Activiti Agentic Access
Activiti exposes 171 API operations that an AI agent could call, of which 86 are state-changing ‘acting’ operations. This is a recommended x-agentic-access execution contract — the scope, audience, consequence tier, short-lived token constraints, and escalation each action should carry before it is handed to an autonomous agent.
By consequence: 85 read, 81 write, 4 physical, and 1 safety-critical.
1 operation are classed safety-critical and should require human-in-the-loop approval at runtime.
Contracts are classified heuristically from the provider’s OpenAPI and refresh on every APIs.io network build; audience is bound per deployment. The model follows Curity’s Access Intelligence (apidays Munich 2026). Browse every provider’s agent contracts at agentic-access.apis.io.
By consequence
Highest-consequence actions
The physical and safety-critical operations an agent could invoke — the ones that most warrant scoped tokens, tight TTLs, and escalation. Full per-operation contracts are in the source below.
| Method | Path | Consequence | Human-in-loop |
|---|---|---|---|
| POST | /api/enterprise/idm/passwords | safety-critical | required |
| PUT | /api/enterprise/filters/processes | physical | conditional |
| PUT | /api/enterprise/filters/tasks | physical | conditional |
| POST | /api/enterprise/runtime-app-definitions | physical | conditional |
| PUT | /api/enterprise/tasks/{taskId}/checklist | physical | conditional |
Source
Agentic Access
generated: '2026-07-15'
method: generated
source: openapi/activiti-rest-openapi.yml
description: Recommended x-agentic-access execution contracts, classified heuristically from
the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind
audience per deployment. See research/curity/agentic-governance/.
summary:
operations: 171
by_action_class:
connected: 85
acting: 86
by_consequence:
read: 85
write: 81
physical: 4
safety-critical: 1
human_in_the_loop_required: 1
operations:
- path: /api/enterprise/account/integration
method: get
operationId: getAccountsUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/basic-auths
method: get
operationId: getBasicAuthConfigurationsUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/basic-auths
method: post
operationId: createBasicAuthConfigurationUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/basic-auths/{basicAuthId}
method: get
operationId: getBasicAuthConfigurationUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/basic-auths/{basicAuthId}
method: put
operationId: updateBasicAuthConfigurationUsingPUT_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/basic-auths/{basicAuthId}
method: delete
operationId: removeBasicAuthonfigurationUsingDELETE_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/endpoints
method: get
operationId: getEndpointConfigurationsUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/endpoints
method: post
operationId: createEndpointConfigurationUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/endpoints/{endpointConfigurationId}
method: get
operationId: getEndpointConfigurationUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/endpoints/{endpointConfigurationId}
method: put
operationId: updateEndpointConfigurationUsingPUT_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/endpoints/{endpointConfigurationId}
method: delete
operationId: removeEndpointConfigurationUsingDELETE_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups
method: get
operationId: getGroupsUsingGET_2
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/groups
method: post
operationId: createNewGroupUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}
method: get
operationId: getGroupUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/groups/{groupId}
method: put
operationId: updateGroupUsingPUT_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}
method: delete
operationId: deleteGroupUsingDELETE_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}/action/activate
method: post
operationId: activateUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}/add-all-users
method: post
operationId: addAllUsersToGroupUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}/capabilities
method: post
operationId: addGroupCapabilitiesUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}/capabilities/{groupCapabilityId}
method: delete
operationId: deleteGroupCapabilityUsingDELETE_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}/members/{userId}
method: post
operationId: addGroupMemberUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}/members/{userId}
method: delete
operationId: deleteGroupMemberUsingDELETE_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}/potential-capabilities
method: get
operationId: getCapabilitiesUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/groups/{groupId}/related-groups
method: get
operationId: getRelatedGroupsUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/groups/{groupId}/related-groups/{relatedGroupId}
method: post
operationId: addRelatedGroupUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}/related-groups/{relatedGroupId}
method: delete
operationId: deleteRelatedGroupUsingDELETE_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/groups/{groupId}/users
method: get
operationId: getGroupUsersUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/tenants
method: get
operationId: getTenantsUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/tenants
method: post
operationId: createTenantUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/tenants/{tenantId}
method: get
operationId: getTenantUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/tenants/{tenantId}
method: put
operationId: updateUsingPUT_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/tenants/{tenantId}
method: delete
operationId: deleteTenantUsingDELETE_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/tenants/{tenantId}/events
method: get
operationId: getTenantEventsUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/tenants/{tenantId}/logo
method: get
operationId: getTenantLogoUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/tenants/{tenantId}/logo
method: post
operationId: uploadTenantLogoUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/users
method: get
operationId: getUsersUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/users
method: post
operationId: createNewUserUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/users
method: put
operationId: bulkUpdateUsersUsingPUT_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/admin/users/{userId}
method: get
operationId: getUserUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/admin/users/{userId}
method: put
operationId: updateUserDetailsUsingPUT_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/app-definitions/import
method: post
operationId: importAppDefinitionUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/app-definitions/{modelId}/export
method: get
operationId: exportAppDefinitionUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/app-definitions/{modelId}/import
method: post
operationId: importAppDefinitionUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/app-definitions/{modelId}/publish
method: post
operationId: publishAppDefinitionUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/app-version
method: get
operationId: getAppVersionUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/content
method: post
operationId: createTemporaryRelatedContentUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/content/raw
