> ## Documentation Index
> Fetch the complete documentation index at: https://api-docs.rhombus.community/llms.txt
> Use this file to discover all available pages before exploring further.

# Get permissions for current user

> Get device and functionality permissions for user or API token



## OpenAPI

````yaml https://api2.rhombussystems.com/api/openapi/public.json post /api/permission/getPermissionsForCurrentUser
openapi: 3.0.1
info:
  contact:
    email: developer@rhombussystems.com
  description: >-
    This API is for use by Rhombus customers and partners.


    ## Authentication


    All requests require two headers:

    - `x-auth-scheme` — The authentication scheme identifier. Use `api-token`
    for standard API key auth, or `partner-api-token` for partner API auth.

    - `x-auth-apikey` — Your Rhombus API key.


    Example:

    ```

    POST /api/camera/getMinimalCameraStateList

    x-auth-scheme: api-token

    x-auth-apikey: YOUR_API_KEY

    Content-Type: application/json

    ```
  title: Rhombus API
  version: '1.0'
servers:
  - description: Production Server
    url: https://api2.rhombussystems.com
security:
  - ApiKeyAuth: []
paths:
  /api/permission/getPermissionsForCurrentUser:
    post:
      tags:
        - Permission Webservice
      summary: Get permissions for current user
      description: Get device and functionality permissions for user or API token
      operationId: getPermissionsForCurrentUser
      parameters:
        - description: >-
            Authentication scheme identifier. Use `api-token` for standard API
            key authentication, `partner-api-token` for partner API key
            authentication. Must be paired with the `x-auth-apikey` header
            containing your API key.
          example: api-token
          in: header
          name: x-auth-scheme
          required: true
          schema:
            type: string
            default: api-token
            enum:
              - api-token
              - api
              - partner-api-token
              - partner-api
      requestBody:
        content:
          application/json:
            schema:
              $ref: >-
                #/components/schemas/Permission_GetPermissionsForCurrentUserWSRequest
      responses:
        '200':
          content:
            application/json:
              schema:
                $ref: >-
                  #/components/schemas/Permission_GetPermissionsForCurrentUserWSResponse
          description: OK
components:
  schemas:
    Permission_GetPermissionsForCurrentUserWSRequest:
      type: object
      description: Request object for getting permissions for the current user.
    Permission_GetPermissionsForCurrentUserWSResponse:
      type: object
      description: >-
        Response object containing comprehensive permission information for the
        current user including functionality, device, location, and granular
        access maps.
      properties:
        accessControlLocationAccessMap:
          type: object
          additionalProperties:
            $ref: '#/components/schemas/PermissionEnum'
          description: Map of access control location UUIDs to permission levels
          nullable: true
        accessMap:
          type: object
          additionalProperties:
            $ref: '#/components/schemas/PermissionEnum'
          description: >-
            Deprecated: Map of device UUIDs to permission levels (use
            deviceAccessMap instead)
          nullable: true
        assignablePermissionGroups:
          type: array
          description: Set of permission group UUIDs the user can assign to other users
          items:
            type: string
            format: RUUID
            description: base 64 (url-safe) uuid string
            example: AAAAAAAAAAAAAAAAAAAAAA
            nullable: true
          nullable: true
          uniqueItems: true
        componentCompositeGranularAccessMap:
          type: object
          additionalProperties:
            type: object
            additionalProperties:
              $ref: '#/components/schemas/PermissionEnum'
            description: >-
              Map of component composite UUIDs to granular functionality
              permission maps. Functionality keys are LocationFunctionality
              values (normalized from ComponentCompositeFunctionality via
              ComponentCompositeFunctionality#getLocationFunctionality).
            nullable: true
          description: >-
            Map of component composite UUIDs to granular functionality
            permission maps. Functionality keys are LocationFunctionality values
            (normalized from ComponentCompositeFunctionality via
            ComponentCompositeFunctionality#getLocationFunctionality).
          nullable: true
        deviceAccessMap:
          type: object
          additionalProperties:
            $ref: '#/components/schemas/PermissionEnum'
          description: Map of device UUIDs to permission levels
          nullable: true
        error:
          type: boolean
          nullable: true
        errorMsg:
          type: string
          nullable: true
        functionalityList:
          type: array
          description: List of functionalities the user has access to
          items:
            $ref: '#/components/schemas/FunctionalityEnum'
          nullable: true
        installer:
          type: boolean
          description: Whether the user has installer privileges
          example: false
          nullable: true
        locationAccessMap:
          type: object
          additionalProperties:
            $ref: '#/components/schemas/PermissionEnum'
          description: Map of location UUIDs to permission levels
          nullable: true
        locationGranularAccessMap:
          type: object
          additionalProperties:
            type: object
            additionalProperties:
              $ref: '#/components/schemas/PermissionEnum'
            description: Map of location UUIDs to granular functionality permission maps
            nullable: true
          description: Map of location UUIDs to granular functionality permission maps
          nullable: true
        permissionGroupName:
          type: string
          description: Name of the user's permission group
          example: Administrator
          nullable: true
        superAdmin:
          type: boolean
          description: Whether the user has super admin privileges
          example: false
          nullable: true
        warningMsg:
          type: string
          nullable: true
    PermissionEnum:
      type: string
      enum:
        - READONLY
        - ADMIN
        - LIVEONLY
    FunctionalityEnum:
      type: string
      enum:
        - DEVICE_ADMINISTRATION
        - ORG_ADMINISTRATION
        - AUTH_ADMINISTRATION
        - FIRMWARE_ADMINISTRATION
        - DOOR_ACCESS_ADMINISTRATION
        - CAMERA_ADMINISTRATION
        - REGISTER_DEVICES
        - DELETE_DEVICES
        - LOCATION_ADMINISTRATION
        - POLICY_ADMINISTRATION
        - USER_ADMINISTRATION
        - REPORT_ADMINISTRATION
        - NOTIFICATION_ADMINISTRATION
        - LICENSE_ADMINISTRATION
        - RECEIVE_EMAILS
        - MANAGE_FACES
        - MANAGE_LICENSEPLATES
        - API_ADMINISTRATION
        - INTEGRATION_ADMINISTRATION
        - DATA_EXFILTRATION
        - ALERT_MONITORING_ADMINISTRATION
        - ALERT_MONITORING_VIEWONLY
        - GUEST_MANAGEMENT_ADMINISTRATION
        - GUEST_MANAGEMENT_VIEWONLY
        - CLIP_MANAGEMENT
        - VIEW_SAVED_VIDEO
        - VIEW_AND_MANAGE_SAVED_VIDEO
        - CLLM_ADMINISTRATION
        - UNKNOWN
  securitySchemes:
    ApiKeyAuth:
      description: >-
        Your Rhombus API key. Must be accompanied by the `x-auth-scheme` header
        set to `api-token` (or `partner-api-token` for partner endpoints).
      in: header
      name: x-auth-apikey
      type: apiKey

````