1.0.0 \n\nOAS 3.0\n\nOverview
\nThis API powers a planner application that allows users to create,
update, complete, and delete tasks with authentication.
https://planner-backend-i13a.onrender.com/
\nThis API uses JWT authentication.
\nAfter logging in, include the token in the request header:
\nAuthorization: Bearer
\n","schema":"https://schema.getpostman.com/json/collection/v2.0.0/collection.json","toc":[{"content":"Planner API Documentation","slug":"planner-api-documentation"}],"owner":"48023599","collectionId":"58399224-30b1-418a-8cb7-df2223198fb3","publishedId":"2sBXVhEX36","public":true,"customColor":{"top-bar":"FFFFFF","right-sidebar":"303030","highlight":"FF6C37"},"publishDate":"2026-01-16T15:18:15.000Z"},"item":[{"name":"plans","item":[{"name":"Get Plans","id":"bf7af8f4-6123-4472-aedc-0ed2df9a569e","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"auth":{"type":"bearer","bearer":{"basicConfig":[{"key":"token","value":"{{jwt}}"}]},"isInherited":false},"method":"GET","header":[],"url":"{{URL}}api/v1/plans?page=1&limit=5","description":"Retrieve a paginated list of all available plans in the system.
\nGET /api/v1/plans\n\nReturns all plans stored in the database. Supports pagination and sorting.
\nGET
Protected ✅
\nRequires a valid access token.
\nInclude the authorization header:
\nAuthorization: Bearer <access_token>\n\n/api/v1/plans?page=1&limit=5 'returns 5 plans per page'\n/api/v1/plans?sort=plan 'sort plan by ascending order'\n/api/v1/plans?sort=-plan 'sort plan by descending order'\n\n200 OK\n\nResponse Body
\n{\n \"status\": \"success\",\n \"results\": 2,\n \"data\": {\n \"docs\": [\n {\n \"_id\": \"6965ee96a69a94bf1c08729d\",\n \"plan\": \"ppppppppppppppppp\",\n \"user\": \"6962225f15d8e9bcb9d0fc9d\",\n },\n {\n \"_id\": \"6965ee96a69a94bf1c08729d\",\n \"plan\": \"ppppppppppppppppp\",\n \"user\": \"6962225f15d8e9bcb9d0fc9d\",\n }\n ]\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nAdd a new plan to the list of all available plans in the system.
\nPOST /api/v1/plans\n\nCreates a new plan and stores it in the database.
\nPOST
Protected ✅
\nRequires a valid access token.
\nInclude the authorization header:
\nAuthorization: Bearer <access_token>\n\n{\n \"plan\": \"Basic\",\n}\n\n201 Created\n\n{\n \"status\": \"success\",\n \"data\": {\n \"plan\": {\n \"_id\": \"65af88b84342a592ac5e62a\",\n \"plan\": \"Basic\",\n \"createdAt\": \"2026-01-01T10:30:00.000Z\",\n \"user\": \"696b959b3062f17504b5908a\",\n }\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"Plan is required\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nRetrieve a single plan by its unique ID.
\nGET /api/v1/plans/:id\n\nReturns a single plan stored in the database that matches the provided ID.
\nGET
Protected ✅
\nRequires a valid access token.
\nInclude the authorization header:
\nAuthorization: Bearer <access_token>\n\nStatus Code
\n200 OK\n\nResponse Body
\n{\n \"status\": \"success\",\n \"data\": {\n \"plan\": {\n \"_id\": \"65af88c94342a592ac5e62b\",\n \"plan\": \"Pro\",\n \"createdAt\": \"2026-01-01T10:32:00.000Z\"\n }\n }\n}\n\n\n\n
ℹ️ results is intentionally omitted since this endpoint returns a single resource.
{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"No plan found with that ID\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nUpdate an existing plan in the system.
\nPATCH /api/v1/plans/:id\n\nUpdates one or more fields of a plan stored in the database.
\nPATCH
Protected ✅
\nRequires a valid access token.
\nInclude the authorization header:
\nAuthorization: Bearer <access_token>\n\n{\n \"plan\": \"Basic\"\n}\n\n\n\n<p >Only the fields provided will be updated.</p>
\n
Status Code
\n200 OK\n\nResponse Body
\n{\n \"status\": \"success\",\n \"data\": {\n \"plan\": {\n \"_id\": \"65af88b84342a592ac5e62a\",\n \"plan\": \"Basic\",\n \"updatedAt\": \"2026-01-05T14:20:00.000Z\"\n }\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"Invalid update data\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"No plan found with that ID\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nDelete a plan in the system.