method: post
operationId: createTemporaryRawRelatedContentUsingPOST_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/content/{contentId}
method: get
operationId: getContentUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/content/{contentId}
method: delete
operationId: deleteContentUsingDELETE_1
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/content/{contentId}/raw
method: get
operationId: getRawContentUsingGET_3
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/content/{contentId}/rendition/{renditionType}
method: get
operationId: getRawContentUsingGET_2
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/editor/form-models/values
method: get
operationId: getFormsUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/editor/form-models/{formId}
method: get
operationId: getFormUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/editor/form-models/{formId}
method: put
operationId: saveFormUsingPUT
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/editor/form-models/{formId}/history/{formHistoryId}
method: get
operationId: getFormHistoryUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/editor/form-models/{formId}/validate
method: put
operationId: validateModelUsingPUT
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/filters/processes
method: get
operationId: getUserProcessInstanceFiltersUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/filters/processes
method: post
operationId: createUserProcessInstanceFilterUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/filters/processes
method: put
operationId: orderUserProcessInstanceFiltersUsingPUT
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/filters/processes/{userFilterId}
method: get
operationId: getUserProcessInstanceFilterUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/filters/processes/{userFilterId}
method: put
operationId: updateUserProcessInstanceFilterUsingPUT
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/filters/processes/{userFilterId}
method: delete
operationId: deleteUserProcessInstanceFilterUsingDELETE
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/filters/tasks
method: get
operationId: getUserTaskFiltersUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/filters/tasks
method: post
operationId: createUserTaskFilterUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/filters/tasks
method: put
operationId: orderUserTaskFiltersUsingPUT
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/filters/tasks/{userFilterId}
method: get
operationId: getUserTaskFilterUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/filters/tasks/{userFilterId}
method: put
operationId: updateUserTaskFilterUsingPUT
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/filters/tasks/{userFilterId}
method: delete
operationId: deleteUserTaskFilterUsingDELETE
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/groups
method: get
operationId: getGroupsUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/groups/{groupId}/users
method: get
operationId: getUsersForGroupUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/idm-sync-log-entries
method: get
operationId: getSyncLogEntriesUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/idm-sync-log-entries/{syncLogEntryId}/logfile
method: get
operationId: getLogFileUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/idm/passwords
method: post
operationId: requestPasswordResetUsingPOST
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /api/enterprise/integration/alfresco-cloud/confirm-auth-request
method: get
operationId: confirmAuthorisationUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/alfresco-cloud/networks
method: get
operationId: getAllNetworksUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/alfresco-cloud/networks/{networkId}/folders/{folderId}/content
method: get
operationId: getContentInFolderUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/alfresco-cloud/networks/{networkId}/sites
method: get
operationId: getAllSitesUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/alfresco-cloud/networks/{networkId}/sites/{siteId}/content
method: get
operationId: getContentInSiteUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/alfresco/{repositoryId}/folders/{folderId}/content
method: get
operationId: getContentInFolderUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/alfresco/{repositoryId}/sites
method: get
operationId: getAllSitesUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/alfresco/{repositoryId}/sites/{siteId}/content
method: get
operationId: getContentInSiteUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/box/confirm-auth-request
method: get
operationId: confirmAuthorisationUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/box/files
method: get
operationId: getFilesUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/box/status
method: get
operationId: getBoxPluginStatusUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/box/{userId}/account
method: get
operationId: getRepositoryAccountUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/box/{userId}/account
method: post
operationId: createRepositoryAccountUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/integration/box/{userId}/account
method: put
operationId: updateRepositoryAccountUsingPUT
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/integration/box/{userId}/account
method: delete
operationId: deleteRepositoryAccountUsingDELETE
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/integration/google-drive/confirm-auth-request
method: get
operationId: confirmAuthorisationUsingGET_2
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/integration/google-drive/files
method: get
operationId: getFilesUsingGET_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/models
method: get
operationId: getModelsUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/models
method: post
operationId: createModelUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/models-for-app-definition
method: get
operationId: getModelsToIncludeInAppDefinitionUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/models/{modelId}
method: get
operationId: getModelUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/models/{modelId}
method: put
operationId: updateModelUsingPUT
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/models/{modelId}
method: delete
operationId: deleteModelUsingDELETE
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/models/{modelId}/clone
method: post
operationId: duplicateModelUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/models/{modelId}/editor/json
method: get
operationId: getModelJSONUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/models/{modelId}/editor/json
method: post
operationId: saveModelUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/models/{modelId}/editor/validate
method: post
operationId: validateModelUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/enterprise/models/{modelId}/history
method: get
operationId: getModelHistoryCollectionUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/models/{modelId}/history/{modelHistoryId}
method: get
operationId: getProcessModelHistoryUsingGET
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/enterprise/models/{modelId}/newversion
method: post
operationId: importNewVersionUsingPOST
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
# --- truncated at 32 KB (52 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/activiti/refs/heads/main/agentic-access/activiti-agentic-access.yml