Google Analytics · Agentic Access

Google Analytics Agentic Access

x-agentic-access generated

Google Analytics exposes 129 API operations that an AI agent could call, of which 81 are state-changing ‘acting’ operations. This is a recommended x-agentic-access execution contract — the scope, audience, consequence tier, short-lived token constraints, and escalation each action should carry before it is handed to an autonomous agent.

By consequence: 48 read, 76 write, and 5 physical.

Contracts are classified heuristically from the provider’s OpenAPI and refresh on every APIs.io network build; audience is bound per deployment. The model follows Curity’s Access Intelligence (apidays Munich 2026). Browse every provider’s agent contracts at agentic-access.apis.io.

AnalyticsDataGoogleMetricsReportingWeb AnalyticsMachine LearningAttribution
Operations: 129 Acting: 81 Human-in-the-loop: 0 Method: generated

By consequence

read 48 write 76 physical 5

Highest-consequence actions

The physical and safety-critical operations an agent could invoke — the ones that most warrant scoped tokens, tight TTLs, and escalation. Full per-operation contracts are in the source below.

MethodPathConsequenceHuman-in-loop
POST /collect physical conditional
POST /collect/debug physical conditional
POST /provisioning/createAccountTicket physical conditional
POST /provisioning/createAccountTree physical conditional
POST /v1beta/accounts:provisionAccountTicket physical conditional

