> ## Documentation Index
> Fetch the complete documentation index at: https://docs.requesty.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Create Access List

> Create a new access list in the organization. An access list defines which models are allowed for API keys or groups it is attached to. Requires an API key with write manage permissions.

Create a new access list in the organization. An access list defines which models are allowed for API keys or groups it is attached to. Specify models per modality: `chat`, `embedding`, `image`, `transcription`, and `speech`.


## OpenAPI

````yaml POST /v1/manage/access-list
openapi: 3.0.3
info:
  title: Requesty Management API
  description: >-
    Requesty Management API for API key management, groups, members, and
    organization settings.
  version: 1.0.0
servers:
  - url: https://api-v2.requesty.ai
    description: Management API endpoint
security:
  - BearerAuth: []
paths:
  /v1/manage/access-list:
    servers:
      - url: https://api-v2.requesty.ai
        description: Management API endpoint
    post:
      summary: Create access list
      description: >-
        Create a new access list in the organization. An access list defines
        which models are allowed for API keys or groups it is attached to.
        Requires an API key with write manage permissions.
      operationId: createAccessList
      requestBody:
        required: true
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/CreateAccessListRequest'
      responses:
        '200':
          description: Access list created successfully
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/CreateAccessListResponse'
        '400':
          description: Bad request - invalid name or model list.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/ErrorResponse'
        '401':
          description: Unauthorized - missing or invalid Authorization header.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/ErrorResponse'
        '403':
          description: Forbidden - API key does not have write manage permissions.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/ErrorResponse'
        '500':
          description: Internal server error.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/ErrorResponse'
components:
  schemas:
    CreateAccessListRequest:
      type: object
      required:
        - name
      properties:
        name:
          type: string
          description: Name for the access list
          example: Production Models
        auto_approve:
          type: boolean
          description: >-
            Whether new models matching the list patterns are automatically
            approved
          default: false
        chat:
          type: array
          items:
            type: string
          description: Chat/completion model identifiers to allow
          example:
            - openai/gpt-4o
            - anthropic/claude-sonnet-4-20250514
        embedding:
          type: array
          items:
            type: string
          description: Embedding model identifiers to allow
        image:
          type: array
          items:
            type: string
          description: Image generation model identifiers to allow
        transcription:
          type: array
          items:
            type: string
          description: Transcription model identifiers to allow
        speech:
          type: array
          items:
            type: string
          description: Speech model identifiers to allow
    CreateAccessListResponse:
      type: object
      required:
        - id
      properties:
        id:
          type: string
          format: uuid
          description: The ID of the newly created access list
    ErrorResponse:
      type: object
      required:
        - error
      properties:
        error:
          type: object
          required:
            - origin
            - message
          properties:
            origin:
              type: string
              enum:
                - router
                - provider
              description: >-
                Whether the error originated from Requesty's router or an
                upstream provider.
            message:
              type: string
              description: Human-readable error description.
  securitySchemes:
    BearerAuth:
      type: http
      scheme: bearer
      description: API key for authentication

````