Authorization

All partner integrations are provided credentials, which they can use to access the API (see Requesting an access token).

The credentials are given access to specific groups, franchises and locations based on the remit that the partner is working within. For example, a partner may have access to all resources, or a only single resource.

Administration of this access is performed by the Online Payments team, however all requests for extended authorization should go through the Online Payments product owner (David Dixon) and will be considered on a case by case basis.

⚠️ When operating on the API, the consumer will receive a 403 Forbidden response code if the transaction they are requesting does not fall inside the scope of their authorization.