identifier of the security group to retrieve.
dict
Response Syntax
{
'securityGroup': {
'activeMembers': 123,
'botMembers': 123,
'activeDirectoryGuid': 'string',
'id': 'string',
'isDefault': True|False,
'name': 'string',
'modified': 123,
'securityGroupSettings': {
'alwaysReauthenticate': True|False,
'atakPackageValues': [
'string',
],
'calling': {
'canStart11Call': True|False,
'canVideoCall': True|False,
'forceTcpCall': True|False
},
'checkForUpdates': True|False,
'enableAtak': True|False,
'enableCrashReports': True|False,
'enableFileDownload': True|False,
'enableGuestFederation': True|False,
'enableNotificationPreview': True|False,
'enableOpenAccessOption': True|False,
'enableRestrictedGlobalFederation': True|False,
'filesEnabled': True|False,
'forceDeviceLockout': 123,
'forceOpenAccess': True|False,
'forceReadReceipts': True|False,
'globalFederation': True|False,
'isAtoEnabled': True|False,
'isLinkPreviewEnabled': True|False,
'locationAllowMaps': True|False,
'locationEnabled': True|False,
'maxAutoDownloadSize': 123,
'maxBor': 123,
'maxTtl': 123,
'messageForwardingEnabled': True|False,
'passwordRequirements': {
'lowercase': 123,
'minLength': 123,
'numbers': 123,
'symbols': 123,
'uppercase': 123
},
'presenceEnabled': True|False,
'quickResponses': [
'string',
],
'showMasterRecoveryKey': True|False,
'shredder': {
'canProcessManually': True|False,
'intensity': 123
},
'ssoMaxIdleMinutes': 123,
'federationMode': 123,
'lockoutThreshold': 123,
'permittedNetworks': [
'string',
],
'permittedWickrAwsNetworks': [
{
'region': 'string',
'networkId': 'string'
},
],
'permittedWickrEnterpriseNetworks': [
{
'domain': 'string',
'networkId': 'string'
},
]
}
}
}
Response Structure
(dict) --
securityGroup (dict) --
The detailed information about the security group, including all its settings and member counts.
activeMembers (integer) --
The number of active user members currently in the security group.
botMembers (integer) --
The number of bot members currently in the security group.
activeDirectoryGuid (string) --
The GUID of the Active Directory group associated with this security group, if synchronized with LDAP.
id (string) --
The unique identifier of the security group.
isDefault (boolean) --
Indicates whether this is the default security group for the network. Each network has only one default group.
name (string) --
The human-readable name of the security group.
modified (integer) --
The timestamp when the security group was last modified, specified in epoch seconds.
securityGroupSettings (dict) --
The comprehensive configuration settings that define capabilities and restrictions for members of this security group.
alwaysReauthenticate (boolean) --
Requires users to reauthenticate every time they return to the application, providing an additional layer of security.
atakPackageValues (list) --
Configuration values for ATAK (Android Team Awareness Kit) package integration, when ATAK is enabled.
(string) --
calling (dict) --
The calling feature permissions and settings that control what types of calls users can initiate and participate in.
canStart11Call (boolean) --
Specifies whether users can start one-to-one calls.
canVideoCall (boolean) --
Specifies whether users can make video calls (as opposed to audio-only calls). Valid only when audio call(canStart11Call) is enabled.
forceTcpCall (boolean) --
When enabled, forces all calls to use TCP protocol instead of UDP for network traversal.
checkForUpdates (boolean) --
Enables automatic checking for Wickr client updates to ensure users stay current with the latest version.
enableAtak (boolean) --
Enables ATAK (Android Team Awareness Kit) integration for tactical communication and situational awareness.
enableCrashReports (boolean) --
Allow users to report crashes.
enableFileDownload (boolean) --
Specifies whether users can download files from messages to their devices.
enableGuestFederation (boolean) --
Allows users to communicate with guest users from other Wickr networks and federated external networks.
enableNotificationPreview (boolean) --
Enables message preview text in push notifications, allowing users to see message content before opening the app.
enableOpenAccessOption (boolean) --
Allow users to avoid censorship when they are geo-blocked or have network limitations.
enableRestrictedGlobalFederation (boolean) --
Enables restricted global federation, limiting external communication to only specified permitted networks.
