Comprehensive Permissions Listing
The following is a complete list of permissions available in Socotra. Our API documentation specifies the permissions required to access each API endpoint.
For example, the Create a Quote endpoint requires the quotes.write or quotes.create permission.
Refer to our documentation on Role-Based Access Control for more details.
| Resource | Action |
|---|---|
| account-balances | write |
| accounting | read |
| accounts | list, read, write |
| auto-renewals | read, write |
| auxdata | list, read, write |
| charges | list, read, write |
| compliance | read, write |
| constraints | read, upload |
| contacts | read, write |
| credit-distributions | list, read, write |
| credits | list, read |
| delinquencies | list, read, write |
| delta-files | read |
| deployments | cloneProduction, cloneTest, datamodel, deploy, read |
| developer | build, download |
| diary | list, read, write |
| disbursements | list, read, write |
| diverted-events | delete, list, read, resend |
| documents | delete-external, read, render-external, replace-external, trigger, update, upload, upload-external |
| events | list, read |
| external-cash-transactions | read |
| financial-instruments | list, read, write |
| fnols | list, read, write |
| fonts | read, update, upload |
| holds | list, read, write |
| identity | add, custom, delete, read |
| installment-lattices | list, read |
| installments | list, read |
| invoices | list, read, write |
| jobs | list, read, write |
| logs | list, read |
| mediadata | list, read, write |
| metrics | read |
| migration | list, read, write |
| moratoriums | deploy, fetch |
| payment-providers | list, read, write |
| payments | list, read, write |
| policies | list, moratoriums, read, write |
| public | build, public |
| qualifications | read, write |
| quick-quotes | list, read, write |
| quotes | accept, approve-add, approve-clear, block-add, block-clear, create, decline-add, decline-clear, discard, elements-add, elements-delete, info-add, info-clear, issue, list, moratoriums, precommit, price, read, refuse, reject-add, reject-clear, reset, schedule-add, schedule-delete, schedule-read, schedule-update, static-data-add, static-data-update, underwrite, update, validate, write |
| ratingregistries | list, read |
| resource-groups | list, read, write |
| resources | list, read |
| roles | add, delete, list, read, update |
| search | read |
| secrets | read, write |
| settings | read |
| shortfall-credits | list, read |
| tables | read, upload |
| tasks | list, read, write |
| templates | read, upload |
| tenants | create-tenant, custom, list, read, retire, validate-config, write |
| terms | list, read, write |
| transactions | accept, approve-add, approve-clear, block-add, block-clear, change-instruction-add, change-instruction-delete, change-instruction-update, decline-add, decline-clear, discard, elements-add, elements-delete, elements-update, info-add, info-clear, initialize, issue, precommit, price, read, refuse, reject-add, reject-clear, reset, schedule-add, schedule-delete, schedule-read, schedule-update, underwrite, validate, write |
| underwriting-flags | read |
| user-associations | read, write |
| users | add, custom, delete, enable, list, password-reset, read, token, update, update-roles, update-tenants, write |
| webhooks | list, read, write |
| write-offs | list, read, write |