User roles and API scopes
IMPORTANT
We suggest using the API key to access Infobip HTTP API. It provides detailed control over API scopes along with numerous other security features. Learn more about it here.
If you cannot use the API key and must rely on basic authentication, you need to ensure that the user whose password you are using to call API endpoints has been granted the necessary scope to access those endpoints. Unlike API keys, scopes are not directly assigned to users. Instead, you can assign roles to the user, and those roles will implicitly grant certain scopes.
Refer to the list below for scopes that are implicitly granted by specific roles:
| Role | Scopes |
|---|---|
| Communication Manager | inbound-message:read, metrics:manage, kakao:logs:read, callrouting:manage, zalo-follower:manage, voice-message:manage, number-activation-state:read, calllink:configuration:manage, instagram:manage, forms:use, message:send, people:manage, signals:manage, kakao:manage, number-lookup:logs:read, zalo:manage, live-chat:manage, apple-mfb:logs:read, rbm-maap:manage, google-bm:logs:read, messenger:logs:read, voice:recording:delete, numbers:manage, conversations:manage, sending-strategy:manage, forms:read, mms:manage, whatsapp:logs:read, blocklist:manage, people:read, number-lookup:manage, calls:manage, sms:manage, omni-failover:logs:read, zalo:logs:read, viber-bot:manage, calllink:manage, account-management:manage, forms:manage, voice-message:logs:read, calllink:link:manage, email:manage, flow:manage, rcs:logs:read, 2fa:pin:manage, line:manage, calls:recording:delete, moments:manage, whatsapp:manage, calls:configuration:manage, webrtc:manage, web-push:manage, content-messages:read, sms:logs:read, calls:media:manage, numbers:recording:manage, voice:recording:read, 2fa:manage, voice:recording:manage, moments:people:flow:manage, calls:logs:read, voice:logs:read, viber-bm:logs:read, calls:bulk:manage, catalogs:manage, calls:traffic:record, omni-failover:manage, viber-bot:logs:read, ivr:manage, viber-bm:manage, mms:logs:read, apple-mfb:manage, messenger:manage, google-bm:manage, rcs:manage, clicktocall:manage, mobile-app-messaging:manage, email:logs:read, ivr:configuration:manage, voice-reports:read, instagram:logs:read, messages-api:manage, numbermasking:manage, calls:recording:read |
| People Manager | forms:manage, people:read, flow:manage, conversations:manage, people:manage, mobile-app-messaging:manage, moments:manage, live-chat:manage, account-management:manage |
| Analyze Manager | inbound-message:read, metrics:manage, kakao:logs:read, sms:inbound-message:read, forms:use, people:manage, number-lookup:logs:read, live-chat:manage, apple-mfb:logs:read, google-bm:logs:read, messenger:logs:read, voice:recording:delete, conversations:manage, whatsapp:logs:read, people:read, omni-failover:logs:read, zalo:logs:read, account-management:manage, whatsapp:inbound-message:read, voice-message:logs:read, flow:manage, rcs:logs:read, calls:recording:delete, moments:manage, mms:inbound-message:read, sms:logs:read, calls:media:manage, numbers:recording:manage, voice:recording:read, voice:recording:manage, calls:logs:read, voice:logs:read, viber-bm:logs:read, calls:traffic:record, viber-bot:logs:read, mms:logs:read, mobile-app-messaging:manage, email:logs:read, voice-reports:read, instagram:logs:read, numbermasking:manage, calls:recording:read, calls:read |
| Finance Data Manager | numbers:manage, forms:use, conversations:manage, numbermasking:manage, moments:manage, account-management:manage |