filesEnabled (boolean) --
Enables file sharing capabilities, allowing users to send and receive files in conversations.
forceDeviceLockout (integer) --
Defines the number of failed login attempts before data stored on the device is reset. Should be less than lockoutThreshold.
forceOpenAccess (boolean) --
Automatically enable and enforce Wickr open access on all devices. Valid only if enableOpenAccessOption settings is enabled.
forceReadReceipts (boolean) --
Allow user approved bots to read messages in rooms without using a slash command.
globalFederation (boolean) --
Allows users to communicate with users on other Wickr instances (Wickr Enterprise) outside the current network.
isAtoEnabled (boolean) --
Enforces a two-factor authentication when a user adds a new device to their account.
isLinkPreviewEnabled (boolean) --
Enables automatic preview of links shared in messages, showing webpage thumbnails and descriptions.
locationAllowMaps (boolean) --
Allows map integration in location sharing, enabling users to view shared locations on interactive maps. Only allowed when location setting is enabled.
locationEnabled (boolean) --
Enables location sharing features, allowing users to share their current location with others.
maxAutoDownloadSize (integer) --
The maximum file size in bytes that will be automatically downloaded without user confirmation. Only allowed if fileDownload is enabled. Valid Values [512000 (low_quality), 7340032 (high_quality) ]
maxBor (integer) --
The maximum burn-on-read (BOR) time in seconds, which determines how long messages remain visible before auto-deletion after being read.
maxTtl (integer) --
The maximum time-to-live (TTL) in seconds for messages, after which they will be automatically deleted from all devices.
messageForwardingEnabled (boolean) --
Enables message forwarding, allowing users to forward messages from one conversation to another.
passwordRequirements (dict) --
The password complexity requirements that users must follow when creating or changing passwords.
lowercase (integer) --
The minimum number of lowercase letters required in passwords.
minLength (integer) --
The minimum password length in characters.
numbers (integer) --
The minimum number of numeric characters required in passwords.
symbols (integer) --
The minimum number of special symbol characters required in passwords.
uppercase (integer) --
The minimum number of uppercase letters required in passwords.
presenceEnabled (boolean) --
Enables presence indicators that show whether users are online, away, or offline.
quickResponses (list) --
A list of pre-defined quick response message templates that users can send with a single tap.
(string) --
showMasterRecoveryKey (boolean) --
Users will get a master recovery key that can be used to securely sign in to their Wickr account without having access to their primary device for authentication. Available in SSO enabled network.
shredder (dict) --
The message shredder configuration that controls secure deletion of messages and files from devices.
canProcessManually (boolean) --
Specifies whether users can manually trigger the shredder to delete content.
intensity (integer) --
Prevents Wickr data from being recovered by overwriting deleted Wickr data. Valid Values: Must be one of [0, 20, 60, 100]
ssoMaxIdleMinutes (integer) --
The duration for which users SSO session remains inactive before automatically logging them out for security. Available in SSO enabled network.
federationMode (integer) --
The local federation mode controlling how users can communicate with other networks. Values: 0 (none), 1 (federated), 2 (restricted).
lockoutThreshold (integer) --
The number of failed password attempts before a user account is locked out.
permittedNetworks (list) --
A list of network IDs that are permitted for local federation when federation mode is set to restricted.
(string) --
permittedWickrAwsNetworks (list) --
A list of permitted Wickr networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Amazon Web Services Wickr network by region and network ID, used for configuring permitted networks for global federation.
region (string) --
The Amazon Web Services region identifier where the network is hosted (e.g., 'us-east-1').
networkId (string) --
The network ID of the Wickr Amazon Web Services network.
permittedWickrEnterpriseNetworks (list) --
A list of permitted Wickr Enterprise networks for global federation, restricting communication to specific approved networks.
(dict) --
Identifies a Wickr enterprise network that is permitted for global federation, allowing users to communicate with members of the specified network.
domain (string) --
The domain identifier for the permitted Wickr enterprise network.
networkId (string) --
The network ID of the permitted Wickr enterprise network.
Retrieves a paginated list of bots in a specified Wickr network. You can filter and sort the results based on various criteria.