\nDELETE /api/v1/plans/:id\n\nThis endpoint updates a plan stored in the database.
\nDELETE
Include the authorization header:
\nAuthorization: Bearer <access_token>\n\n200 OK\n\n{\n \"status\": \"success\",\n \"data\":null\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\nThis folder includes all api endpoint to access and manipulate all plans data.
\n","_postman_id":"8df5831f-9efa-4d56-a5b5-ea46bc79216b"},{"name":"users","item":[{"name":"Get all users","id":"0e1adb1a-394c-4446-a3f8-9f9da6bbce98","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"GET","header":[],"body":{"mode":"raw","raw":"{\r\n \"fullName\":\"Arikpo Blessing\",\r\n \"userName\":\"arikpo\",\r\n \"email\":\"arikpo@gmail.com\",\r\n \"password\":\"123456789\",\r\n \"confirmPassword\":\"123456789\"\r\n}"},"url":"{{URL}}api/v1/users","description":"Retrieve a paginated list of all users in the system.
\nGET /api/v1/users
Returns all users stored in the database.
\nSupports pagination and sorting.
\n🔒 Protected
\nRequires a valid access token.
\nInclude the authorization header:
\nAuthorization: Bearer <access_token>\n\n/api/v1/users?page=1&limit=5\n\nReturns 5 users per page.
\n/api/v1/users?sort=name\n\nSorts users in ascending order by name.
\n/api/v1/users?sort=-createdAt\n\nSorts users in descending order by creation date.
\n200 OK
\n{\n \"status\": \"success\",\n \"results\": 2,\n \"data\": {\n \"docs\": [\n {\n \"_id\": \"6965ee96a69a94bf1c08729d\",\n \"name\": \"Jane Doe\",\n \"email\": \"jane@example.com\",\n \"role\": \"user\",\n \"createdAt\": \"2026-01-15T10:12:00.000Z\"\n },\n {\n \"_id\": \"6965ee96a69a94bf1c08729d\",\n \"name\": \"John Doe\",\n \"email\": \"john@example.com\",\n \"role\": \"admin\",\n \"createdAt\": \"2026-01-10T08:45:00.000Z\"\n }\n ]\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nUpdate an existing user in the system.
\nPATCH /api/v1/users/updateMe\n\nUpdates one or more fields of a user stored in the database.
\nPATCH
Protected ✅
\nRequires a valid access token.
\nInclude the authorization header:
\nAuthorization: Bearer <access_token>\n\n{\n \"email\": \"ejojo@gmail.com\"\n}\n\n\n\n<p >Only the fields provided will be updated.</p>
\n
Status Code
\n200 OK\n\nResponse Body
\n{\n \"status\": \"success\",\n \"data\": {\n \"user\": {\n \n\"_id\"\n:\"696b959b3062f17504b5908a\"\n \"fullName\"\n:\"test\"\n \"email\":\"test@gmail.com\"\n \"photo\"\n:\"default.jpg\"\n }\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"Invalid update data\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"No plan found with that ID\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nDelete a user in the system.
\nDELETE /api/v1/users/:id\n\nThis endpoint updates a plan stored in the database.
\nDELETE
Include the authorization header:
\nAuthorization: Bearer <access_token>\n\n200 OK\n\n{\n \"status\": \"success\",\n \"data\":null\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\nRetrieve a single user by an user id storedin the rquest object.
\nGET /api/v1/users/me\n\nThis endpoint returns a user stored in the database.
\nGET
Include the authorization header:
\nAuthorization: Bearer <access_token>\n\n200 OK\n\n{\n \"status\": \"success\",\n \"results\": 3,\n \"data\": {\n \"user\": \n {\n \"fullName\":\"Essien Jojo\"\n \"email\":\"ejojo@gmail.com\"\n \"photo\":\"user-695aad0f7d95f1a0870e2ec3-1767862410756.jpeg\"\n \"active\":true\n }\n }\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\nThis folder includes allapi end point to manage and manipulate users data.
