> ## Documentation Index > Fetch the complete documentation index at: https://www.c1.ai/docs/llms.txt > Use this file to discover all available pages before exploring further. # Update > Update modifies the session security settings for the tenant, such as session length and IP allowlists. ## OpenAPI ````yaml https://spec.speakeasy.com/conductor-one/conductorone/my-source-with-code-samples post /api/v1/settings/session openapi: 3.1.0 info: description: The C1 API is a HTTP API for managing C1 resources. title: C1 API version: 0.1.0-alpha servers: - description: The C1 API server for the current tenant. url: https://{tenantDomain}.conductor.one variables: tenantDomain: default: example description: The domain of the tenant to use for this request. security: - bearerAuth: [] oauth: [] paths: /api/v1/settings/session: post: tags: - Session Settings summary: Update description: >- Update modifies the session security settings for the tenant, such as session length and IP allowlists. operationId: c1.api.settings.v1.SessionSettingsService.Update requestBody: content: application/json: schema: $ref: >- #/components/schemas/c1.api.settings.v1.UpdateSessionSettingsRequest responses: '200': content: application/json: schema: $ref: >- #/components/schemas/c1.api.settings.v1.UpdateSessionSettingsResponse description: Successful response x-codeSamples: - lang: go label: Update source: "package main\n\nimport(\n\t\"context\"\n\t\"github.com/conductorone/conductorone-sdk-go/pkg/models/shared\"\n\tconductoronesdkgo \"github.com/conductorone/conductorone-sdk-go\"\n\t\"log\"\n)\n\nfunc main() {\n ctx := context.Background()\n\n s := conductoronesdkgo.New(\n conductoronesdkgo.WithSecurity(shared.Security{\n BearerAuth: \"\",\n Oauth: \"\",\n }),\n )\n\n res, err := s.SessionSettings.Update(ctx, nil)\n if err != nil {\n log.Fatal(err)\n }\n if res.UpdateSessionSettingsResponse != nil {\n // handle response\n }\n}" - lang: typescript label: Typescript (SDK) source: >- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.sessionSettings.update(); console.log(result); } run(); components: schemas: c1.api.settings.v1.UpdateSessionSettingsRequest: description: The UpdateSessionSettingsRequest message. properties: sessionSettings: $ref: '#/components/schemas/c1.api.settings.v1.SessionSettings' updateMask: nullable: true readOnly: false type: string title: Update Session Settings Request type: object x-speakeasy-name-override: UpdateSessionSettingsRequest c1.api.settings.v1.UpdateSessionSettingsResponse: description: The UpdateSessionSettingsResponse message. properties: sessionSettings: $ref: '#/components/schemas/c1.api.settings.v1.SessionSettings' title: Update Session Settings Response type: object x-speakeasy-name-override: UpdateSessionSettingsResponse c1.api.settings.v1.SessionSettings: description: >- SessionSettings configures session security for the tenant, including timeouts and per-role IP restrictions. properties: clientIdApprovalRequestPolicyId: description: Policy ID for REQUESTABLE mode approval routing. readOnly: false type: string clientIdMetadataDocumentPolicy: description: Policy for metadata document client_id URLs. enum: - CLIENT_ID_METADATA_DOCUMENT_POLICY_UNSPECIFIED - CLIENT_ID_METADATA_DOCUMENT_POLICY_ALLOW_ALL - CLIENT_ID_METADATA_DOCUMENT_POLICY_REQUESTABLE - CLIENT_ID_METADATA_DOCUMENT_POLICY_ALLOWLIST_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow connectorSource: $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' externalClientSource: $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' externalClientsEnabled: description: |- Enable external client registration (OAuth 2.0 DCR) for MCP clients like Claude Desktop, Cursor, and other AI assistants. readOnly: false type: boolean maxSessionLength: format: duration readOnly: false type: string pccAdminSource: $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' pccUserSource: $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' ssoAdminSource: $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' ssoUserSource: $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' title: Session Settings type: object x-speakeasy-name-override: SessionSettings c1.api.settings.v1.CIDRRestriction: description: >- CIDRRestriction defines an IP-based access restriction with an enable toggle and a list of allowed CIDRs. properties: enabled: description: Whether this CIDR restriction is enforced. readOnly: false type: boolean sourceCidr: description: >- The list of CIDR ranges that are allowed when the restriction is enabled. Accepts IPv4 (e.g. 10.0.0.0/24) or IPv6 (e.g. 2001:db8::/32) CIDRs. items: type: string nullable: true readOnly: false type: array title: Cidr Restriction type: object x-speakeasy-name-override: CIDRRestriction securitySchemes: bearerAuth: scheme: bearer type: http oauth: description: >- This API uses OAuth2 with the Client Credential flow. Client Credentials must be sent in the BODY, not the headers. For an example of how to implement this, refer to the [c1TokenSource.Token()](https://github.com/ConductorOne/conductorone-sdk-go/blob/3375fe7c0126d17e7ec4e711693dee7b791023aa/token_source.go#L101-L187) function. flows: clientCredentials: scopes: {} tokenUrl: /auth/v1/token type: oauth2 ````