See also: AWS API Documentation
Request Syntax
client.list_bots(
networkId='string',
nextToken='string',
maxResults=123,
sortFields='string',
sortDirection='ASC'|'DESC',
displayName='string',
username='string',
status=123,
groupId='string'
)
string
[REQUIRED]
The ID of the Wickr network from which to list bots.
string
The token for retrieving the next page of results. This is returned from a previous request when there are more results available.
integer
The maximum number of bots to return in a single page. Valid range is 1-100. Default is 10.
string
The fields to sort bots by. Multiple fields can be specified by separating them with '+'. Accepted values include 'username', 'firstName', 'displayName', 'status', and 'groupId'.
string
The direction to sort results. Valid values are 'ASC' (ascending) or 'DESC' (descending). Default is 'DESC'.
string
Filter results to only include bots with display names matching this value.
string
Filter results to only include bots with usernames matching this value.
integer
Filter results to only include bots with this status (1 for pending, 2 for active).
string
Filter results to only include bots belonging to this security group.
dict
Response Syntax
{
'bots': [
{
'botId': 'string',
'displayName': 'string',
'username': 'string',
'uname': 'string',
'pubkey': 'string',
'status': 123,
'groupId': 'string',
'hasChallenge': True|False,
'suspended': True|False,
'lastLogin': 'string'
},
],
'nextToken': 'string'
}
Response Structure
(dict) --
bots (list) --
A list of bot objects matching the specified filters and within the current page.
(dict) --
Represents a bot account in a Wickr network with all its informational fields.
botId (string) --
The unique identifier of the bot.
displayName (string) --
The display name of the bot that is visible to users.
username (string) --
The username of the bot.
uname (string) --
The unique username hash identifier for the bot.
pubkey (string) --
The public key of the bot used for encryption.
status (integer) --
The current status of the bot (1 for pending, 2 for active).
groupId (string) --
The ID of the security group to which the bot belongs.
hasChallenge (boolean) --
Indicates whether the bot has a password set.
suspended (boolean) --
Indicates whether the bot is currently suspended.
lastLogin (string) --
The timestamp of the bot's last login.
nextToken (string) --
The token to use for retrieving the next page of results. If this is not present, there are no more results.
Creates a new Wickr network with specified access level and configuration. This operation provisions a new communication network for your organization.
See also: AWS API Documentation
Request Syntax
client.create_network(
networkName='string',
accessLevel='STANDARD'|'PREMIUM',
enablePremiumFreeTrial=True|False,
encryptionKeyArn='string'
)
string
[REQUIRED]
The name for the new network. Must be between 1 and 20 characters.
string
[REQUIRED]
The access level for the network. Valid values are STANDARD or PREMIUM, which determine the features and capabilities available to network members.
boolean
Specifies whether to enable a premium free trial for the network. It is optional and has a default value as false. When set to true, the network starts with premium features for a limited trial period.
string
The ARN of the Amazon Web Services KMS customer managed key to use for encrypting sensitive data in the network.
dict
Response Syntax
{
'networkId': 'string',
'networkName': 'string',
'encryptionKeyArn': 'string'
}
Response Structure
(dict) --
networkId (string) --
The unique identifier assigned to the newly created network.
networkName (string) --
The name of the newly created network.
encryptionKeyArn (string) --
The ARN of the KMS key being used to encrypt sensitive data in the network.
Creates multiple users in a specified Wickr network. This operation allows you to provision multiple user accounts simultaneously, optionally specifying security groups, and validation requirements for each user.
See also: AWS API Documentation
Request Syntax
client.batch_create_user(
networkId='string',
users=[
{
'firstName': 'string',
'lastName': 'string',
'securityGroupIds': [
'string',
],
'username': 'string',
'inviteCode': 'string',
'inviteCodeTtl': 123,
'codeValidation': True|False
},
],
clientToken='string'
)
string
[REQUIRED]
The ID of the Wickr network where users will be created.
list
[REQUIRED]
A list of user objects containing the details for each user to be created, including username, name, security groups, and optional invite codes. Maximum 50 users per batch request.
(dict) --
Contains the details for a single user to be created in a batch user creation request.
firstName (string) --
The first name of the user.
lastName (string) --
The last name of the user.
securityGroupIds (list) -- [REQUIRED]
A list of security group IDs to which the user should be assigned.