| Account Manager | zalo-follower:logs:read, inbound-message:read, kakao:logs:read, zalo-follower:manage, kakao:message:send, people:manage, kakao:manage, zalo:manage, messenger:logs:read, whatsapp:logs:read, people:read, sms:message:send, webrtc:media:manage, mms:message:send, audit-logs:read, content-messages:manage, webrtc:manage, numbers:recording:manage, voice:recording:manage, viber-bm:logs:read, omni-failover:manage, viber-bot:logs:read, mms:logs:read, apple-mfb:manage, messenger:manage, email:logs:read, instagram:logs:read, resource-request-hub:read, calls:recording:read, line:message:send, omni-failover:message:send, sms:inbound-message:read, number-activation-state:read, calllink:configuration:manage, calls:traffic:receive, message:send, live-chat:manage, subscriptions:manage, rbm-maap:manage, forms:read, biometrics:manage, sms:manage, zalo:logs:read, calllink:manage, voice-message:message:send, error-codes:read, zalo:message:send, calls:traffic:send, flow:manage, viber-bm:message:send, moments:manage, sms:logs:read, content-messages:read, 2fa:pin:send, viber-bot:message:send, people:use, calls:logs:read, voice:logs:read, calls:bulk:manage, rcs:message:send, google-bm:manage, rcs:manage, messages-api:manage, calls:read, callrouting:manage, voice-message:manage, zalo-follower:message:send, forms:use, number-lookup:logs:read, mobile-app-messaging:inbound-message:read, whatsapp:conversions, messages-api:message:send, webrtc:configuration:manage, apple-mfb:message:send, voice:recording:delete, numbers:manage, conversations:manage, sending-strategy:manage, email:message:send, number-lookup:manage, calls:manage, webrtc:identity:manage, resource-request-hub:manage, rbm-maap:message:send, catalogs:use, whatsapp:inbound-message:read, voice-message:logs:read, calllink:link:manage, email:manage, 2fa:pin:manage, calls:recording:delete, whatsapp:manage, whatsapp:message:send, mms:inbound-message:read, calls:media:manage, voice:recording:read, moments:people:flow:manage, calls:traffic:record, ivr:manage, 2fa:sdk, clicktocall:manage, mobile-app-messaging:manage, flow:read, ivr:configuration:manage, mobile-identity:manage, metrics:manage, flow:use, catalogs:read, number-lookup:send, mobile-app-messaging:send, instagram:manage, signals:manage, apple-mfb:logs:read, google-bm:logs:read, instagram:message:send, messenger:message:send, web-push:send, mobile-app-messaging:logs:read, mms:manage, blocklist:manage, omni-failover:logs:read, viber-bot:manage, account-management:manage, forms:manage, rcs:logs:read, line:manage, calls:configuration:manage, web-push:manage, 2fa:manage, web:sdk, catalogs:manage, viber-bm:manage, application-entity:manage, google-bm:message:send, ivr:message:send, voice-reports:read, numbermasking:manage |
| Integrations Manager | zalo-follower:logs:read, inbound-message:read, kakao:logs:read, zalo-follower:manage, kakao:message:send, people:manage, kakao:manage, zalo:manage, messenger:logs:read, whatsapp:logs:read, people:read, sms:message:send, webrtc:media:manage, mms:message:send, audit-logs:read, content-messages:manage, webrtc:manage, numbers:recording:manage, voice:recording:manage, viber-bm:logs:read, omni-failover:manage, viber-bot:logs:read, mms:logs:read, apple-mfb:manage, messenger:manage, email:logs:read, instagram:logs:read, resource-request-hub:read, calls:recording:read, line:message:send, omni-failover:message:send, sms:inbound-message:read, number-activation-state:read, calllink:configuration:manage, calls:traffic:receive, message:send, live-chat:manage, subscriptions:manage, rbm-maap:manage, forms:read, biometrics:manage, sms:manage, zalo:logs:read, calllink:manage, voice-message:message:send, error-codes:read, zalo:message:send, calls:traffic:send, flow:manage, viber-bm:message:send, moments:manage, sms:logs:read, content-messages:read, 