Update the grants a user has. This can be used to give a user access to new entities or actions, or take access away. You don't need to include the grant for every entity on the account in this request. Any that are not included remain unchanged.
Note. This operation can only be accessed by account users with unrestricted access.
Parent and child accounts
In a parent and child account environment, the following apply:
-
No child account user can modify the
account_accessgrant for the child account parent user (proxy user). -
An unrestricted child account user can configure all other grants for the proxy user, via
globalobject. -
An unrestricted child account user can enable the
account_accessgrant for other child account users. However, enabled child users are still subject to child user restrictions--they can't perform write operations for any billing or account information.
OAuth scopes
account:read_write