(string) --
username (string) -- [REQUIRED]
The email address or username for the user. Must be unique within the network.
inviteCode (string) --
A custom invite code for the user. If not provided, one will be generated automatically.
inviteCodeTtl (integer) --
The time-to-live for the invite code in days. After this period, the invite code will expire.
codeValidation (boolean) --
Indicates whether the user can be verified through a custom invite code.
string
A unique identifier for this request to ensure idempotency. If you retry a request with the same client token, the service will return the same response without creating duplicate users.
This field is autopopulated if not provided.
dict
Response Syntax
{
'message': 'string',
'successful': [
{
'userId': 'string',
'firstName': 'string',
'lastName': 'string',
'username': 'string',
'securityGroups': [
'string',
],
'isAdmin': True|False,
'suspended': True|False,
'status': 123,
'otpEnabled': True|False,
'scimId': 'string',
'type': 'string',
'cell': 'string',
'countryCode': 'string',
'challengeFailures': 123,
'isInviteExpired': True|False,
'isUser': True|False,
'inviteCode': 'string',
'codeValidation': True|False,
'uname': 'string'
},
],
'failed': [
{
'field': 'string',
'reason': 'string',
'userId': 'string'
},
]
}
Response Structure
(dict) --
message (string) --
A message indicating the overall result of the batch operation.
successful (list) --
A list of user objects that were successfully created, including their assigned user IDs and invite codes.
(dict) --
Represents a user account in a Wickr network with detailed profile information, status, security settings, and authentication details.
userId (string) --
The unique identifier for the user within the network.
firstName (string) --
The first name of the user.
lastName (string) --
The last name of the user.
username (string) --
The email address or username of the user. For bots, this must end in 'bot'.
securityGroups (list) --
A list of security group IDs to which the user is assigned, determining their permissions and feature access.
(string) --
isAdmin (boolean) --
Indicates whether the user has administrator privileges in the network.
suspended (boolean) --
Indicates whether the user is currently suspended and unable to access the network.
status (integer) --
The current status of the user (1 for pending invitation, 2 for active).
otpEnabled (boolean) --
Indicates whether one-time password (OTP) authentication is enabled for the user.
scimId (string) --
The SCIM (System for Cross-domain Identity Management) identifier for the user, used for identity synchronization. Currently not used.
type (string) --
The descriptive type of the user account (e.g., 'user').
cell (string) --
The phone number minus country code, used for cloud deployments.
countryCode (string) --
The country code for the user's phone number, used for cloud deployments.
challengeFailures (integer) --
The number of failed password attempts for enterprise deployments, used for account lockout policies.
isInviteExpired (boolean) --
Indicates whether the user's email invitation code has expired, applicable to cloud deployments.
isUser (boolean) --
Indicates whether this account is a user (as opposed to a bot or other account type).
inviteCode (string) --
The invitation code for this user, used during registration to join the network.
codeValidation (boolean) --
Indicates whether the user can be verified through a custom invite code.
uname (string) --
The unique identifier for the user.
failed (list) --
A list of user creation attempts that failed, including error details explaining why each user could not be created.
(dict) --
Contains error information for a user operation that failed in a batch user request.
field (string) --
The field that caused the error.
reason (string) --
A description of why the user operation failed.
userId (string) --
The user ID associated with the failed operation.
Retrieves a paginated list of guest users who have been blocked from a Wickr network. You can filter and sort the results.
See also: AWS API Documentation
Request Syntax
client.list_blocked_guest_users(
networkId='string',
maxResults=123,
sortDirection='ASC'|'DESC',
sortFields='string',
username='string',
admin='string',
nextToken='string'
)
string
[REQUIRED]
The ID of the Wickr network from which to list blocked guest users.
integer
The maximum number of blocked guest users to return in a single page. Valid range is 1-100. Default is 10.
string
The direction to sort results. Valid values are 'ASC' (ascending) or 'DESC' (descending). Default is 'DESC'.
string
The field to sort blocked guest users by. Accepted values include 'username', 'admin', and 'modified'.
string
Filter results to only include blocked guest users with usernames matching this value.
string
Filter results to only include blocked guest users that were blocked by this administrator.
string
The token for retrieving the next page of results. This is returned from a previous request when there are more results available.
dict
Response Syntax
{
'nextToken': 'string',
'blocklist': [
{
'username': 'string',
'admin': 'string',
'modified': 'string',
'usernameHash': 'string'
},
]
}
Response Structure
(dict) --
nextToken (string) --
The token to use for retrieving the next page of results. If this is not present, there are no more results.
blocklist (list) --
A list of blocked guest user objects within the current page.
