Create a model access policy - Barndoor Developer Documentation

curl --request POST \ --url https://{organization_id}.platform.barndoor.ai/api/llm-gateway/admin/model-access \ --header 'Authorization: Bearer <token>' \ --header 'Content-Type: application/json' \ --data ' { "name": "<string>", "scope_type": "<string>", "targets": [ { "kind": "model_alias", "alias": "gpt-4o-mini" } ], "scope_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a", "scope_value": "<string>", "traffic_type": "llm" } '

{ "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a", "org_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a", "name": "<string>", "targets": [ { "kind": "model_alias", "alias": "gpt-4o-mini" } ], "enabled": true, "scope_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a", "scope_value": "<string>" }

Authorizations

Authorization

string

header

required

JWT obtained through Barndoor's authentication flow. Pass the token verbatim in Authorization: Bearer <token>. Use the Barndoor SDK's loginInteractive() helper to obtain a token in scripts and notebooks.

Body

application/json

name

string

required

scope_type

string

required

policy_type

enum<string>

required

Available options:

allowlist,

denylist

targets

object[]

required

Minimum array length: 1

Option 1
Option 2
Option 3
Option 4

Show child attributes

scope_id

string<uuid> | null

scope_value

string | null

traffic_type

enum<string>

default:llm

Available options:

llm,

all

Response

The newly created policy

string<uuid>

required

org_id

string<uuid>

required

name

string

required

scope_type

enum<string>

required

Available options:

org,

team,

user,

project,

api_key,

mcp_server,

agent,

role,

group

policy_type

enum<string>

required

Available options:

allowlist,

denylist

targets

object[]

required

Option 1
Option 2
Option 3
Option 4

Show child attributes

traffic_type

enum<string>

required

Available options:

llm,

all

enabled

boolean

required

scope_id

string<uuid> | null

scope_value

string | null