Akamai API Security Agentic Access
Akamai API Security exposes 213 API operations that an AI agent could call, of which 103 are state-changing ‘acting’ operations. This is a recommended x-agentic-access execution contract — the scope, audience, consequence tier, short-lived token constraints, and escalation each action should carry before it is handed to an autonomous agent.
By consequence: 110 read, 102 write, and 1 physical.
Contracts are classified heuristically from the provider’s OpenAPI and refresh on every APIs.io network build; audience is bound per deployment. The model follows Curity’s Access Intelligence (apidays Munich 2026). Browse every provider’s agent contracts at agentic-access.apis.io.
By consequence
Highest-consequence actions
The physical and safety-critical operations an agent could invoke — the ones that most warrant scoped tokens, tight TTLs, and escalation. Full per-operation contracts are in the source below.
| Method | Path | Consequence | Human-in-loop |
|---|---|---|---|
| PUT | /configs/{configId}/versions/{versionNumber}/match-targets/sequence | physical | conditional |
Source
Agentic Access
generated: '2026-07-15'
method: generated
source: openapi/akamai-api-security-openapi.json
description: Recommended x-agentic-access execution contracts, classified heuristically from
the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind
audience per deployment. See research/curity/agentic-governance/.
summary:
operations: 213
by_action_class:
acting: 103
connected: 110
by_consequence:
write: 102
read: 110
physical: 1
human_in_the_loop_required: 0
operations:
- path: /activations
method: post
operationId: post-activations
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /activations/status/{statusId}
method: get
operationId: get-activations-status
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /activations/{activationId}
method: get
operationId: get-activation
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api-discovery
method: get
operationId: get-api-list
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api-discovery/host/{hostname}/basepath/{basePath}
method: get
operationId: get-api-details
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api-discovery/host/{hostname}/basepath/{basePath}
method: put
operationId: put-api-visibility
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api-discovery/host/{hostname}/basepath/{basePath}/endpoints
method: post
operationId: post-api-endpoint-resource
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api-discovery/host/{hostname}/basepath/{basePath}/endpoints
method: get
operationId: get-discovered-api-endpoints
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs
method: post
operationId: post-config
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs
method: get
operationId: get-configs
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}
method: get
operationId: get-config
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}
method: put
operationId: put-config
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}
method: delete
operationId: delete-config
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/activations
method: get
operationId: get-activation-history
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/custom-rules
method: post
operationId: post-config-custom-rules
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/custom-rules
method: get
operationId: get-configs-custom-rules
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/custom-rules/{ruleId}
method: get
operationId: get-config-custom-rule
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/custom-rules/{ruleId}
method: put
operationId: put-config-custom-rule
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/custom-rules/{ruleId}
method: delete
operationId: delete-config-custom-rule
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/failover-hostnames
method: get
operationId: get-failover-hostnames
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/notification/subscription/{feature}
method: post
operationId: post-subscription-feature
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/notification/subscription/{feature}
method: get
operationId: get-subscription-feature
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions
method: post
operationId: post-config-versions
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions
method: get
operationId: get-config-versions
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/diff
method: post
operationId: post-config-versions-diff
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}
method: get
operationId: get-version-number
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}
method: delete
operationId: delete-version-number
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/cookie-settings
method: get
operationId: get-advanced-settings-cookie-settings
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/cookie-settings
method: put
operationId: put-advanced-settings-cookie-settings
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/evasive-path-match
method: get
operationId: get-evasive-path-match-per-config
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/evasive-path-match
method: put
operationId: put-evasive-path-match-per-config
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/logging
method: get
operationId: get-advanced-settings-logging
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/logging
method: put
operationId: put-advanced-settings-logging
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/logging/attack-payload
method: get
operationId: get-advanced-settings-attack-payload-logging
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/logging/attack-payload
method: put
operationId: put-advanced-settings-attack-payload-logging
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/pii-learning
method: get
operationId: get-advanced-settings-pii-learning
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/pii-learning
method: put
operationId: put-advanced-settings-pii-learning
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/pragma-header
method: get
operationId: get-advanced-settings-pragma-header
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/pragma-header
method: put
operationId: put-advanced-settings-pragma-header
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/prefetch
method: get
operationId: get-advanced-settings-prefetch
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/prefetch
method: put
operationId: put-advanced-settings-prefetch
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/request-body
method: get
operationId: get-advanced-settings-request-body
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/advanced-settings/request-body
method: put
operationId: put-advanced-settings-request-body