(dict) --
Represents a guest user who has been blocked from accessing a Wickr network.
username (string) --
The username of the blocked guest user.
admin (string) --
The username of the administrator who blocked this guest user.
modified (string) --
The timestamp when the guest user was blocked or last modified.
usernameHash (string) --
The unique username hash identifier for the blocked guest user.
Creates a new challenge password for the data retention bot. This password is used for authentication when the bot connects to the network.
See also: AWS API Documentation
Request Syntax
client.create_data_retention_bot_challenge(
networkId='string'
)
string
[REQUIRED]
The ID of the Wickr network containing the data retention bot.
dict
Response Syntax
{
'challenge': 'string'
}
Response Structure
(dict) --
challenge (string) --
The newly generated challenge password for the data retention bot.
Retrieves detailed information about a specific Wickr network, including its configuration, access level, and status.
See also: AWS API Documentation
Request Syntax
client.get_network(
networkId='string'
)
string
[REQUIRED]
The ID of the Wickr network to retrieve.
dict
Response Syntax
{
'networkId': 'string',
'networkName': 'string',
'accessLevel': 'STANDARD'|'PREMIUM',
'awsAccountId': 'string',
'networkArn': 'string',
'standing': 123,
'freeTrialExpiration': 'string',
'migrationState': 123,
'encryptionKeyArn': 'string'
}
Response Structure
(dict) --
networkId (string) --
The unique identifier of the network.
networkName (string) --
The name of the network.
accessLevel (string) --
The access level of the network (STANDARD or PREMIUM), which determines available features and capabilities.
awsAccountId (string) --
The Amazon Web Services account ID that owns the network.
networkArn (string) --
The Amazon Resource Name (ARN) of the network.
standing (integer) --
The current standing or status of the network.
freeTrialExpiration (string) --
The expiration date and time for the network's free trial period, if applicable.
migrationState (integer) --
The SSO redirect URI migration state, managed by the SSO redirect migration wizard. Values: 0 (not started), 1 (in progress), or 2 (completed).
encryptionKeyArn (string) --
The ARN of the Amazon Web Services KMS customer managed key used for encrypting sensitive data in the network.
Creates a new bot in a specified Wickr network. Bots are automated accounts that can send and receive messages, enabling integration with external systems and automation of tasks.
See also: AWS API Documentation
Request Syntax
client.create_bot(
networkId='string',
username='string',
displayName='string',
groupId='string',
challenge='string'
)
string
[REQUIRED]
The ID of the Wickr network where the bot will be created.
string
[REQUIRED]
The username for the bot. This must be unique within the network and follow the network's naming conventions.
string
The display name for the bot that will be visible to users in the network.
string
[REQUIRED]
The ID of the security group to which the bot will be assigned.
string
[REQUIRED]
The password for the bot account.
dict
Response Syntax
{
'message': 'string',
'botId': 'string',
'networkId': 'string',
'username': 'string',
'displayName': 'string',
'groupId': 'string'
}
Response Structure
(dict) --
message (string) --
A message indicating the result of the bot creation operation.
botId (string) --
The unique identifier assigned to the newly created bot.
networkId (string) --
The ID of the network where the bot was created.
username (string) --
The username of the newly created bot.
displayName (string) --
The display name of the newly created bot.
groupId (string) --
The ID of the security group to which the bot was assigned.
Retrieves the count of users in a Wickr network, categorized by their status (pending, active, rejected) and showing how many users can still be added.
See also: AWS API Documentation
Request Syntax
client.get_users_count(
networkId='string'
)
string
[REQUIRED]
The ID of the Wickr network for which to retrieve user counts.
dict
Response Syntax
{
'pending': 123,
'active': 123,
'rejected': 123,
'remaining': 123,
'total': 123
}
Response Structure
(dict) --
pending (integer) --
The number of users with pending status (invited but not yet accepted).
active (integer) --
The number of users with active status in the network.
rejected (integer) --
The number of users who have rejected network invitations.
remaining (integer) --
The number of additional users that can be added to the network while maintaining premium free trial eligibility.
total (integer) --
The total number of users in the network (active and pending combined).