No longer allowing the creation of non-admin people with empty group

Our API documentation for the Create Single Person endpoint states that the required group_ids field is an array of Group IDs that the person belongs to/has access to. The only time this can be left empty is if a Person is a Admin, however our API was not enforcing this and was allowing the creation of new non-admin people with an empty array for the group_ids field. We have now updated the Create Single Person endpoint so that it strictly enforces that the group_ids field can not be empty. The only exception to this is if you are creating a user whose permission_level_id is the ID of your Admin permission level. All non-admin people must have explicitly provided access to at least one group.

Learn more by checking out our documentation