\n","_postman_id":"8f42ddfe-a63d-46f7-947a-2f7e26a9ce94"},{"name":"authentication","item":[{"name":"sign up","event":[{"listen":"test","script":{"id":"eacf0990-e4b2-434f-8753-d8792ff41505","exec":["pm.environment.set(\"jwt\", pm.response.json().token);"],"type":"text/javascript","packages":{},"requests":{}}}],"id":"f3d44621-e703-4b7b-86b1-18c94c2a4ac8","protocolProfileBehavior":{"disableBodyPruning":true},"request":{"method":"POST","header":[],"body":{"mode":"raw","raw":"{\r\n \"fullName\":\"test1\",\r\n \"email\":\"test1@gmail.com\",\r\n \"password\":\"123456789\",\r\n \"confirmPassword\":\"123456789\"\r\n}","options":{"raw":{"language":"json"}}},"url":"{{URL}}api/v1/users/signUp","description":"Create a new user and store their details in the system.
\nPOST /api/v1/users/signup
\n\n
POST is used to create new resources.signup endpoints are typically public, not protected.
Creates a new user account and saves the user’s information in the database.
\n🔓 Public
\nNo authentication required.
\n\n\n
If you intend this to be admin-only user creation, tell me and I’ll document it correctly.
\n{\n \"fullName\": \"Essien Jojo\",\n \"email\": \"ejojo@gmail.com\",\n \"password\": \"********\",\n \"passwordConfirm\": \"********\"\n}\n\n\n\n
Password fields are required during sign-up but never returned in responses.
\n201 Created
\n{\n \"status\": \"success\",\n \"data\": {\n \"user\": {\n \"fullName\": \"Essien Jojo\",\n \"email\": \"ejojo@gmail.com\",\n \"photo\": \"user-695aad0f7d95f1a0870e2ec3-1767862410756.jpeg\",\n \"active\": true\n }\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"Invalid input data\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nAuthenticate a user and grant access to the system.
\nPOST /api/v1/users/login
Authenticates a user using their credentials and returns an access token along with user details.
\nPOST
\n\n\n<p >Login actions create a new authentication session/token.</p>
\n
🔓 Public
\nNo authentication required.
\n\n\n<p >You cannot require a token to obtain a token.</p>
\n
{\n \"email\": \"ejojo@gmail.com\",\n \"password\": \"********\"\n}\n\n200 OK
\n{\n \"status\": \"success\",\n \"token\": \"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...\",\n \"data\": {\n \"user\": {\n \"fullName\": \"Essien Jojo\",\n \"email\": \"ejojo@gmail.com\",\n \"photo\": \"user-695aad0f7d95f1a0870e2ec3-1767862410756.jpeg\",\n \"active\": true\n }\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"Incorrect email or password\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nInitiate the password reset process for a user account.
\nPOST /api/v1/users/forgotPassword
Generates a password reset token and sends a password reset link to the user’s registered email address.
\nPOST
\n\n\n<p >Used to initiate a password recovery flow.</p>
\n
🔓 Public
\nNo authentication required.
\n{\n \"email\": \"ejojo@gmail.com\"\n}\n\n200 OK
\n{\n \"status\": \"success\",\n \"message\": \"Password reset token sent to email\"\n}\n\n\n\n<p >For security reasons, the response should be the same whether the email exists or not.</p>
\n
{\n \"status\": \"fail\",\n \"message\": \"Please provide an email address\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nReset a user’s password using a valid password reset token.
\nPATCH/api/v1/users/resetPassword/:token
Example
\n/api/v1/users/resetPassword/37d95304cff1cbbf87409d655aac84082c6185d95be6b11db84f62d08edfda75\n\nValidates the password reset token and updates the user’s password.
\nOnce successful, the reset token is invalidated.
\nPATCH
\n\n\n<p >Used to partially update a user resource (password only).</p>
\n
🔓 Public
\nNo authentication required.
\n\n\n<p >Access is granted through the reset token itself.</p>
\n
{\n \"currentPassword\":\"current\",\n \"password\": \"NewSecurePassword123!\",\n \"confirmPassword\": \"NewSecurePassword123!\"\n}\n\n200 OK
\n{\n \"status\": \"success\",\n \"message\": \"Password reset successful\"\n}\n\n\n\n<p >You may optionally return a new JWT token after reset.</p>
\n
{\n \"status\": \"fail\",\n \"message\": \"Token is invalid or has expired\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"Passwords do not match\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nUpdate the password of the currently authenticated user.
\nPATCH/api/v1/users/updateMyPassword
Allows a logged-in user to change their password by providing their current password and a new password.
\nAll existing authentication tokens are invalidated after a successful update.
\nPATCH
\n🔒 Protected
\nRequires a valid access token.
\nAuthorization Header
\nAuthorization: Bearer <access_token>\n\n{\n \"currentPassword\": \"OldPassword123!\",\n \"password\": \"NewSecurePassword123!\",\n \"passwordConfirm\": \"NewSecurePassword123!\"\n}\n\n200 OK
\n{\n \"status\": \"success\",\n \"token\": \"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...\",\n \"message\": \"Password updated successfully\"\n}\n\nCreate a new task in the system.
