Returns every policy directly bound to the named principal. The principal must belong to the caller's account — mismatch returns 404 (no cross-tenant enumeration).

Requires the policy:read scope.

Authorization

x-api-key<token>

Anthropic-style API key header.

In: header

Path Parameters

nsid*string

Id of the target namespace. Must be owned by the caller (or equal a namespace-baked credential's own namespace), else 404.

principal_type*string

One of namespace, api_key, oauth_token, oauth_client.

principal_id*string

Id of the principal. Must belong to the caller's account or 404.

Response Body

`application/json`

curl -X GET "https://api.bitrouter.ai/v1/namespaces/string/principals/string/string/policies"

{}

{
  "error": null
}

{
  "error": null
}

{
  "error": null
}

List policies bound to a principal

Authorization

Path Parameters

Response Body

200application/json

401application/json

403application/json

404application/json

`application/json`

`application/json`

`application/json`

`application/json`