Akamai API Security website screenshot

Akamai API Security

Akamai API Security (formerly Noname Security) provides comprehensive API discovery, posture management, and threat protection for organizations across cloud, on-premises, and hybrid environments. The platform continuously discovers and monitors all APIs, identifies vulnerabilities and misconfigurations, detects and responds to API threats in real time, and provides pre-production security testing integrated into CI/CD pipelines.

2 APIs 6 Features
API DiscoveryAPI SecurityCloud SecurityPosture ManagementRuntime ProtectionThreat Protection

APIs

Akamai API Security

Akamai API Security provides end-to-end API protection including discovery, posture management, runtime protection, and active testing. It discovers all APIs including shadow an...

Akamai APIs

Akamai provides a comprehensive set of REST APIs for managing and configuring their platform services, including API security, CDN, edge computing, and security products. The AP...

Collections

Pricing Plans

Rate Limits

Akamai Api Security Rate Limits

5 limits

RATE LIMITS

FinOps

Features

API Discovery

Automatically discovers all APIs including shadow, zombie, GenAI, LLM, and MCP server APIs across cloud, on-premises, and hybrid environments.

Posture Management

Audits APIs for vulnerabilities and misconfigurations including the full OWASP API Top 10, generating posture findings from runtime incidents.

Runtime Protection

Uses contextual insights to detect and block API threats including business logic abuse, credential attacks, data scraping, and malicious bots in real time.

CI/CD Security Testing

Runs 200+ dynamic security tests simulating OWASP API Top 10 attacks integrated into CI/CD pipelines without sacrificing development speed.

GitHub Integration

Automatically scans GitHub repositories for OpenAPI specs and adds them to the API library for security analysis and posture assessment.

App and API Protector Integration

Direct integration with Akamai App and API Protector for blocking API threats detected at runtime.

Use Cases

Shadow API Discovery

Security teams automatically discover undocumented and shadow APIs across their environment to eliminate blind spots.

API Vulnerability Assessment

Security engineers assess API posture against OWASP API Top 10 and compliance frameworks to prioritize remediation.

Real-Time Threat Detection

SOC analysts detect and respond to API attacks, data leakage, and suspicious behavior in real time.

Pre-Production API Testing

Development teams integrate API security testing into CI/CD pipelines to find and fix vulnerabilities before production.

Compliance Reporting

Compliance teams assess API security posture against industry frameworks and generate audit-ready reports.

