Authorization Scopes Catalog
- The scope pattern is
{{cloud}}.{{value}}[.rw]. - Scope represent a use-case-specific permission and may cover multiple endpoints.
- A scope that ends with
.rwalways includes the read-only rights of a scope that does not end with.rw.
For implementation details, see Authorization for Shopper APIs and Authorization for Admin APIs.
| Scope | API Family | Purpose |
|---|---|---|
| sfcc.catalogs | Product | Read catalog information. |
| sfcc.catalogs.rw | Product | Update, delete, and create catalogs. |
| sfcc.cdn-zones | CDN Zones | Read information related to CDN Zones. |
| sfcc.cdn-zones.rw | CDN Zones | Create, read, update, and delete information related to CDN Zones. |
| sfcc.customerlists | Customer | Read customer list associated with a site. |
| sfcc.customerlists.rw | Customer | Create, read, update, and delete customer lists associated with a site. |
| sfcc.gift-certificates | Pricing | View gift certificates. |
| sfcc.gift-certificates.rw | Pricing | Create, update, or delete gift certificates. |
| sfcc.inventory.availability | Inventory |
|
| sfcc.inventory.availability.rw | Inventory |
|
| sfcc.inventory.impex-graphs | Inventory |
|
| sfcc.inventory.impex-inventory | Inventory |
|
| sfcc.inventory.impex-inventory.rw | Inventory |
|
| sfcc.inventory.reservations | Inventory |
|
| sfcc.inventory.reservations.rw | Inventory |
|
| sfcc.orders | Checkout | List and view orders from a management perspective. |
| sfcc.orders.rw | Checkout | Update an existing order, for example, with a status update. |
| sfcc.products | Product | Read products assigned to a catalog. |
| sfcc.products.rw | Product | Create, read, update, and delete products from a catalog. |
| sfcc.promotions | Pricing | View assignments. |
| sfcc.promotions | Pricing | View campaigns. |
| sfcc.promotions | Pricing | View coupons. |
| sfcc.promotions | Pricing | View promotions. |
| sfcc.promotions.rw | Pricing | Create, update, or delete assignments. |
| sfcc.promotions.rw | Pricing | Create, update, or delete campaigns. |
| sfcc.promotions.rw | Pricing | Create, update, or delete coupons. |
| sfcc.promotions.rw | Pricing | Create, update, or delete promotions. |
| sfcc.pwdless_login | Shopper Login | Allow users with an eCom profile to request a token by email that can be used to log in without a password even when their identity provider (Salesforce) is unavailable. |
| sfcc.session_bridge | Shopper Login | Allow session bridging. |
| sfcc.shopper-baskets-orders | Checkout | View only baskets and orders from an end-user perspective (shopper). |
| sfcc.shopper-baskets-orders.rw | Checkout | Allow the client app to update an order, with additional information such as shipping or tax information. |
| sfcc.shopper-categories | Product | Read categories to be displayed on a storefront for shoppers. |
| sfcc.shopper-context.rw | Shopper Context | Manager Shopper Context. |
| sfcc.shopper-custom-objects.{object-type} | Shopper Custom Objects | View custom object information. Access can be restricted at the {object-type} level. This extends the standard objects provided by B2C Commerce. |
| sfcc.shopper-customers.login | Customer | Log in a shopper. |
| sfcc.shopper-customers.register | Customer | Register a shopper. |
| sfcc.shopper-experience | Shopper Experience | Read pages created in Page Designer. |
| sfcc.shopper-gift-certificates | Pricing | View gift certificates from a shopper perspective. |
| sfcc.shopper-myaccount | Customer | Read all data in a shopper account. |
| sfcc.shopper-myaccount.addresses | Customer | Read shopper addresses. |
| sfcc.shopper-myaccount.addresses.rw | Customer | Create, read, update, and delete addresses in a shopper account. |
| sfcc.shopper-myaccount.baskets | Customer | Read a shopper’s baskets. |
| sfcc.shopper-myaccount.orders | Customer | Read a shopper’s orders. |
| sfcc.shopper-myaccount.paymentinstruments | Customer | Read a shopper’s payment instruments. |
| sfcc.shopper-myaccount.paymentinstruments.rw | Customer | Create, read, update, and delete payment instruments in a shopper account. |
| sfcc.shopper-myaccount.productlists | Customer | Read wishlists associated with a shopper account. |
| sfcc.shopper-myaccount.productlists.rw | Customer | Create, read, update, and delete wishlists associated with a shopper account. |
| sfcc.shopper-myaccount.rw | Customer | Create, read, update, and delete all data in a shopper account. |
| sfcc.shopper-product-search | Shopper Search | Enables search for products and product suggestions. |
| sfcc.shopper-productlists | Customer | Read public product lists or wishlists. |
| sfcc.shopper-products | Product | Read products merchandized and available to be sold on a particular site. |
| sfcc.shopper-promotions | Pricing | View promotions from a shopper perspective. |
| sfcc.shopper-seo | Shopper SEO | View SEO-related information. |
| sfcc.shopper-stores | Shopper Stores | Enables you to search for, and obtain details on stores. |
| sfcc.source-codes | Pricing | View source codes. |
| sfcc.source-codes.rw | Pricing | Create, update, or delete source codes. |
| sfcc.ta_ext_on_behalf_of | Shopper Login | Call trusted agent endpoints. |
| sfcc.ts_ext_on_behalf_of | Shopper Login | Call trusted system endpoints. |
Here’s an example set of scopes required for a shopping application (like a PWA Kit storefront):