Get policy
Retrieves a single policy by its ID.
Authorization
BearerAuth AuthorizationBearer <token>
API key passed as a Bearer token. Production keys start with
am_live_ and sandbox keys start with am_test_.
In: header
Path Parameters
policy_id*string
The unique policy ID (prefixed with pol_).
Response Body
application/json
application/json
application/json
application/json
curl -X GET "https://secureagentmail.com/api/v1/policies/string"{
"id": "pol_r2t5v8",
"name": "Block Competitor Domains",
"type": "domain_blocklist",
"action": "block",
"inbox_id": "inb_abc123",
"enabled": true,
"config": {},
"created_at": "2026-01-20T12:00:00Z"
}{
"error": {
"code": "unauthorized",
"message": "Invalid or missing API key.",
"status": 401
}
}{
"error": {
"code": "not_found",
"message": "The requested resource was not found.",
"status": 404
}
}{
"error": {
"code": "rate_limited",
"message": "Rate limit exceeded. Please retry after 30 seconds.",
"status": 429
}
}Create policy
Creates a new security or compliance policy. Policies can be scoped globally (when `inbox_id` is null) or to a specific inbox. The `config` object shape varies by policy type.
Update policy
Updates one or more mutable fields on the policy. Only the fields present in the request body are changed.