Integrations

Akamai App and API Protector

Direct integration for blocking API threats detected by API Security

GitHub

Automatic OpenAPI spec discovery from GitHub repositories

CI/CD Pipelines

Integration with development pipelines for pre-production security testing

SIEM

Export security events to SIEM platforms for centralized monitoring

AWS Marketplace

Available on AWS Marketplace for cloud-native deployments

Semantic Vocabularies

Akamai Api Security Context

71 classes · 180 properties

JSON-LD

API Governance Rules

Akamai API Security API Rules

23 rules · 12 errors 11 warnings

SPECTRAL

JSON Structure

Api Security Attack Payload Logging Structure

1 properties

JSON STRUCTURE

Api Security Config Clone Post Structure

2 properties

JSON STRUCTURE

Api Security Config Get Structure

7 properties

JSON STRUCTURE

Api Security Config Post Structure

6 properties

JSON STRUCTURE

Api Security Config Rename Structure

2 properties

JSON STRUCTURE

Api Security Configs Get Structure

1 properties

JSON STRUCTURE

Api Security Cookie Settings Structure

2 properties

JSON STRUCTURE

Api Security Custom Denies Structure

1 properties

JSON STRUCTURE

Api Security Custom Deny Structure

4 properties

JSON STRUCTURE

Api Security Custom Rule Structure

16 properties

JSON STRUCTURE

Api Security Custom Rules Structure

1 properties

JSON STRUCTURE

Api Security Effective Time Period Structure

3 properties

JSON STRUCTURE

Api Security Evasive Path Match Put Structure

1 properties

JSON STRUCTURE

Api Security Header Logging Get 200 Structure

4 properties

JSON STRUCTURE

Api Security Header Logging Put 200 Structure

4 properties

JSON STRUCTURE

Api Security Header Logging Put Structure

4 properties

JSON STRUCTURE

Api Security Host Info In Config Structure

6 properties

JSON STRUCTURE

Api Security Hostname Object Structure

6 properties

JSON STRUCTURE

Api Security Hostnames Structure

2 properties

JSON STRUCTURE

Api Security Logging Header Setting Structure

2 properties

JSON STRUCTURE

Api Security Logging Option Structure

3 properties

JSON STRUCTURE

Api Security Malware Policies Structure

1 properties

JSON STRUCTURE

Api Security Malware Policy Structure

9 properties

JSON STRUCTURE

Api Security Match Target Structure

16 properties

JSON STRUCTURE

Api Security Match Targets Sequence Structure

2 properties

JSON STRUCTURE

Api Security Match Targets Structure

1 properties

JSON STRUCTURE

Api Security Overlap Config Structure

6 properties

JSON STRUCTURE

Api Security Pii Learning Structure

1 properties

JSON STRUCTURE

Api Security Pragma Header Structure

3 properties

JSON STRUCTURE

Api Security Prefetch Request Put Structure

4 properties

JSON STRUCTURE

Api Security Problem Details Structure

6 properties

JSON STRUCTURE

Api Security Rate Policies Structure

1 properties

JSON STRUCTURE

Api Security Rate Policy Structure

28 properties

JSON STRUCTURE

Api Security Reputation Profile Structure

9 properties

JSON STRUCTURE

Api Security Reputation Profiles Structure

1 properties

JSON STRUCTURE

Api Security Request Body Structure

1 properties

JSON STRUCTURE

Api Security Security Controls Structure

7 properties

JSON STRUCTURE

Api Security Siem Settings Structure

6 properties

JSON STRUCTURE

Api Security Siem Version Structure

2 properties

JSON STRUCTURE

Api Security Siem Versions Structure

1 properties

JSON STRUCTURE

Api Security Url Protection Policy Structure

18 properties

JSON STRUCTURE

Api Security Validation Structure

5 properties

JSON STRUCTURE

Api Security Validations Structure

3 properties

JSON STRUCTURE

Api Security Version Notes Get 200 Structure

1 properties

JSON STRUCTURE

Api Security Version Notes Put 200 Structure

1 properties

JSON STRUCTURE

Api Security Version Notes Put Structure

1 properties

JSON STRUCTURE

Api Security Waf Config Version Structure

9 properties

JSON STRUCTURE

Api Security Waf Config Versions Structure

11 properties

JSON STRUCTURE

Example Payloads

Resources

🔗
Website
Website
🔗
Documentation
Documentation
📰
Blog
Blog
💰
Pricing
Pricing
💬
Support
Support
🔗
Login
Login
📝
Signup
Signup
👥
GitHubOrganization
GitHubOrganization
🟢
StatusPage
StatusPage
🔗
LinkedIn
LinkedIn
🔗
X
X
🔗
SpectralRules
SpectralRules
🔗
Vocabulary
Vocabulary