Source

Agentic Access

Raw ↑
generated: '2026-07-15'
method: generated
source: openapi/google-analytics-admin-api.yaml, openapi/google-analytics-data-api.yaml, openapi/google-analytics-management-api-v3.yaml,
  openapi/google-analytics-measurement-protocol.yaml, openapi/google-analytics-reporting-api-v4.yaml,
  openapi/google-analytics-user-deletion-api.yaml
description: Recommended x-agentic-access execution contracts, classified heuristically from
  the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind
  audience per deployment. See research/curity/agentic-governance/.
summary:
  operations: 129
  by_action_class:
    connected: 48
    acting: 81
  by_consequence:
    read: 48
    physical: 5
    write: 76
  human_in_the_loop_required: 0
operations:
- path: /v1beta/accountSummaries
  method: get
  operationId: analyticsadmin.accountSummaries.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/accounts
  method: get
  operationId: analyticsadmin.accounts.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/accounts:provisionAccountTicket
  method: post
  operationId: analyticsadmin.accounts.provisionAccountTicket
  x-agentic-access:
    action-class: acting
    consequence: physical
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 300
      exchange: true
      purpose-required: true
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/properties
  method: get
  operationId: analyticsadmin.properties.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/properties
  method: post
  operationId: analyticsadmin.properties.create
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{account}:searchChangeHistoryEvents
  method: post
  operationId: analyticsadmin.accounts.searchChangeHistoryEvents
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{entity}:runAccessReport
  method: post
  operationId: analyticsadmin.properties.runAccessReport
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{name}
  method: delete
  operationId: analyticsadmin.properties.googleAdsLinks.delete
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{name}
  method: get
  operationId: analyticsadmin.properties.dataStreams.measurementProtocolSecrets.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{name}
  method: patch
  operationId: analyticsadmin.properties.googleAdsLinks.patch
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{name}:archive
  method: post
  operationId: analyticsadmin.properties.customMetrics.archive
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{parent}/conversionEvents
  method: get
  operationId: analyticsadmin.properties.conversionEvents.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{parent}/conversionEvents
  method: post
  operationId: analyticsadmin.properties.conversionEvents.create
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{parent}/customDimensions
  method: get
  operationId: analyticsadmin.properties.customDimensions.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{parent}/customDimensions
  method: post
  operationId: analyticsadmin.properties.customDimensions.create
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{parent}/customMetrics
  method: get
  operationId: analyticsadmin.properties.customMetrics.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{parent}/customMetrics
  method: post
  operationId: analyticsadmin.properties.customMetrics.create
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{parent}/dataStreams
  method: get
  operationId: analyticsadmin.properties.dataStreams.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{parent}/dataStreams
  method: post
  operationId: analyticsadmin.properties.dataStreams.create
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{parent}/firebaseLinks
  method: get
  operationId: analyticsadmin.properties.firebaseLinks.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{parent}/firebaseLinks
  method: post
  operationId: analyticsadmin.properties.firebaseLinks.create
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{parent}/googleAdsLinks
  method: get
  operationId: analyticsadmin.properties.googleAdsLinks.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{parent}/googleAdsLinks
  method: post
  operationId: analyticsadmin.properties.googleAdsLinks.create
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{parent}/measurementProtocolSecrets
  method: get
  operationId: analyticsadmin.properties.dataStreams.measurementProtocolSecrets.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{parent}/measurementProtocolSecrets
  method: post
  operationId: analyticsadmin.properties.dataStreams.measurementProtocolSecrets.create
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{property}:acknowledgeUserDataCollection
  method: post
  operationId: analyticsadmin.properties.acknowledgeUserDataCollection
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{name}
  method: get
  operationId: analyticsdata.properties.audienceExports.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{name}:query
  method: post
  operationId: analyticsdata.properties.audienceExports.query
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{parent}/audienceExports
  method: get
  operationId: analyticsdata.properties.audienceExports.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /v1beta/{parent}/audienceExports
  method: post
  operationId: analyticsdata.properties.audienceExports.create
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{property}:batchRunPivotReports
  method: post
  operationId: analyticsdata.properties.batchRunPivotReports
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{property}:batchRunReports
  method: post
  operationId: analyticsdata.properties.batchRunReports
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{property}:checkCompatibility
  method: post
  operationId: analyticsdata.properties.checkCompatibility
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{property}:runPivotReport
  method: post
  operationId: analyticsdata.properties.runPivotReport
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{property}:runRealtimeReport
  method: post
  operationId: analyticsdata.properties.runRealtimeReport
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /v1beta/{property}:runReport
  method: post
  operationId: analyticsdata.properties.runReport
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /data/ga
  method: get
  operationId: analytics.data.ga.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /data/mcf
  method: get
  operationId: analytics.data.mcf.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /data/realtime
  method: get
  operationId: analytics.data.realtime.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accountSummaries
  method: get
  operationId: analytics.management.accountSummaries.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts
  method: get
  operationId: analytics.management.accounts.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/entityUserLinks
  method: get
  operationId: analytics.management.accountUserLinks.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.manage.users
    - https://www.googleapis.com/auth/analytics.manage.users.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/entityUserLinks
  method: post
  operationId: analytics.management.accountUserLinks.insert
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.manage.users
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/entityUserLinks/{linkId}
  method: delete
  operationId: analytics.management.accountUserLinks.delete
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.manage.users
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/entityUserLinks/{linkId}
  method: put
  operationId: analytics.management.accountUserLinks.update
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.manage.users
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/filters
  method: get
  operationId: analytics.management.filters.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/filters
  method: post
  operationId: analytics.management.filters.insert
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/filters/{filterId}
  method: delete
  operationId: analytics.management.filters.delete
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/filters/{filterId}
  method: get
  operationId: analytics.management.filters.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/filters/{filterId}
  method: patch
  operationId: analytics.management.filters.patch
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/filters/{filterId}
  method: put
  operationId: analytics.management.filters.update
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties
  method: get
  operationId: analytics.management.webproperties.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties
  method: post
  operationId: analytics.management.webproperties.insert
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}
  method: get
  operationId: analytics.management.webproperties.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}
  method: patch
  operationId: analytics.management.webproperties.patch
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}
  method: put
  operationId: analytics.management.webproperties.update
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDataSources
  method: get
  operationId: analytics.management.customDataSources.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDataSources/{customDataSourceId}/deleteUploadData
  method: post
  operationId: analytics.management.uploads.deleteUploadData
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDataSources/{customDataSourceId}/uploads
  method: get
  operationId: analytics.management.uploads.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDataSources/{customDataSourceId}/uploads
  method: post
  operationId: analytics.management.uploads.uploadData
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDataSources/{customDataSourceId}/uploads/{uploadId}
  method: get
  operationId: analytics.management.uploads.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDimensions
  method: get
  operationId: analytics.management.customDimensions.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDimensions
  method: post
  operationId: analytics.management.customDimensions.insert
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDimensions/{customDimensionId}
  method: get
  operationId: analytics.management.customDimensions.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDimensions/{customDimensionId}
  method: patch
  operationId: analytics.management.customDimensions.patch
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customDimensions/{customDimensionId}
  method: put
  operationId: analytics.management.customDimensions.update
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customMetrics
  method: get
  operationId: analytics.management.customMetrics.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customMetrics
  method: post
  operationId: analytics.management.customMetrics.insert
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customMetrics/{customMetricId}
  method: get
  operationId: analytics.management.customMetrics.get
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customMetrics/{customMetricId}
  method: patch
  operationId: analytics.management.customMetrics.patch
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/customMetrics/{customMetricId}
  method: put
  operationId: analytics.management.customMetrics.update
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    audience: null
    token:
      max-ttl: 900
    escalation:
      human-in-the-loop: conditional
      triggers:
      - abnormal
      - high-value
    audit: required
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/entityAdWordsLinks
  method: get
  operationId: analytics.management.webPropertyAdWordsLinks.list
  x-agentic-access:
    action-class: connected
    consequence: read
    subject: optional
    scope:
    - https://www.googleapis.com/auth/analytics.edit
    - https://www.googleapis.com/auth/analytics.readonly
    token:
      max-ttl: 3600
    audit: none
- path: /management/accounts/{accountId}/webproperties/{webPropertyId}/entityAdWordsLinks
  method: post
  operationId: analytics.management.webPropertyAdWordsLinks.insert
  x-agentic-access:
    action-class: acting
    consequence: write
    subject: required
    scope:
    - https://www.googleapis.com/auth/analytics.edi

# --- truncated at 32 KB (58 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/google-analytics/refs/heads/main/agentic-access/google-analytics-agentic-access.yml