GridGain Agentic Access
GridGain exposes 117 API operations that an AI agent could call, of which 59 are state-changing ‘acting’ operations. This is a recommended x-agentic-access execution contract — the scope, audience, consequence tier, short-lived token constraints, and escalation each action should carry before it is handed to an autonomous agent.
By consequence: 58 read, 41 write, 3 physical, and 15 safety-critical.
15 operations are classed safety-critical and should require human-in-the-loop approval at runtime.
Contracts are classified heuristically from the provider’s OpenAPI and refresh on every APIs.io network build; audience is bound per deployment. The model follows Curity’s Access Intelligence (apidays Munich 2026). Browse every provider’s agent contracts at agentic-access.apis.io.
By consequence
Highest-consequence actions
The physical and safety-critical operations an agent could invoke — the ones that most warrant scoped tokens, tight TTLs, and escalation. Full per-operation contracts are in the source below.
| Method | Path | Consequence | Human-in-loop |
|---|---|---|---|
| DELETE | /management/v1/authentication/jwt | safety-critical | required |
| DELETE | /management/v1/authentication/jwt/{token} | safety-critical | required |
| POST | /management/v1/cdc/replications/{name}/stop | safety-critical | required |
| POST | /management/v1/dcr/replications/{name}/stop | safety-critical | required |
| POST | /management/v1/distribution/reset | safety-critical | required |
| POST | /management/v1/metric/cluster/disable | safety-critical | required |
| POST | /management/v1/metric/node/disable | safety-critical | required |
| DELETE | /management/v1/rbac/pg | safety-critical | required |
| DELETE | /management/v1/rbac/ra | safety-critical | required |
| POST | /management/v1/recovery/cluster/reset | safety-critical | required |
| POST | /management/v1/recovery/zone/partitions/reset | safety-critical | required |
| DELETE | /management/v1/sql/queries/{queryId} | safety-critical | required |
| DELETE | /management/v1/transactions/{transactionId} | safety-critical | required |
| POST | /management/v1/zones/datanodes/reset | safety-critical | required |
| POST | /management/v1/zones/{zoneName}/datanodes/reset | safety-critical | required |
| POST | /management/v1/deployment/units/zip/{unitId}/{unitVersion} | physical | conditional |
| POST | /management/v1/deployment/units/{unitId}/{unitVersion} | physical | conditional |
| DELETE | /management/v1/deployment/units/{unitId}/{unitVersion} | physical | conditional |
Source
Agentic Access
generated: '2026-07-15'
method: generated
source: openapi/gridgain-openapi.yml
description: Recommended x-agentic-access execution contracts, classified heuristically from
the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind
audience per deployment. See research/curity/agentic-governance/.
summary:
operations: 117
by_action_class:
acting: 59
connected: 58
by_consequence:
safety-critical: 15
write: 41
read: 58
physical: 3
human_in_the_loop_required: 15
operations:
- path: /management/v1/authentication/jwt
method: delete
operationId: revokeTokensByUsername
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/authentication/jwt/{token}
method: delete
operationId: revokeToken
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/authentication/login
method: post
operationId: login
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/replications
method: get
operationId: getCdcReplications
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cdc/replications
method: post
operationId: createCdcReplication
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/replications/{name}
method: get
operationId: getCdcReplication
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cdc/replications/{name}
method: post
operationId: startCdcReplication
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/replications/{name}
method: delete
operationId: deleteCdcReplication
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/replications/{name}/stop
method: post
operationId: stopCdcReplication
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/cdc/sinks
method: get
operationId: getSinks
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cdc/sinks
method: post
operationId: createSink
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/sinks/{name}
method: get
operationId: getSink
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cdc/sinks/{name}
method: put
operationId: updateSink
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/sinks/{name}
method: delete
operationId: deleteSink
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/sinks/{name}/status
method: get
operationId: getSinkStatus
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cdc/sources
method: get
operationId: getSources
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cdc/sources
method: post
operationId: createSource
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/sources/{name}
method: get
operationId: getSource
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cdc/sources/{name}
method: put
operationId: updateSource
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/sources/{name}
method: delete
operationId: deleteSource
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cdc/sources/{name}/status
method: get
operationId: getSourceStatus
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cluster/init
method: post
operationId: init
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cluster/rename
method: post
operationId: rename
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/cluster/state
method: get
operationId: clusterState
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cluster/topology/logical
method: get
operationId: logical
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/cluster/topology/physical
method: get
operationId: physical
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/compute/jobs
method: get
operationId: jobStates
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/compute/jobs/{jobId}
method: get
operationId: jobState
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/compute/jobs/{jobId}
method: delete
operationId: cancelJob
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/compute/jobs/{jobId}/priority
method: put
operationId: updatePriority
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/configuration/cluster
method: get
operationId: getClusterConfiguration
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/configuration/cluster
method: patch
operationId: updateClusterConfiguration
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/configuration/cluster/{path}
method: get
operationId: getClusterConfigurationByPath
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/configuration/node
method: get
operationId: getNodeConfiguration
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/configuration/node
method: patch
operationId: updateNodeConfiguration
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/configuration/node/{path}
method: get
operationId: getNodeConfigurationByPath
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/dcr/replications
method: get
operationId: listReplications
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/dcr/replications
method: post
operationId: createReplication
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/dcr/replications/{name}
method: get
operationId: showReplication
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/dcr/replications/{name}/delete
method: post
operationId: deleteReplication
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/dcr/replications/{name}/flush
method: post
operationId: flushReplication
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/dcr/replications/{name}/start
method: post
operationId: startReplication
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/dcr/replications/{name}/stop
