<- Enum

Enum

OAuthPermission

When you direct your user to the permissions form, you specify the scope of the permissions your application will have.

Personal access tokens have all available permissions (at the time the application was created) by default.

Important: Never request more than the minimum permissions required for your application to function properly.

Link to section

Values

Link to section

BANK_ACCOUNTS_READ

HTTP Method: GET

Grants read access to bank account information associated with the targeted Square account. For example, to call the Connect v1 ListBankAccounts endpoint.

Link to section

CASH_DRAWER_READ

HTTP Method: GET

Grants read access to cash drawer shift information. For example, to call the ListCashDrawerShifts endpoint.

Link to section

CUSTOMERS_READ

HTTP Method: GET

Grants read access to customer information. For example, to call the ListCustomers endpoint.

Link to section

CUSTOMERS_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to customer information. For example, to create and update customer profiles.

Link to section

DEVICE_CREDENTIAL_MANAGEMENT

HTTP Method: POST, GET

Grants read/write access to device credentials information. For example, to call the CreateDeviceCode endpoint.

Link to section

EMPLOYEES_READ

HTTP Method: GET

Grants read access to employee profile information. For example, to call the Connect v1 Employees API.

Link to section

EMPLOYEES_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to employee profile information. For example, to create and modify employee profiles.

Link to section

INVENTORY_READ

HTTP Method: GET

Grants read access to inventory information. For example, to call the RetrieveInventoryCount endpoint.

Link to section

INVENTORY_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to inventory information. For example, to call the BatchChangeInventory endpoint.

Link to section

ITEMS_READ

HTTP Method: GET

Grants read access to product catalog information. For example, to obtain objects in a product catalog.

Link to section

ITEMS_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to product catalog information. For example, to modify or add to a product catalog.

Link to section

LOYALTY_READ

HTTP Method: GET

Grants read access to loyalty information. For example, to call the ListLoyaltyPrograms endpoint.

Link to section

LOYALTY_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to loyalty information. For example, to call the CreateLoyaltyAccount endpoint.

Link to section

MERCHANT_PROFILE_READ

HTTP Method: GET

Grants read access to business and location information. For example, to obtain a location ID for subsequent activity.

Link to section

ORDERS_READ

HTTP Method: GET

Grants read access to order information. For example, to call the BatchRetrieveOrders endpoint.

Link to section

ORDERS_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to order information. For example, to call the CreateCheckout endpoint.

Link to section

PAYMENTS_READ

HTTP Method: GET

Grants read access to transaction and refund information. For example, to call the RetrieveTransaction endpoint.

Link to section

PAYMENTS_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to transaction and refunds information. For example, to process payments with the Payments or Checkout API.

Link to section

PAYMENTS_WRITE_ADDITIONAL_RECIPIENTS

HTTP Method: POST, PUT, DELETE

Allow third party applications to deduct a portion of each transaction amount. Required to use multiparty transaction functionality with the Payments API.

Link to section

PAYMENTS_WRITE_IN_PERSON

HTTP Method: POST, PUT, DELETE

Grants write access to payments and refunds information. For example, to process in-person payments.

Link to section

SETTLEMENTS_READ

HTTP Method: GET

Grants read access to settlement (deposit) information. For example, to call the Connect v1 ListSettlements endpoint.

Link to section

TIMECARDS_READ

HTTP Method: GET

Grants read access to employee timecard information. For example, to call the Connect v2 SearchShifts endpoint.

Link to section

TIMECARDS_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to employee shift information. For example, to create and modify employee shifts.

Link to section

TIMECARDS_SETTINGS_READ

HTTP Method: GET

Grants read access to employee timecard settings information. For example, to call the GetBreakType endpoint.

Link to section

TIMECARDS_SETTINGS_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to employee timecard settings information. For example, to call the UpdateBreakType endpoint.

Link to section

APPOINTMENTS_READ

HTTP Method: GET, POST

Grants read access to booking information. For example, to call the RetrieveBooking endpoint.

Link to section

APPOINTMENTS_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to booking information. For example, to call the CreateBooking endpoint.

Link to section

APPOINTMENTS_BUSINESS_SETTINGS_READ

HTTP Method: GET

Grants read access to booking business settings. For example, to call the ListTeamMemberBookingProfiles endpoint.

Link to section

INVOICES_READ

HTTP Method: GET, POST

Grants read access to invoice information. For example, to call the ListInvoices endpoint.

Link to section

INVOICES_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to invoice information. For example, to call the CreateInvoice endpoint.

Link to section

SUBSCRIPTIONS_READ

HTTP Method: GET, POST

Grants read access to subscription information. For example, to call the RetrieveSubscription endpoint.

Link to section

SUBSCRIPTIONS_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to subscription information. For example, to call the CreateSubscription endpoint.

Link to section

DISPUTES_READ

HTTP Method: GET

Grants read access to dispute information. For example, to call the RetrieveDispute endpoint.

Link to section

DISPUTES_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to dispute information. For example, to call the SubmitEvidence endpoint.

Link to section

GIFTCARDS_READ

HTTP Method: GET, POST

Grants read access to gift card information. For example, to call the RetrieveGiftCard endpoint.

Link to section

GIFTCARDS_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to gift card information. For example, to call the CreateGiftCard endpoint.

Link to section

ONLINE_STORE_SNIPPETS_WRITE

HTTP Method: POST, PUT, DELETE

Write access to ECOM online store snippets on published websites.

Link to section

ONLINE_STORE_SNIPPETS_READ

HTTP Method: GET, POST

Read access to ECOM online store snippets on published websites.

Link to section

ONLINE_STORE_SITE_READ

HTTP Method: GET, POST

Read access to ECOM online store site details.

Link to section

PAYMENTS_WRITE_SHARED_ONFILE

HTTP Method: POST, PUT, DELETE

Allows the developer to process payments on behalf of a seller using a shared on file payment method.

Link to section

APPOINTMENTS_ALL_READ

HTTP Method: GET, POST

Grants read access to all of a seller's booking information, calendar, and business details. This permission must be accompanied by the APPOINTMENTS_READ permission.

Link to section

APPOINTMENTS_ALL_WRITE

HTTP Method: POST, PUT, DELETE

Grants write access to all booking details, including double-booking a seller. This permission must be accompanied by the APPOINTMENTS_WRITE permission.

Link to section

MERCHANT_PROFILE_WRITE

HTTP Method: POST, PUT

Grants write access to business and location information. For example, to create a new location or update the business hours at an existing location.

Link to section

VENDOR_READ

Beta

HTTP Method: GET, POST

Grants read access to vendor information, for example, when calling the RetrieveVendor endpoint.

Link to section

VENDOR_WRITE

Beta

HTTP Method: POST, PUT, DELETE

Grants write access to vendor information, for example, when calling the BulkUpdateVendors endpoint.

Link to section

PAYOUTS_READ

Beta

HTTP Method: GET

Grants read access to payouts and payout entries information. For example, to call the Connect v2 ListPayouts endpoint.

Link to section

DEVICES_READ

Beta

HTTP Method: GET

Grants read access to device information. For example, to call the GetDevice and ListDevices endpoints.