Skip to main content
GET
/
users
/
{id}
/
access
/
{resource_id}
Check User Access
curl --request GET \
  --url https://{defaultHost}/users/{id}/access/{resource_id} \
  --header 'Authorization: Bearer <token>'
{
  "has_access": true
}

Authorizations

Authorization
string
header
required

A company API key, company scoped JWT, app API key, or user OAuth token.

Headers

Api-Version-Date
string<date>

Pins the request to a dated API version. When omitted, the request uses the original (2025-01-01) request/response shapes, so existing unversioned callers are never broken. Generated SDKs always send the latest version they were built against. An unrecognized value is rejected with a 400. The schemas documented here always describe the latest version.

Example:

"2026-06-09"

Path Parameters

id
string
required

The user_ tag or username to check access for.

resource_id
string
required

A company (biz_), product (prod_), or experience (exp_) ID.

Response

200 - application/json

access checked

has_access
boolean
required
access_level
enum<string>
required
Available options:
no_access,
admin,
customer