method: post
operationId: stopReplication
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/deployment/cluster/units
method: get
operationId: listClusterStatuses
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/deployment/cluster/units/{unitId}
method: get
operationId: listClusterStatusesByUnit
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/deployment/node/units
method: get
operationId: listNodeStatuses
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/deployment/node/units/structure/{unitId}/{unitVersion}
method: get
operationId: unitContent
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/deployment/node/units/{unitId}
method: get
operationId: listNodeStatusesByUnit
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/deployment/units/zip/{unitId}/{unitVersion}
method: post
operationId: deployZipUnit
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/deployment/units/{unitId}/{unitVersion}
method: post
operationId: deployUnit
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/deployment/units/{unitId}/{unitVersion}
method: delete
operationId: undeployUnit
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/distribution/reset
method: post
operationId: reset
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/license
method: get
operationId: id
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/license
method: post
operationId: applyNewLicense
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/license/features
method: get
operationId: features
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/license/id
method: get
operationId: id_1
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/license/infos
method: get
operationId: infos
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/license/limits
method: get
operationId: limits
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/license/raw
method: post
operationId: applyNewLicenseRaw
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/metric/cluster/disable
method: post
operationId: disableClusterMetric
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/metric/cluster/enable
method: post
operationId: enableClusterMetric
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/metric/cluster/source
method: get
operationId: listClusterMetricSources
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/metric/node/disable
method: post
operationId: disableNodeMetric
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/metric/node/enable
method: post
operationId: enableNodeMetric
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/metric/node/set
method: get
operationId: listNodeMetricSets
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/metric/node/source
method: get
operationId: listNodeMetricSources
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/node/info
method: get
operationId: nodeInfo
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/node/state
method: get
operationId: nodeState
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/node/version
method: get
operationId: nodeVersion
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/pg
method: post
operationId: grantPrivileges
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/rbac/pg
method: delete
operationId: revokePrivileges
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/rbac/pg/roles
method: get
operationId: getRolesWithPrivileges
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/pg/{roleName}
method: get
operationId: getPrivileges
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/ra
method: post
operationId: assignRoles
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/rbac/ra
method: delete
operationId: revokeRoles
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/rbac/ra/roles
method: get
operationId: getRoleViews
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/ra/roles/{username}
method: get
operationId: getRolesByUser
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/ra/users
method: get
operationId: getUsersWithRoles
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/ra/users/{roleName}
method: get
operationId: getUsersByRole
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/roles
method: get
operationId: getRoles
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/roles
method: post
operationId: createRole
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/rbac/roles/{roleName}
method: get
operationId: getRole
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/roles/{roleName}
method: delete
operationId: deleteRole
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/rbac/users
method: get
operationId: getUsers
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/users
method: post
operationId: createUser
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/rbac/users/{username}
method: get
operationId: getUser
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/rbac/users/{username}
method: put
operationId: updateUser
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/rbac/users/{username}
method: delete
operationId: deleteUser
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/recovery/cluster/migrate
method: post
operationId: migrate
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/recovery/cluster/reset
method: post
operationId: resetCluster
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/recovery/tables
method: post
operationId: recoverTables
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/recovery/tables/state/{operationId}
method: get
operationId: getTablesRecoveryState
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/recovery/zone/partitions/reset
method: post
operationId: resetZonePartitions
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/recovery/zone/partitions/restart
method: post
operationId: restartZonePartitions
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/recovery/zone/partitions/restartWithCleanup
method: post
operationId: restartZonePartitionsWithCleanup
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/recovery/zone/state/global
method: get
operationId: getZoneGlobalPartitionStates
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/recovery/zone/state/local
method: get
operationId: getZoneLocalPartitionStates
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/snapshot/create
method: post
operationId: create
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/snapshot/delete
method: post
operationId: delete
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/snapshot/list
method: get
operationId: getList
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/snapshot/operations
method: get
operationId: getOperations
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/snapshot/operations/{operationId}
method: get
operationId: getOperationById
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/snapshot/restore
method: post
operationId: restore
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /management/v1/sql/plan/clear-cache
method: get
operationId: clearCache
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/sql/queries
method: get
operationId: queries
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/sql/queries/{queryId}
method: get
operationId: query
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/sql/queries/{queryId}
method: delete
operationId: killQuery
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /management/v1/transactions
method: get
operationId: transactions
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/transactions/{transactionId}
method: get
operationId: transaction
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /management/v1/transactions/{transactionId}
method: delete
operationId: killTransaction
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 1
# --- truncated at 32 KB (34 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/gridgain/refs/heads/main/agentic-access/gridgain-agentic-access.yml