2fa:pin:send, viber-bot:message:send, people:use, calls:logs:read, voice:logs:read, calls:bulk:manage, rcs:message:send, google-bm:manage, rcs:manage, messages-api:manage, calls:read, callrouting:manage, voice-message:manage, zalo-follower:message:send, forms:use, number-lookup:logs:read, mobile-app-messaging:inbound-message:read, whatsapp:conversions, messages-api:message:send, webrtc:configuration:manage, apple-mfb:message:send, voice:recording:delete, numbers:manage, conversations:manage, sending-strategy:manage, email:message:send, number-lookup:manage, calls:manage, webrtc:identity:manage, resource-request-hub:manage, rbm-maap:message:send, catalogs:use, whatsapp:inbound-message:read, voice-message:logs:read, calllink:link:manage, email:manage, 2fa:pin:manage, calls:recording:delete, whatsapp:manage, whatsapp:message:send, mms:inbound-message:read, calls:media:manage, voice:recording:read, moments:people:flow:manage, calls:traffic:record, ivr:manage, 2fa:sdk, clicktocall:manage, mobile-app-messaging:manage, flow:read, ivr:configuration:manage, mobile-identity:manage, metrics:manage, flow:use, catalogs:read, number-lookup:send, mobile-app-messaging:send, instagram:manage, signals:manage, apple-mfb:logs:read, google-bm:logs:read, instagram:message:send, messenger:message:send, web-push:send, mobile-app-messaging:logs:read, mms:manage, blocklist:manage, omni-failover:logs:read, viber-bot:manage, account-management:manage, forms:manage, rcs:logs:read, line:manage, calls:configuration:manage, web-push:manage, 2fa:manage, web:sdk, catalogs:manage, viber-bm:manage, application-entity:manage, google-bm:message:send, ivr:message:send, voice-reports:read, numbermasking:manage |
| Conversations Agent | forms:manage, calls:manage, content-messages:read, conversations:manage |
| Conversations Manager | forms:manage, content-messages:manage, catalogs:manage, calls:manage, content-messages:read, conversations:manage |
| Conversations Analyze Manager | conversations:manage, moments:manage |
| Conversations Account Manager | conversations:manage, account-management:manage |
| Answers Manager | voice-message:logs:read, rcs:logs:read, kakao:logs:read, moments:manage, sms:logs:read, number-lookup:logs:read, live-chat:manage, apple-mfb:logs:read, calls:logs:read, voice:logs:read, viber-bm:logs:read, catalogs:manage, google-bm:logs:read, messenger:logs:read, viber-bot:logs:read, mms:logs:read, whatsapp:logs:read, email:logs:read, instagram:logs:read, omni-failover:logs:read, zalo:logs:read, account-management:manage |
| Answers Designer | apple-mfb:logs:read, viber-bm:logs:read, calls:logs:read, voice-message:logs:read, voice:logs:read, catalogs:manage, google-bm:logs:read, messenger:logs:read, viber-bot:logs:read, mms:logs:read, rcs:logs:read, kakao:logs:read, moments:manage, whatsapp:logs:read, email:logs:read, instagram:logs:read, omni-failover:logs:read, zalo:logs:read, sms:logs:read, number-lookup:logs:read, account-management:manage |
| Answers Supervisor | account-management:manage |
| Knowledge Base Manager | conversations:manage |
| Knowledge Base User | conversations:manage |
| Campaign Content Creator | apple-mfb:logs:read, viber-bm:logs:read, calls:logs:read, voice-message:logs:read, voice:logs:read, google-bm:logs:read, messenger:logs:read, viber-bot:logs:read, mms:logs:read, rcs:logs:read, kakao:logs:read, whatsapp:logs:read, email:logs:read, instagram:logs:read, omni-failover:logs:read, zalo:logs:read, sms:logs:read, number-lookup:logs:read |
| Campaign Approval Manager | apple-mfb:logs:read, viber-bm:logs:read, calls:logs:read, voice-message:logs:read, voice:logs:read, google-bm:logs:read, messenger:logs:read, viber-bot:logs:read, mms:logs:read, rcs:logs:read, kakao:logs:read, whatsapp:logs:read, email:logs:read, instagram:logs:read, omni-failover:logs:read, zalo:logs:read, sms:logs:read, number-lookup:logs:read |
| Content Manager | content-messages:manage, content-messages:read, conversations:manage |