\nPOST/api/v1/tasks
Creates a new task and stores it in the database.
\nThe task is automatically associated with the authenticated user.
\nPOST
\n\n\n<p >Used to create a new resource.</p>
\n
🔒 Protected
\nRequires a valid access token.
\nAuthorization Header
\nAuthorization: Bearer <access_token>\n\n{\n \"task\": \"Finish API documentation\",\n \"dueDate\": \"2026-01-20\",\n \"priority\": \"high\"\n}\n\n\n\n<p >Optional fields can be omitted depending on your schema.</p>
\n
201 Created
\n{\n \"status\": \"success\",\n \"data\": {\n \"task\": {\n \"_id\": \"6970aa96a69a94bf1c08745e\",\n \"title\": \"Finish API documentation\",\n \"description\": \"Complete users and tasks API docs\",\n \"dueDate\": \"2026-01-20T00:00:00.000Z\",\n \"priority\": \"high\",\n \"completed\": false,\n \"user\": \"6962225f15d8e9bcb9d0fc9d\",\n \"createdAt\": \"2026-01-18T22:10:00.000Z\"\n }\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"Invalid input data\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nRetrieve a paginated list of all tasks in the system.
\nGET/api/v1/tasks
Returns all tasks stored in the database.
\nSupports pagination, sorting, and filtering.
\nAccess can be restricted to admin-only or scoped to the authenticated user, depending on your implementation.
\nGET
\n🔒 Protected
\nRequires a valid access token.
\nAuthorization Header
\nAuthorization: Bearer <access_token>\n\n/api/v1/tasks?page=1&limit=10\n\n/api/v1/tasks?sort=-createdAt\n\n/api/v1/tasks?completed=false&priority=high\n\n200 OK
\n{\n \"status\": \"success\",\n \"results\": 2,\n \"data\": {\n \"docs\": [\n {\n \"_id\": \"6970aa96a69a94bf1c08745e\",\n \"task\": \"Finish API documentation\",\n \"priority\": \"high\",\n \"completed\": false,\n \"user\": \"6962225f15d8e9bcb9d0fc9d\",\n \"createdAt\": \"2026-01-18T22:10:00.000Z\"\n },\n {\n \"_id\": \"6970aa96a69a94bf1c08745f\",\n \"task\": \"Deploy backend\",\n \"priority\": \"medium\",\n \"completed\": true,\n \"user\": \"6962225f15d8e9bcb9d0fc9d\",\n \"createdAt\": \"2026-01-17T18:30:00.000Z\"\n }\n ]\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nDelete an existing task from the system.
\nDELETE/api/v1/tasks/:id
Deletes a task identified by its ID.
\nOnly the task owner (or an admin) is allowed to delete the task.
\nDELETE
\n🔒 Protected
\nRequires a valid access token.
\nAuthorization Header
\nAuthorization: Bearer <access_token>\n\nDELETE /api/v1/tasks/6970aa96a69a94bf1c08745e\n\n204 No Content
\n{\n \"status\": \"success\",\n \"data\": null\n}\n\n\n\n<p >No response body is required for a successful delete.</p>
\n
{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You do not have permission to delete this task\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"No task found with that ID\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nStartFragment
\nRetrieve all tasks associated with a particular plan.
\nGET/api/v1/plans/:planId/tasks
Example
\n/api/v1/plans/6963c079a4b3e84b1d29e60c/tasks\n\nReturns all tasks that belong to the specified plan ID.
\nSupports pagination, sorting, and filtering.
\nGET
\n🔒 Protected
\nRequires a valid access token.
\nAuthorization Header
\nAuthorization: Bearer <access_token>\n\n/api/v1/plans/6963c079a4b3e84b1d29e60c/tasks?page=1&limit=5\n\n/api/v1/plans/6963c079a4b3e84b1d29e60c/tasks?completed=false\n\n200 OK
\n{\n \"status\": \"success\",\n \"results\": 2,\n \"data\": {\n \"docs\": [\n {\n \"_id\": \"6970aa96a69a94bf1c08745e\",\n \"task\": \"Design UI\",\n \"description\": \"Create dashboard UI\",\n \"priority\": \"high\",\n \"completed\": false,\n \"plan\": \"6963c079a4b3e84b1d29e60c\",\n \"user\": \"6962225f15d8e9bcb9d0fc9d\",\n \"createdAt\": \"2026-01-18T22:10:00.000Z\"\n },\n {\n \"_id\": \"6970aa96a69a94bf1c08745f\",\n \"task\": \"Build API\",\n \"priority\": \"medium\",\n \"completed\": true,\n \"plan\": \"6963c079a4b3e84b1d29e60c\",\n \"user\": \"6962225f15d8e9bcb9d0fc9d\",\n \"createdAt\": \"2026-01-17T18:30:00.000Z\"\n }\n ]\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"No plan found with that ID\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nStartFragment
\nCreate a new task that belongs to a particular plan.
