Skip to main content
POST
/
policies
/
{policyId}
/
sites
Apply policy to sites
curl --request POST \
  --url https://api.altostrat.io/policies/{policyId}/sites \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "sites": [
    "d290f1ee-6c54-4b01-90e6-d701748f0851",
    "e9a7e93a-3c1c-4b5b-8e2e-2e6b6b3e7e3e"
  ]
}'
{
  "id": "a1b2c3d4-e5f6-7890-1234-567890abcdef",
  "name": "Default Corporate Policy",
  "slug": "default-corporate-policy-a1b2c3d4e5",
  "default": true,
  "custom_input_rules": true,
  "trusted_networks": [
    "10.0.0.0/8"
  ],
  "winbox": {
    "enabled": true,
    "port": 8291,
    "networks": [
      "198.51.100.0/24"
    ]
  },
  "ssh": {
    "enabled": true,
    "port": 8291,
    "networks": [
      "198.51.100.0/24"
    ]
  },
  "http": {
    "enabled": true,
    "port": 8291,
    "networks": [
      "198.51.100.0/24"
    ]
  },
  "https": {
    "enabled": true,
    "port": 8291,
    "networks": [
      "198.51.100.0/24"
    ]
  },
  "telnet": {
    "enabled": true,
    "port": 8291,
    "networks": [
      "198.51.100.0/24"
    ]
  },
  "ftp": {
    "enabled": true,
    "port": 8291,
    "networks": [
      "198.51.100.0/24"
    ]
  },
  "api": {
    "enabled": true,
    "port": 8291,
    "networks": [
      "198.51.100.0/24"
    ]
  },
  "api_ssl": {
    "enabled": true,
    "port": 8291,
    "networks": [
      "198.51.100.0/24"
    ]
  },
  "sites": [
    "d290f1ee-6c54-4b01-90e6-d701748f0851"
  ],
  "created_at": "2025-10-29T01:00:00Z",
  "updated_at": "2025-10-29T02:30:00Z"
}

Authorizations

โ€‹
Authorization
string
header
required

Enter your JWT bearer token.

Path Parameters

โ€‹
policyId
string<uuid>
required

The unique identifier for the policy.

Example:

"a1b2c3d4-e5f6-7890-1234-567890abcdef"

Body

application/json
โ€‹
sites
string<uuid>[]
required

An array of Site UUIDs to apply this policy to.

Example:
[
  "d290f1ee-6c54-4b01-90e6-d701748f0851",
  "e9a7e93a-3c1c-4b5b-8e2e-2e6b6b3e7e3e"
]

Response

The updated policy object showing the newly associated sites.

โ€‹
id
string<uuid>

The unique identifier for the policy.

Example:

"a1b2c3d4-e5f6-7890-1234-567890abcdef"

โ€‹
name
string

A human-readable name for the policy.

Example:

"Default Corporate Policy"

โ€‹
slug
string

A unique, URL-friendly identifier for the policy.

Example:

"default-corporate-policy-a1b2c3d4e5"

โ€‹
default
boolean

Whether this is the default policy for the workspace.

Example:

true

โ€‹
custom_input_rules
boolean

Whether custom input rules are being used.

Example:

true

โ€‹
trusted_networks
string[]

A list of CIDR networks that are considered trusted across all services in this policy.

โ€‹
winbox
object
โ€‹
ssh
object
โ€‹
http
object
โ€‹
https
object
โ€‹
telnet
object
โ€‹
ftp
object
โ€‹
api
object
โ€‹
api_ssl
object
โ€‹
sites
string<uuid>[]

A list of Site UUIDs that this policy is applied to.

Example:
["d290f1ee-6c54-4b01-90e6-d701748f0851"]
โ€‹
created_at
string<date-time>

The timestamp when the policy was created.

Example:

"2025-10-29T01:00:00Z"

โ€‹
updated_at
string<date-time>

The timestamp when the policy was last updated.

Example:

"2025-10-29T02:30:00Z"