Check Account Approval Security
1. Overview & Typical Use
Returns a summary and detailed list of token approvals for an account, with emphasis on approvals granted to risky contracts or risky accounts.
- Typical use: approval risk check, malicious approval detection, token security audit.
- When not to use: for approval change history use “Get Account Approval Change Records”; to check multi-signature configuration use “Check Multi-Signature Security”.
2. Endpoint & Authentication
GET /api/security/auth/data
For Base URL and authentication, see Common Network & Authentication.
3. Request
Fields
| Parameter | Type | Required | Default | Description |
|---|---|---|---|---|
address | string | Yes | — | Account address to check |
4. Response
Fields
Top-level
| Field | Type | Required | Description | Unit/Precision |
|---|---|---|---|---|
approveProjectCount | integer | Required | Number of approved projects | — |
approveTokenCount | integer | Required | Number of approved tokens | — |
approveAddressCount | integer | Required | Number of approved addresses | — |
approveRiskContractCount | integer | Required | Number of approvals granted to risky contracts | — |
approveRiskAccountCount | integer | Required | Number of approvals granted to risky accounts | — |
approveRiskAddressCount | integer | Required | Total number of approvals granted to risky addresses | — |
riskApprove | array | Required | List of risky approvals; see below | — |
riskApprove[] elements
| Field | Type | Required | Description | Unit/Precision |
|---|---|---|---|---|
amount | string | Required | Approved amount | — |
unlimited | boolean | Required | Whether this is an unlimited approval | — |
from_address | string | Required | Approving address | — |
to_address | string | Required | Approved address | — |
contract_address | string | Required | Token contract address | — |
operate_time | integer | Required | Operation time | Millisecond timestamp |
tokenInfo | object | Required | Token metadata (value schema below) | — |
project | object | Optional | Project info (contains id field) | — |
project_id | string | Required | Address ID of the approved project | — |
project_sort | integer | Required | Project sort weight | — |
tokenInfo object schema (9 common fields):
| Field | Type | Required | Description | Unit/Precision |
|---|---|---|---|---|
tokenId | string | Required | Token contract address (Base58); TRX placeholder is _ | — |
tokenAbbr | string | Required | Token abbreviation (e.g. USDT / TRX) | — |
tokenName | string | Required | Token name | — |
tokenDecimal | integer | Required | Decimal precision (required to convert the amount field) | — |
tokenCanShow | integer | Required | Whether displayable (1 yes / 0 no) | — |
tokenType | string | Required | Token type (trc10 / trc20 / trc721 / trc1155) | — |
tokenLogo | string | Required | Token logo URL | — |
tokenLevel | string | Required | Token level | — |
vip | boolean | Required | Whether it is a VIP token | — |
5. Errors
For HTTP status codes, see Common Errors. Key points for this endpoint:
- When there are no risky approvals,
riskApprovereturns an empty array[]— this is a normal response.
Last updated on: