Retrieves a lightweight user profile for the specified user or the current authenticated user.

GET 
/user

Does not expose private fields; intended for profile header rendering and quick identity checks.

Request

Responses

200

OK

401

Unauthorized - missing or invalid credentials.

403

Forbidden - authenticated but missing required role or policy.