Access List
DELETE /v1/config/access-list/{userId}
Remove a user from the current project's access list
Removes a tenant member from the access list for the current project.
Removing a user who isn't on the list is a no-op (the call still
returns 204).
If the call empties the list, the project switches back to open — every tenant member can trigger analyses from chat again.
Authentication
API key with config:write permission. Project-scoped or tenant-scoped
(with X-Project-Id).
Endpoint
DELETE /v1/config/access-list/{userId}Path parameters
| Param | Type | Notes |
|---|---|---|
userId | UUID | Tenant member to remove |
Response
204 No Content
Empty body on success.
Error responses
| Status | error.code | When |
|---|---|---|
| 400 | VALIDATION_ERROR | userId is not a valid UUID |
| 400 | MISSING_PROJECT | Tenant-scoped key without X-Project-Id |
| 401 | UNAUTHORIZED | Missing or invalid API key |
| 403 | FORBIDDEN | Key lacks config:write |
Example
curl -X DELETE https://api.sigsentry.com/v1/config/access-list/8b29f4a1-... \
-H "Authorization: Bearer ss_secret_..." \
-H "X-Project-Id: 6f1c89bb-3b50-4c4a-9c5f-..."See also
- Access list guide
- Authentication — required permissions per endpoint
- Errors — error code reference