Skip to main content
GET
/
api
/
v1
/
applications
/
{id}
Get an application by ID
curl --request GET \
  --url https://api.accessowl.com/api/v1/applications/{id} \
  --header 'Authorization: Bearer <token>'
{
  "admin_user_ids": [
    "7488a646-e31f-11e4-aace-600308960665"
  ],
  "auth_method": "okta",
  "data_location": "EU",
  "description": "Team communication platform",
  "id": "7488a646-e31f-11e4-aace-600308960662",
  "inserted_at": "2023-01-01T00:00:00Z",
  "last_vendor_review_at": "2026-01-15",
  "mfa_activated": true,
  "notes": "Reviewed in Q4",
  "owner_user_id": "7488a646-e31f-11e4-aace-600308960663",
  "processed_data_types": [
    "customer_data"
  ],
  "provisioning_type": "automatic",
  "risk_level": "medium",
  "status": "requestable",
  "tags": [
    {
      "id": "7488a646-e31f-11e4-aace-600308960666",
      "title": "Communication"
    }
  ],
  "title": "Slack",
  "updated_at": "2023-01-01T00:00:00Z",
  "url": "https://slack.com",
  "user_count": 150,
  "user_setup_url": "https://slack.com/get-started",
  "vendor_certificates": [
    "soc2_t2",
    "iso_27001"
  ]
}

Authorizations

Authorization
string
header
required

Bearer token authentication. Pass your AccessOwl API token in the Authorization header as Bearer <token>.

Path Parameters

id
string
required

Application ID

Response

Application

An application in the organization

id
string<uuid>
required

Application ID

status
enum<string>
required

Application status

Available options:
ignored,
discovered,
approved,
requestable
title
string
required

Application title

admin_user_ids
string<uuid>[]

User IDs of the application's admins

auth_method
enum<string> | null

Authentication method used to sign in

Available options:
google,
microsoft,
okta,
sso_provider,
credentials,
other
data_location
string | null

Where the vendor stores data

description
string | null

Description

inserted_at
string<date-time>

Creation timestamp

last_vendor_review_at
string<date> | null

Date of the last vendor security review

mfa_activated
boolean | null

Whether MFA is activated for this application

notes
string | null

Internal notes

owner_user_id
string<uuid> | null

Owner user ID

processed_data_types
enum<string>[]

Types of data this application processes

Available options:
customer_metadata,
customer_pii,
company_metadata,
company_sensitive_data,
employee_pii,
employee_sensitive_data,
ephi
provisioning_type
enum<string>

Provisioning type

Available options:
application_admin,
automatic
risk_level
enum<string> | null

Risk level assessment

Available options:
low,
medium,
high
tags
object[]

Tags assigned to this application

updated_at
string<date-time>

Last update timestamp

url
string | null

Application URL

user_count
integer | null

Number of users with access

user_setup_url
string | null

URL where existing users are shown and new users are invited

vendor_certificates
enum<string>[]

Security/compliance certifications held by the vendor

Available options:
iso_22301,
iso_27001,
iso_27017,
iso_27701,
iso_31000,
iso_42001,
soc1,
soc2_t1,
soc2_t2,
soc3,
pci_dss,
nist_csf,
fed_ramp,
hipaa,
hitrust_csf,
gdpr,
csa_star,
fsd_safe