Check Point Management API — Access Rules

naftiko: 1.0.0-alpha2
info:
  label: Check Point Management API — Access Rules
  description: 'Check Point Management API — Access Rules. 2 operations. Lead operation: Add an access rule. Self-contained
    Naftiko capability covering one Checkpoint business surface.'
  tags:
  - Checkpoint
  - Access Rules
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    CHECKPOINT_API_KEY: CHECKPOINT_API_KEY
capability:
  consumes:
  - type: http
    namespace: management-access-rules
    baseUri: https://{server}/web_api
    description: Check Point Management API — Access Rules business capability. Self-contained, no shared references.
    resources:
    - name: add-access-rule
      path: /add-access-rule
      operations:
      - name: addaccessrule
        method: POST
        description: Add an access rule
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: show-access-rulebase
      path: /show-access-rulebase
      operations:
      - name: showaccessrulebase
        method: POST
        description: Show access rulebase
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    authentication:
      type: apikey
      key: X-chkp-sid
      value: '{{env.CHECKPOINT_API_KEY}}'
      placement: header
  exposes:
  - type: rest
    namespace: management-access-rules-rest
    port: 8080
    description: REST adapter for Check Point Management API — Access Rules. One Spectral-compliant resource per consumed
      operation, prefixed with /v1.
    resources:
    - path: /v1/add-access-rule
      name: add-access-rule
      description: REST surface for add-access-rule.
      operations:
      - method: POST
        name: addaccessrule
        description: Add an access rule
        call: management-access-rules.addaccessrule
        with:
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/show-access-rulebase
      name: show-access-rulebase
      description: REST surface for show-access-rulebase.
      operations:
      - method: POST
        name: showaccessrulebase
        description: Show access rulebase
        call: management-access-rules.showaccessrulebase
        with:
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: management-access-rules-mcp
    port: 9090
    transport: http
    description: MCP adapter for Check Point Management API — Access Rules. One tool per consumed operation, routed inline
      through this capability's consumes block.
    tools:
    - name: add-access-rule
      description: Add an access rule
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: management-access-rules.addaccessrule
      with:
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: show-access-rulebase
      description: Show access rulebase
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: management-access-rules.showaccessrulebase
      with:
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.