\nPOST/api/v1/plans/:planId/tasks
Example
\n/api/v1/plans/6963c079a4b3e84b1d29e60c/tasks\n\nCreates a new task and automatically associates it with the specified plan ID.
\nThe task is also linked to the authenticated user.
\nPOST
\n🔒 Protected
\nRequires a valid access token.
\nAuthorization Header
\nAuthorization: Bearer <access_token>\n\n{\n \"task\": \"Implement authentication\",\n \"description\": \"Add login and signup flow\",\n \"dueDate\": \"2026-01-25\",\n \"priority\": \"high\"\n}\n\n\n\n
The plan field is not required in the body — it is derived from planId.
201 Created
\n{\n \"status\": \"success\",\n \"data\": {\n \"task\": {\n \"_id\": \"6971bb96a69a94bf1c08761a\",\n \"task\": \"Implement authentication\",\n \"description\": \"Add login and signup flow\",\n \"dueDate\": \"2026-01-25T00:00:00.000Z\",\n \"priority\": \"high\",\n \"completed\": false,\n \"plan\": \"6963c079a4b3e84b1d29e60c\",\n \"user\": \"6962225f15d8e9bcb9d0fc9d\",\n \"createdAt\": \"2026-01-19T09:30:00.000Z\"\n }\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"Invalid input data\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"No plan found with that ID\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nRetrieve all plans that belong to a particular user.
\nGET/api/v1/users/:userId/plans
Example
\n/api/v1/users/69644604c184de7fd9d26e1a/plans\n\nReturns all plans created by or assigned to the specified user.
\nSupports pagination and sorting.
\nGET
\n🔒 Protected
\nRequires a valid access token.
\nAuthorization Header
\nAuthorization: Bearer <access_token>\n\n/api/v1/users/69644604c184de7fd9d26e1a/plans?page=1&limit=5\n\n/api/v1/users/69644604c184de7fd9d26e1a/plans?sort=-createdAt\n\n200 OK
\n{\n \"status\": \"success\",\n \"results\": 2,\n \"data\": {\n \"docs\": [\n {\n \"_id\": \"6963c079a4b3e84b1d29e60c\",\n \"plan\": \"January Productivity Plan\",\n \"user\": \"69644604c184de7fd9d26e1a\",\n \"createdAt\": \"2026-01-10T08:30:00.000Z\"\n },\n {\n \"_id\": \"6963c079a4b3e84b1d29e60d\",\n \"plan\": \"Fitness Plan\",\n \"user\": \"69644604c184de7fd9d26e1a\",\n \"createdAt\": \"2026-01-05T12:15:00.000Z\"\n }\n ]\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You do not have permission to view these plans\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"No user found with that ID\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\nStartFragment
\nCreate a new plan and associate it with a particular user.
\nPOST/api/v1/users/:userId/plans
Example
\n/api/v1/users/69644604c184de7fd9d26e1a/plans\n\nCreates a new plan and automatically associates it with the specified user ID.
\nPOST
\n🔒 Protected
\nRequires a valid access token.
\nAuthorization Header
\nAuthorization: Bearer <access_token>\n\n{\n \"title\": \"Q1 Growth Plan\",\n}\n\n\n\n
The user field is not required in the request body — it is derived from userId.
201 Created
\n{\n \"status\": \"success\",\n \"data\": {\n \"plan\": {\n \"_id\": \"6963c079a4b3e84b1d29e60c\",\n \"plan\": \"Q1 Growth Plan\",\n \"user\": \"69644604c184de7fd9d26e1a\",\n \"createdAt\": \"2026-01-18T14:40:00.000Z\"\n }\n }\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"Invalid input data\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You are not logged in\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"You do not have permission to create a plan for this user\"\n}\n\n{\n \"status\": \"fail\",\n \"message\": \"No user found with that ID\"\n}\n\n{\n \"status\": \"error\",\n \"message\": \"Something went wrong\"\n}\n\n