Sources

Raw ↑
opencollection: 1.0.0
info:
  name: 'Akamai: Application Security API'
  version: v1
items:
- info:
    name: Activations
    type: folder
  items:
  - info:
      name: Akamai API Security Activate a Configuration Version
      type: http
    http:
      method: POST
      url: https://{hostname}/appsec/v1/activations
      params:
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Activates one or more configurations globally. Note that you need to explicitly list any invalid hosts in the `acknowledgedInvalidHostsByConfig`
      parameter in order to successfully activate a configuration that includes invalid hostnames. If you have an invalid
      hostname that isn't explicitly called out you'll receive an error telling you to add them to `acknowledgedInvalidHostsByConfig`.
      See [Activate with invalid hostnames](https://techdocs.akamai.com/application-security/reference/activate-with
- info:
    name: Activation status
    type: folder
  items:
  - info:
      name: Akamai API Security Get an Activation Request Status
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/activations/status/:statusId
      params:
      - name: statusId
        value: '{{statusId}}'
        type: path
        description: UUID of this activation request status.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Returns the status of a long-running activation request. Any errors that occur when generating the activation cause
      this API to respond with the underlying error status. _Products:_ All.
  - info:
      name: Akamai API Security Get Activation Status
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/activations/:activationId
      params:
      - name: activationId
        value: '{{activationId}}'
        type: path
        description: A unique identifier for an activation.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Returns the status of an activation. _Products:_ All.
- info:
    name: Discovered APIs
    type: folder
  items:
  - info:
      name: Akamai API Security List Discovered APIs
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/api-discovery
      params:
      - name: includeHidden
        value: '{{includeHidden}}'
        type: query
        description: If `true`, includes all discovered APIs including ones you have hidden. By default, `false` returns only
          the visible APIs.
      - name: search
        value: '{{search}}'
        type: query
        description: Filter results by hostname or basepath. You can also match on substrings.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: List APIs discovered in your traffic that are new or not yet protected under API protections. An API is considered
      new if it isn't registered, and appears in the discovered APIs list if it's had at least 1000 requests over the last
      30 days and at least one 2xx response. _Products:_ All.
  - info:
      name: Akamai API Security Get a Discovered API
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/api-discovery/host/:hostname/basepath/:basePath
      params:
      - name: hostname
        value: '{{hostname}}'
        type: path
        description: The base64-encoded value of the hostname.
      - name: basePath
        value: '{{basePath}}'
        type: path
        description: The base64-encoded value of the base path.
      - name: includeHidden
        value: '{{includeHidden}}'
        type: query
        description: If `true`, includes all discovered APIs including ones you have hidden. By default, `false` returns only
          the visible APIs.
      - name: search
        value: '{{search}}'
        type: query
        description: Filter results by name, description, or ID. You can match on substrings.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Returns details about an API discovered in account traffic. It is identified based on hostname and basepath. _Products:_
      All.
- info:
    name: Endpoints
    type: folder
  items:
  - info:
      name: Akamai API Security Modify an API's Visibility
      type: http
    http:
      method: PUT
      url: https://{hostname}/appsec/v1/api-discovery/host/:hostname/basepath/:basePath
      params:
      - name: hostname
        value: '{{hostname}}'
        type: path
        description: The base64-encoded value of the hostname.
      - name: basePath
        value: '{{basePath}}'
        type: path
        description: The base64-encoded value of the base path.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Hide or show an API. You can choose to include or exclude APIs from the [Get discovered APIs](https://techdocs.akamai.com/application-security/reference/get-api-list)
      response. This operation is per-user. If you hide an API from the response, another of your colleagues will still see
      that API in the response when they run this operation with their own credentials.
  - info:
      name: Akamai API Security List Discovered API Endpoints
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/api-discovery/host/:hostname/basepath/:basePath/endpoints
      params:
      - name: hostname
        value: '{{hostname}}'
        type: path
        description: The base64-encoded value of the hostname.
      - name: basePath
        value: '{{basePath}}'
        type: path
        description: The base64-encoded value of the base path.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Returns API endpoints for the specified hostname and base path. Unlike [Get discovered APIs](https://techdocs.akamai.com/application-security/reference/get-api-list),
      this operation returns APIs already in your API definitions. When you see a discovered API or a new resource, add it
      to your definition with [Create an endpoint or resource](https://techdocs.akamai.com/application-security/reference/post-api-endpoint-resource).
  - info:
