# API access scopes

Part of the authorization process requires specifying which parts of an account's data the client would like access to. A client can ask for any of the authenticated or unauthenticated access scopes listed below.

# Authenticated access scopes

Authenticated access scopes control access to resources in the GraphQL API. Authenticated access is intended for interacting with an account on behalf of the supllier to perform actions such as creating products and orders.

  • account_read, account_write Access to Account
  • products_read, products_write Access to Product, Product Variant, Product Image
  • orders_read, orders_write Access to Orders, Order Product, Invoice, Invoice Item