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/bypass-network-lists
method: get
operationId: get-bypass-network-lists
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/bypass-network-lists
method: put
operationId: put-bypass-network-lists
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/custom-deny
method: post
operationId: post-custom-deny
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/custom-deny
method: get
operationId: get-custom-deny-actions
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/custom-deny/{customDenyId}
method: get
operationId: get-custom-deny-action
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/custom-deny/{customDenyId}
method: put
operationId: put-custom-deny
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/custom-deny/{customDenyId}
method: delete
operationId: delete-custom-deny
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/hostname-coverage/match-targets
method: get
operationId: get-coverage-match-targets
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/hostname-coverage/overlapping
method: get
operationId: get-hostname-coverage-overlapping
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/malware-policies
method: post
operationId: post-malware-policies
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/malware-policies
method: get
operationId: get-malware-policies
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/malware-policies/content-types
method: get
operationId: get-malware-policy-content-types
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/malware-policies/{malwarePolicyId}
method: get
operationId: get-malware-policy
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/malware-policies/{malwarePolicyId}
method: put
operationId: put-malware-policy
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/malware-policies/{malwarePolicyId}
method: delete
operationId: delete-malware-policy
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/match-targets
method: post
operationId: post-match-targets
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/match-targets
method: get
operationId: get-match-targets
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/match-targets/sequence
method: put
operationId: put-match-targets-sequence
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/match-targets/{targetId}
method: get
operationId: get-match-target
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/match-targets/{targetId}
method: put
operationId: put-match-target
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/match-targets/{targetId}
method: delete
operationId: delete-match-target
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/protect-eval-hostnames
method: put
operationId: put-protect-eval-hostnames
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/rate-policies
method: post
operationId: post-rate-policies
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/rate-policies
method: get
operationId: get-rate-policies
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/rate-policies/{ratePolicyId}
method: get
operationId: get-rate-policy
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/rate-policies/{ratePolicyId}
method: put
operationId: put-rate-policy
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/rate-policies/{ratePolicyId}
method: delete
operationId: delete-rate-policy
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/rate-policies/{ratePolicyId}/evaluation
method: put
operationId: put-rate-policy-evaluation
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/reputation-profiles
method: post
operationId: post-reputation-profiles
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/reputation-profiles
method: get
operationId: get-reputation-profiles
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/reputation-profiles/{reputationProfileId}
method: get
operationId: get-reputation-profile
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/reputation-profiles/{reputationProfileId}
method: put
operationId: put-reputation-profile
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/reputation-profiles/{reputationProfileId}
method: delete
operationId: delete-reputation-profile
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies
method: post
operationId: post-policy
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies
method: get
operationId: get-policies
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}
method: get
operationId: get-policy
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}
method: put
operationId: put-policy
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}
method: delete
operationId: delete-policy
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/evasive-path-match
method: get
operationId: get-evasive-path-match
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/evasive-path-match
method: put
operationId: put-evasive-path-match
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/logging
method: get
operationId: get-policies-logging
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/logging
method: put
operationId: put-policies-logging
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/logging/attack-payload
method: get
operationId: get-policies-attack-payload-logging
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/logging/attack-payload
method: put
operationId: put-policies-attack-payload-logging
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/pragma-header
method: get
operationId: get-policies-pragma-header
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/pragma-header
method: put
operationId: put-policies-pragma-header
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/request-body
method: get
operationId: get-policies-request-body
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/request-body
method: put
operationId: put-policies-request-body
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/api-endpoints
method: get
operationId: get-api-endpoints
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/api-request-constraints
method: get
operationId: get-api-request-constraints
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/api-request-constraints
method: put
operationId: put-api-request-constraints
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/api-request-constraints/{apiId}
method: put
operationId: put-api-request-constraints-api
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/attack-groups
method: get
operationId: get-policy-attack-groups
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/attack-groups/{attackGroupId}
method: get
operationId: get-policy-attack-group
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
# --- truncated at 32 KB (70 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/akamai-api-security/refs/heads/main/agentic-access/akamai-api-security-agentic-access.yml