Articles in this section

User Access | Permissions and Rights

Avatar
Helen
  • Updated
Follow

MYOB AccountRight has a very powerful user access solution built into it. With this, a company file might have sales staff who can enter sales, but not see payroll, or a warehouse manager who can see orders, but not the account balances.

When a user connects an external solution to the MYOB AccountRight file using the API, the API will behave with the same permissions as that user.

How do I check a user's access permissions

To find out exactly what rights the current user has, and to ensure they have the right permissions for your application to function correctly make a GET request to the {{company_file_uri}}/{{company_file_id}}/CurrentUser endpoint.

The response will look like:

{
    "UserAccess": [
        {
            "ResourcePath": "https://{{company_file_uri}}/{{company_file_id}}/Banking/BankAccount/",
            "Access": [
                "GET"
            ]
        },
        {
            "ResourcePath": "https://{{company_file_uri}}/{{company_file_id}}/Banking/ReceiveMoneyTxn/",
            "Access": [
                "GET",
                "POST",
                "PUT",
                "DELETE"
            ]
        },
      ...
    ]
}

Every endpoint will be listed out, and the METHODS that the user has permission to use will be listed.

If the user does not have the permission required for your application to function correctly, you can now prompt them and ask them to have their MYOB administrator change the permissions or have the administrator do the setup of your application to MYOB.

Related articles

Comments

0 comments

Article is closed for comments.