# List applied authorisation rules

Returns the list of all the active authorisation rules that have been applied.

Endpoint: GET /v3/spend/applications/{clientId}/spend-controls/rules/applied
Security: ClientCredentialsToken

## Path parameters:

  - `clientId` (string, required)
    The application client ID.

## Header parameters:

  - `X-External-Correlation-Id` (string)
    Optional UUID for correlating requests across systems. If provided, Wise echoes it back in the response. Maximum 36 characters. Learn more.
    Example: "f47ac10b-58cc-4372-a567-0e02b2c3d479"

## Response 200 fields (application/json):

  - `ruleId` (integer)
    The ID of the applied authorisation rule.