get:
    tags:
        - rbacusers
    description: List accessible RBAC users with optional filter by name.
    operationId: listUsers
    parameters:
        - $ref: './api-definition/auth.yaml#/components/parameters/currentUser'
        - $ref: './api-definition/auth.yaml#/components/parameters/assumedRoles'
        - name: name
          in: query
          required: false
          schema:
              type: string
    responses:
        "200":
            description: OK
            content:
                'application/json':
                    schema:
                        type: array
                        items:
                            $ref: './api-definition/rbac-user-schemas.yaml#/components/schemas/RbacUser'
        "401":
            $ref: './api-definition/error-responses.yaml#/components/responses/Unauthorized'
        "403":
            $ref: './api-definition/error-responses.yaml#/components/responses/Forbidden'

post:
    tags:
        - rbacusers
    description: Create a new RBAC user.
    operationId: createUser
    requestBody:
        required: true
        content:
            application/json:
                schema:
                    $ref: './api-definition/rbac-user-schemas.yaml#/components/schemas/RbacUser'
    responses:
        "201":
            description: Created
            content:
                'application/json':
                    schema:
                        $ref: './api-definition/rbac-user-schemas.yaml#/components/schemas/RbacUser'
        "409":
            $ref: './api-definition/error-responses.yaml#/components/responses/Conflict'