Ecommerce app permissions
Your app must request specific permissions from merchants to access and update their data. In addition, on the Developer Dashboard, you must specify the Ecommerce integration type you are using for your app.
Required app permissions
Merchants using your app grant your app permissions during installation, and your app will use the associated OAuth token to use for all API calls on behalf of the merchant (see Using OAuth 2.0 for more information about the OAuth flow). Your app should only request the minimum permissions required for your app to function.
PAKMS service endpoint
| Operation | Required permission |
|---|---|
Get public keyGET /pakms/apikey | Online payments |
Tokenization service endpoint
| Operation | Required permissions |
|---|---|
Create tokenPOST /v1/tokens | None |
IMPORTANT
To create a token using
POST /v1/tokens, you need a public key retrieved from the PAKMS service.
Ecommerce service endpoints
Charge endpoints
| Operation | Required permissions |
|---|---|
Create a chargePOST /v1/charges | Online payments |
Capture an open chargePOST /v1/charges/{chargeId}/capture | Read payments Write payments Online payments |
Get chargesGET /v1/charges | Read payments |
Get a single chargeGET /v1/charges/{chargeId} | Read payments |
Customer endpoints
| Operation | Required permissions |
|---|---|
Create a card-on-file customerPOST /v1/customers | Read customers Write customers Online payments |
Add a card to an existing customerPUT /v1/customers | Read customers Write customers Online payments |
Remove a card from an existing customerDELETE /v1/customers | Read customers Write customers Online payments |
Order endpoints
| Operation | Required permissions | Additional permissions |
|---|---|---|
Create an orderPOST /v1/orders | Read merchant Read orders Write orders | To add a customer: Read customers To add tax_rates to items:Read inventory |
Get ordersGET /v1/orders | Read orders Read payments | |
Get an orderGET /v1/orders/{orderId} | Read customers Read merchant Read orders Read payments | |
Pay for an orderPOST /v1/orders/{orderId}/pay | Read customers Read inventory Read merchant Read orders Read payments Online payments | |
Return an orderPOST /v1/orders/{orderId}/returns | Read customers Read merchant Read orders Read payments Online payments |
NOTE
Getting an order with
GET /v1/orders/{orderId}auto-expands the following fields:
lineItemslineItems.taxRatespaymentsrefundscustomers
Refund endpoints
| Operation | Required permissions |
|---|---|
Get refundsGET /v1/refunds | Read payments |
Get a refundGET /v1/refunds/{refundId} | Read payments |
Refund a chargePOST /v1/refunds | Read customers Read merchant Read orders Read payments Online payments |
Recurring Payments service endpoints
Plan endpoints
| Operation | Required permissions |
|---|---|
Create planPOST /v1/plans | Read merchant Write merchant |
Get a planGET /v1/plans/{planId} | Read merchant |
Edit a planPUT /v1/plans/{planId} | Read merchant Write merchant |
Deactivate a planPUT /v1/plans/{planId} | Read merchant Write merchant |
Subscription endpoints
| Operation | Required permissions |
|---|---|
Create a subscriptionPOST /v1/plans/{planId}/subscriptions | Read customers Write customers |
Get a subscriptionGET /v1/subscriptions/{subscriptionId} | Read merchant Read customers |
Edit a subscriptionPUT /v1/subscriptions/{subscriptionId} | Read customers Write customers |
Cancel a subscriptionPUT /v1/subscriptions/{subscriptionId} | Read customers Write customers Read merchants |
Setting app permissions and integration type
To set app permissions and integration type for your app:
- On the Developer Dashboard, click App Settings on the side-nav.
- On the App Settings page, click Requested Permissions.
- On the Edit Requested Permissions modal that appears, select your app's read or write permissions for Ecommerce API as required. For any selected permission, provide in-line justification about how your app is using this information.
- Click Save. Your selected permissions appear on the App Settings page.
- On the App Settings page, click the additional Ecommerce Settings that appear.
- On the Edit Ecommerce Settings modal that appears, select your integration type. See Integration types for more information.
- Click Save. Your selected integration type appears on the App Settings page.
Updated about 1 year ago