      name: Akamai API Security Create an Endpoint or Resource
      type: http
    http:
      method: POST
      url: https://{hostname}/appsec/v1/api-discovery/host/:hostname/basepath/:basePath/endpoints
      params:
      - name: hostname
        value: '{{hostname}}'
        type: path
        description: The base64-encoded value of the hostname.
      - name: basePath
        value: '{{basePath}}'
        type: path
        description: The base64-encoded value of the base path.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Create a new API endpoint or add a resource to an existing endpoint. When you run this operation to add a new resource
      to an existing API, the API version is cloned for you and the resource is included in the new version.
- info:
    name: General configuration settings
    type: folder
  items:
  - info:
      name: Akamai API Security List Configurations
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs
      params:
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Lists available security configurations. _Products:_ All.
  - info:
      name: Akamai API Security Create a Configuration
      type: http
    http:
      method: POST
      url: https://{hostname}/appsec/v1/configs
      params:
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Create a new WAP or KSD security configuration. KSD security configurations start out empty, and WAP configurations
      are created with preset values. The contract you pass in the request body determines which product you use.  You can
      edit the default settings included in the WAP configuration, but you'll need to run additional operations in this API
      to select specific protections for KSD. Your KSD configuration needs match targets and protection settings before you
      activate. _Products:_ All.
  - info:
      name: Akamai API Security Get a Security Configuration
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs/:configId
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: includeHostnames
        value: '{{includeHostnames}}'
        type: query
        description: If `true`, include the list of hostnames protected by this security configuration in the production network.  If
          `false`, exclude the list of hostnames protected by this security configuration in the production network.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Retrieves the configuration details.
  - info:
      name: Akamai API Security Rename a Security Configuration
      type: http
    http:
      method: PUT
      url: https://{hostname}/appsec/v1/configs/:configId
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Update the name of your security configuration. _Products:_ All.
  - info:
      name: Akamai API Security Delete a Configuration
      type: http
    http:
      method: DELETE
      url: https://{hostname}/appsec/v1/configs/:configId
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Deletes the specified security configuration. _Products:_ All.
  - info:
      name: Akamai API Security List Configuration Versions
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs/:configId/versions
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: page
        value: '{{page}}'
        type: query
        description: The index of the result page. If the value is `-1`, then pagination is ignored.  The default value is
          `1`.
      - name: pageSize
        value: '{{pageSize}}'
        type: query
        description: The number of items on each result page. The default value is `25`.
      - name: detail
        value: '{{detail}}'
        type: query
        description: When `true`, the results contain detailed information on versions. With the default `false`, the results
          contain summary information on versions.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Lists available versions for the specified security configuration, with results optionally paginated. _Products:_
      All.
  - info:
      name: Akamai API Security Clone a Configuration Version
      type: http
    http:
      method: POST
      url: https://{hostname}/appsec/v1/configs/:configId/versions
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Creates a new version of the specified security configuration. _Products:_ All.
  - info:
      name: Akamai API Security Get Configuration Version Details
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs/:configId/versions/:versionNumber
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: versionNumber
        value: '{{versionNumber}}'
        type: path
        description: A unique identifier for each version of a configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Returns basic details about a configuration version. To get a more extensive object with detailed information about
      a version's security policies, rate policies, rules, and other additional settings, run the [Export a configuration
      version](https://techdocs.akamai.com/application-security/reference/get-export-config-version) operation. _Products:_
      All.
  - info:
      name: Akamai API Security Delete a Configuration Version
      type: http
    http:
      method: DELETE
      url: https://{hostname}/appsec/v1/configs/:configId/versions/:versionNumber
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: versionNumber
        value: '{{versionNumber}}'
        type: path
        description: A unique identifier for each version of a configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Delete the specified configuration version. You can't delete a version that's actively in use. _Products:_ All.
  - info:
      name: Akamai API Security Get the Version Notes
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs/:configId/versions/:versionNumber/version-notes
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: versionNumber
        value: '{{versionNumber}}'
        type: path
