generated: '2026-07-15' method: generated source: openapi/autopay-openapi.yml description: Recommended x-agentic-access execution contracts, classified heuristically from the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind audience per deployment. See research/curity/agentic-governance/. summary: operations: 30 by_action_class: connected: 15 acting: 15 by_consequence: read: 15 write: 10 physical: 2 safety-critical: 3 human_in_the_loop_required: 3 operations: - path: /accounting/v1/invoices method: get x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /booking/v3/permit_definitions method: get x-agentic-access: action-class: connected consequence: read subject: optional scope: - permit_booking token: max-ttl: 3600 audit: none - path: /booking/v3/availability method: get x-agentic-access: action-class: connected consequence: read subject: optional scope: - permit_booking token: max-ttl: 3600 audit: none - path: /booking/v3/{id}/status method: get x-agentic-access: action-class: connected consequence: read subject: optional scope: - permit_booking token: max-ttl: 3600 audit: none - path: /booking/v3/ method: post x-agentic-access: action-class: acting consequence: write subject: required scope: - permit_booking audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /booking/v3/{id} method: put x-agentic-access: action-class: acting consequence: write subject: required scope: - permit_booking audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /booking/v3/{id} method: delete x-agentic-access: action-class: acting consequence: write subject: required scope: - permit_booking audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /customer_club/v2/join method: post x-agentic-access: action-class: acting consequence: write subject: required scope: - customer_club audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /customer_club/v2/status/{registrationId} method: get x-agentic-access: action-class: connected consequence: read subject: optional scope: - customer_club token: max-ttl: 3600 audit: none - path: /customer_club/v2/leave/{registration_id} method: delete x-agentic-access: action-class: acting consequence: physical subject: required scope: - customer_club audience: null token: max-ttl: 300 exchange: true purpose-required: true escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /fleet/v2/vehicles method: get x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /fleet/v2/vehicles method: post x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /fleet/v2/vehicles method: delete x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /fleet/v2/vehicles/detach method: post x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /fleet/v2/services method: get x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /fleet/v2/services/by_updated_at method: get x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /fleet/v2/vehicles/services method: get x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /fleet/v2/vehicles/disable_payments method: post x-agentic-access: action-class: acting consequence: safety-critical subject: required audience: null token: max-ttl: 120 exchange: true purpose-required: true proof-of-possession: true escalation: human-in-the-loop: required audit: required - path: /parking/product/{parkingSessionId} method: put x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /payment/v1/connect_parking method: post x-agentic-access: action-class: acting consequence: physical subject: required audience: null token: max-ttl: 300 exchange: true purpose-required: true escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /payment/v1/manual_stop method: post x-agentic-access: action-class: acting consequence: safety-critical subject: required audience: null token: max-ttl: 120 exchange: true purpose-required: true proof-of-possession: true escalation: human-in-the-loop: required audit: required - path: /permit/v3/tenant_permit_allocations method: get x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /permit/v3/tenant_issued_permits method: get x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /permit/v3/end_user_permit method: post x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /permit/v3/end_user_permit/{permit_id} method: put x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /permit/v3/end_user_permit/{permit_id} method: delete x-agentic-access: action-class: acting consequence: safety-critical subject: required audience: null token: max-ttl: 120 exchange: true purpose-required: true proof-of-possession: true escalation: human-in-the-loop: required audit: required - path: /statistics/v1/parking method: get x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /status/v1/zone/{zone_code} method: get x-agentic-access: action-class: connected consequence: read subject: optional scope: - zone_status token: max-ttl: 3600 audit: none - path: /status/v1/zone_details/{zone_code} method: get x-agentic-access: action-class: connected consequence: read subject: optional scope: - zone_status token: max-ttl: 3600 audit: none - path: /vehicle/v1/permit method: get x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none