Webhook Event #2485
Headers
{
"host": "webhook.obinnaokafor.com",
"user-agent": "Tailscale/1.0",
"content-length": "2966",
"content-type": "application/json",
"tailscale-webhook-signature": "t=1778440985,v1=61ca621f81cd340cf81b8e17f9347d855be9f2fb7e6593e04b9b5cba8b485f30",
"accept-encoding": "gzip"
}
Query
[]
Payload
[{"timestamp":"2026-05-10T19:23:05.949913398Z","version":1,"type":"policyUpdate","tailnet":"obinna.okafor01@gmail.com","message":"Tailnet policy file updated","data":{"url":"https://login.tailscale.com/admin/acls","oldPolicy":"","newPolicy":"// Example/default ACLs for unrestricted connections.\n{\n\t// Declare static groups of users. Use autogroups for all users or users with a specific role.\n\t// \"groups\": {\n\t// \"group:example\": [\"alice@example.com\", \"bob@example.com\"],\n\t// },\n\n\t// Define the tags which can be applied to devices and by which users.\n\t// \"tagOwners\": {\n\t// \"tag:example\": [\"autogroup:admin\"],\n\t// },\n\n\t// Define grants that govern access for users, groups, autogroups, tags,\n\t// Tailscale IP addresses, and subnet ranges.\n\t\"grants\": [\n\t\t// Allow all connections.\n\t\t// Comment this section out if you want to define specific restrictions.\n\t\t{\n\t\t\t\"src\": [\"*\"],\n\t\t\t\"dst\": [\"*\"],\n\t\t\t\"ip\": [\"*\"],\n\t\t},\n\n\t\t// Allow users in \"group:example\" to access \"tag:example\", but only from\n\t\t// devices that are running macOS and have enabled Tailscale client auto-updating.\n\t\t// {\"src\": [\"group:example\"], \"dst\": [\"tag:example\"], \"ip\": [\"*\"], \"srcPosture\":[\"posture:autoUpdateMac\"]},\n\t],\n\n\t// Define postures that will be applied to all rules without any specific\n\t// srcPosture definition.\n\t// \"defaultSrcPosture\": [\n\t// \"posture:anyMac\",\n\t// ],\n\n\t// Define device posture rules requiring devices to meet\n\t// certain criteria to access parts of your system.\n\t// \"postures\": {\n\t// // Require devices running macOS, a stable Tailscale\n\t// // version and auto update enabled for Tailscale.\n\t// \"posture:autoUpdateMac\": [\n\t// \"node:os == 'macos'\",\n\t// \"node:tsReleaseTrack == 'stable'\",\n\t// \"node:tsAutoUpdate\",\n\t// ],\n\t// // Require devices running macOS and a stable\n\t// // Tailscale version.\n\t// \"posture:anyMac\": [\n\t// \"node:os == 'macos'\",\n\t// \"node:tsReleaseTrack == 'stable'\",\n\t// ],\n\t// },\n\n\t// Define users and devices that can use Tailscale SSH.\n\t\"ssh\": [\n\t\t// Allow all users to SSH into their own devices in check mode.\n\t\t// Comment this section out if you want to define specific restrictions.\n\t\t{\n\t\t\t\"action\": \"check\",\n\t\t\t\"src\": [\"autogroup:member\"],\n\t\t\t\"dst\": [\"autogroup:self\"],\n\t\t\t\"users\": [\"autogroup:nonroot\", \"root\"],\n\t\t},\n\t],\n\n\t\"nodeAttrs\": [\n\t\t{\n\t\t\t\"target\": [\"autogroup:member\"],\n\t\t\t\"attr\": [\"drive:share\", \"drive:access\"],\n\t\t},\n\t],\n\n\t// Test access rules every time they're saved.\n\t// \"tests\": [\n\t// {\n\t// \"src\": \"alice@example.com\",\n\t// \"accept\": [\"tag:example\"],\n\t// \"deny\": [\"100.101.102.103:443\"],\n\t// },\n\t// ],\n}\n","actor":"obinna.okafor01@gmail.com"}}]