        description: A unique identifier for each version of a configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Get the most recent version notes for a configuration. _Products:_ All.
  - info:
      name: Akamai API Security Modify Version Notes
      type: http
    http:
      method: PUT
      url: https://{hostname}/appsec/v1/configs/:configId/versions/:versionNumber/version-notes
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: versionNumber
        value: '{{versionNumber}}'
        type: path
        description: A unique identifier for each version of a configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Update the most recent version notes for a configuration. _Products:_ All.
- info:
    name: Activation history
    type: folder
  items:
  - info:
      name: Akamai API Security List Activation History
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs/:configId/activations
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: 'Lists the activation history for a configuration. The history is an array in descending order of `submitDate`.
      The most recent submitted activation lists first. _Products_: All.'
- info:
    name: 'Shared resources: Custom rules'
    type: folder
  items:
  - info:
      name: Akamai API Security List Custom Rules
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs/:configId/custom-rules
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Lists custom rules defined in a security configuration. _Products:_ All.
  - info:
      name: Akamai API Security Create a Custom Rule
      type: http
    http:
      method: POST
      url: https://{hostname}/appsec/v1/configs/:configId/custom-rules
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Creates a new custom rule. _Products:_ All.
  - info:
      name: Akamai API Security Get a Custom Rule
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs/:configId/custom-rules/:ruleId
      params:
      - name: ruleId
        value: '{{ruleId}}'
        type: path
        description: A unique identifier for rule.
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Returns the details of a custom rule. _Products:_ All.
  - info:
      name: Akamai API Security Modify a Custom Rule
      type: http
    http:
      method: PUT
      url: https://{hostname}/appsec/v1/configs/:configId/custom-rules/:ruleId
      params:
      - name: ruleId
        value: '{{ruleId}}'
        type: path
        description: A unique identifier for rule.
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Updates an existing custom rule. _Products:_ All.
  - info:
      name: Akamai API Security Remove a Custom Rule
      type: http
    http:
      method: DELETE
      url: https://{hostname}/appsec/v1/configs/:configId/custom-rules/:ruleId
      params:
      - name: ruleId
        value: '{{ruleId}}'
        type: path
        description: A unique identifier for rule.
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Deletes a custom rule as long as it isn't activated. _Products:_ All.
- info:
    name: Failover hostnames
    type: folder
  items:
  - info:
      name: Akamai API Security List Failover Hostnames
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs/:configId/failover-hostnames
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: Get a list of the failover hostnames in a configuration. _Products:_ All.
- info:
    name: Subscriptions
    type: folder
  items:
  - info:
      name: Akamai API Security List Subscribers
      type: http
    http:
      method: GET
      url: https://{hostname}/appsec/v1/configs/:configId/notification/subscription/:feature
      params:
      - name: feature
        value: '{{feature}}'
        type: path
        description: A unique identifier for each subscription feature.
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
    docs: List all subscribers to a security configuration's `feature`. The response array is empty if there are no subscribers.
      Currently available `feature` values are `AAG_TUNING_REC` for AAG and ASE rule sets, and `WAF_RULE_UPDATE` for ASE rule
      sets. _Products:_ Kona Site Defender.
  - info:
      name: Akamai API Security Subscribe or Unsubscribe to Recommendation Emails
      type: http
    http:
      method: POST
      url: https://{hostname}/appsec/v1/configs/:configId/notification/subscription/:feature
      params:
      - name: feature
        value: '{{feature}}'
        type: path
        description: A unique identifier for each subscription feature.
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-with-one-api-client).
          The Identity and Access Management API provides a [list of available account switch keys](https://techdocs.akamai.com/iam-api/reference/get-client-account-switch-keys).
      body:
        type: json
        data: '{}'
    docs: Set the request object's `action` to `subscribe` to add user emails to the subscription object. Use `unsubscribe`
      to remove them from the list. The lists are organized by `features`. Currently available `feature` values are `AAG_TUNING_REC`
      for AAG and ASE rule sets, and `WAF_RULE_UPDATE` for ASE rule sets. _Products:_ Kona Site Defender.
- info:
    name: Configuration version diff
    type: folder
  items:
  - info:
      name: Akamai API Security Compare Two Versions
      type: http
    http:
      method: POST
      url: https://{hostname}/appsec/v1/configs/:configId/versions/diff
      params:
      - name: configId
        value: '{{configId}}'
        type: path
        description: A unique identifier for each configuration.
      - name: accountSwitchKey
        value: '{{accountSwitchKey}}'
        type: query
        description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/dev

# --- truncated at 32 KB (287 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/akamai-api-security/refs/heads/main/apis.yml