Many of the API scopes are segmented similarly to the admin console. There are some special ones that cover more specific functionality. An access token can only use the scopes that are requested by the application when the token is being created. To change the scope, a new token must be obtained.
The user account requesting the access token must have the appropriate role-based privledges in the admin console before they can obtain a token.
read_people- View customer, user, or profile data
people- View and change customer, user, or profile data; supercedes
read_customerif specified together
read_order- View order data
order- View and change order data; supercedes
read_orderif specified together
read_catalog- View catalog data
catalog- View and change catalog data; supercedes
read_catalogif specified together
read_content- View blog, page, and other content-related data
content- View and change blog, page, and other content-related data; supercedes
read_contentif specified together
read_marketing- View adcode, discount, and other marketing-related data
marketing- View and change adcode, discount, and other marketing-related data; supercedes
read_marketingif specified together
custom_fields- Manage custom fields (requires
settings- View and change configuration data (requires
system- Perform system tasks such as uploading files to the site (requires
decrypt- Access to decrypt certain sensitive information, cannot be combined with
no_expiry(user must be able to view credit card data)
no_expiry- Token does not expire and does not require a refresh token, cannot be combined with
NOTE: We offer paid API support starting at $150, and increases based on the hours of support needed. This is Developer level support. If this support is needed, please enter a support request with the full scope of assistance required, so that we can provide an accurate quote for the work needed.