Approval Policies
Approval workflow policies
Authentication
Requires session cookie (web app) or API key (x-api-key header). All endpoints are tenant-scoped via entityId.
Endpoints
| Method | Path | Description |
|---|---|---|
| GET | /api/approval-policies?entityId= | List approval policies |
| POST | /api/approval-policies | Create policy |
| PUT | /api/approval-policies | Update policy |
| DELETE | /api/approval-policies | Delete policy |
List approval policies
GET /api/approval-policies?entityId={entityId}
Returns an array of approval policies.
[
{
"id": "policy_abc123",
"name": "Journal entry approval",
"trigger": "journal_entry",
"threshold": 10000,
"approvers": ["user_1", "user_2"]
}
]Create policy
POST /api/approval-policies
Body: { "entityId", "name", "trigger", "threshold?", "approvers" }
Update / Delete
PUT /api/approval-policies — body: { "entityId", "policyId", ...fields }
DELETE /api/approval-policies — body: { "entityId", "policyId" }