Approve or reject an access request

curl --request POST \
  --url https://{host}/v2/workspaces/slug:agent-factory/webhooks/v1/agents/{agentId}/access/requests/{requestId} \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{}'

{
  "_id": "<string>",
  "agent_id": "<string>",
  "requester_id": "<string>",
  "requester_email": "<string>",
  "resolved_by": "<string>",
  "rejection_reason": "<string>"
}

POST

agents

{agentId}

access

requests

{requestId}

Approve or reject an access request

curl --request POST \
  --url https://{host}/v2/workspaces/slug:agent-factory/webhooks/v1/agents/{agentId}/access/requests/{requestId} \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{}'

{
  "_id": "<string>",
  "agent_id": "<string>",
  "requester_id": "<string>",
  "requester_email": "<string>",
  "resolved_by": "<string>",
  "rejection_reason": "<string>"
}

Authorizations

Authorization

string

header

required

User-bound credential carrying an identity: either a session JWT or a user access token (at:*) generated from the user settings UI. Send as Authorization: Bearer <token>. Org API keys (iak_*) are not accepted here - they carry no user identity. Use the x-prismeai-api-key header instead (see OrgApiKeyAuth).

Path Parameters

agentId

string

required

Maximum string length: 64

requestId

string

required

Maximum string length: 128

Body

application/json

action

enum<string>

required

Available options:

approve,

reject

Maximum string length: 16

rejection_reason

string

Maximum string length: 1024

Response

Resolved request.

_id

string

agent_id

string

requester_id

string

requester_email

string

status

enum<string>

Available options:

approved,

rejected

resolved_by

string

rejection_reason

string

List access requests for an agent List agent-scoped API keys

⌘I