Requires Privy authentication. Pass the Privy identity token in the
identity header as Bearer <token>. HMAC and API-token auth are not accepted for withdrawal-address allowlist management.- Route:
POST /portfolio/withdrawal-addresses - Auth: Privy identity token only
Request body
Example
Response
Notes
- The allowlist entry belongs to the authenticated profile.
- For partner
onBehalfOfwithdrawals, allowlist the destination on the authenticated partner profile, not on the child profile. - This endpoint does not accept HMAC/scoped API-token auth.