Admin schedules a user's account for deletion with the standard cooling-off window.
POST/admin/gdpr/users/:userId/schedule-deletion
Skips the email-confirmation dance — the admin's authenticated action IS the confirmation — but still honors the cooling-off window so the audit trail looks identical to a self-served request and the user can cancel via the support channel if the request was made in error.
Request
Responses
- 200
- 401
- 403
OK
Unauthorized - missing or invalid credentials.
Forbidden - authenticated but missing required role or policy.