Permissions List

Resources and Guides

Apps on LevelUp interact with merchants and users based on granular permission sets. Below is a table of the permissions that your app can request and what each permission enables your app to do. Not every endpoint requires a permission. For the full list of endpoints, visit the API Reference section.

User Permissions

The permissions you’ll need to interact with users.

Permission Name Description Endpoints Available Restrictions
create_orders Charge a user on behalf of a merchant Create proposed order Requires a merchant access token with the manage_merchant_orders permission also
edit_user_
basic_info
Update a user’s name, email, birthday, password and gender Update a user
read_user_
orders
Read a users transaction history, with item level detail List user orders and
Get user order details
read_user_
basic_info
Read a user’s name, email, birthday and gender Get user details
read_qr_code Read a user’s current payment token info Get user QR code QR codes are only guaranteed to be good for one transaction
manage_user_
campaigns
Can view credit for a user and claim campaigns Get user loyalty
manage_user_
addresses
Can read a user’s addresses and add new ones Create user addresses and List user addresses Can not edit addresses - limited to list and create
manage_user_
payment_methods
Can manage user payment methods Create credit card and
Get payment method

Merchant Permissions

Permission Name Description Endpoints Available Restrictions
manage_merchant_
orders
Can create orders on behalf of this merchant and be able to refund them Create proposed order Also requires a user access_token to charge the user
give_merchant_
funded_credit
Can grant credit on behalf of a merchant Give merchant funded credit