User Permissions

Permissions let you choose what parts of a Merchant Center project a team's members can see and edit.

Permissions let you choose what parts of a Merchant Center project a team’s members can see and edit.

Note: This section covers permissions for Merchant Center users. For API Client permissions, see Authorization and Scopes.

How permissions work

The Merchant Center grants permissions based on a user’s team. Teams belong to one organization. An organization can have as many teams as needed, and a user can belong to more than one team in more than one organization. You can assign permissions for multiple projects in an organization to a team. If a user belongs to more than one team, permissions are additive: they receive all the permissions granted to them by all teams they belong to.

You can assign the following kinds of permissions:

  • View permissions: Members of the team can view, but not edit or delete.
  • View and Edit permissions: Members of the team can view, edit and delete.
    • Action Rights: Some permissions have additional action rights, which control specific editing actions in a permission group. Action rights are a subset of view and edit permissions, scoping view and edit permissions to specific aspects of a particular area in the Merchant Center.
  • Menu item permissions: Hides navigation items from the main menu.

A team can have view or edit permissions to a section of the Merchant Center which is hidden from their menus.

Permissions are assigned to a specific project in an organization, not to all projects.

View and edit permissions are workflow based. If users have permissions to access a workflow, they have a minimum of view permissions on all related data relationships needed for the workflow. For example, if a customer service team has access to Orders, when editing an order they have view permissions on product discounts.

Conditional permissions

A conditional permission assigns view or view and edit permissions to a subset of data in your project that meet the requirements specified. The conditions currently supported are assigning permissions by store.

The administrator team

Every organization in commercetools has an administrator team. Members of the administrator team can do the following:

  • Access all aspects of all projects in the organization.
  • Create, modify, or delete a project.
  • Move a project to another organization that they are also an administrator of.
  • Create, modify and delete teams in the organization.
  • Add new members to any team in the organization, including the administrator team.
  • Set the permissions for any team and any project in the organization.

You cannot modify the administrator team’s permissions. We strongly recommend that you add at least one other person to the administrator team immediately after creating a new organization.

Assigning permissions and action rights to a team

  1. In the main menu bar, open the user menu and select Manage Organizations & Teams manage-organizations

  2. Click the teams in the row of the table for the organization you want to edit permissions for. select-teams

  3. Select a project from the Select Project dropdown menu to set permissions for.

  4. Select one or more permissions to set from the sections and toggle the slider. See Reference: permissions and action rights to see what each permission grants access to. toggle-permissions

  5. Optionally, check and uncheck specific action rights a permission. See Reference: permissions and action rights to see what each access right allows a team to do.

Permission settings are saved as you edit them.

Assigning conditional permissions to a team

Note: Conditional permissions are currently only supported on orders

  1. Navigate to the team’s permissions tab and select a project as described above (steps 1-3).
  2. Select a section and click on Add condition. add-condition-permissions
  3. In the condition panel select the data fence type (currently limited to stores) and values, and the permissions you want to grant within the data fence. See Reference: permissions and action rights to see how conditional permissions affect Merchant Center screens. condition-panel-permissions
  4. Save your changes by clicking the Save button in the panel.
  5. Optionally add more conditional permissions by clicking on Add another contition. add-another-condition-permissions

Warning: General permissions overwrite conditional permissions. When setting up a conditional permission, make sure to have the equivalent general permission toggled off.

Setting menu item visibility for a team

You can hide menu items from the Merchant Center’s left hand menu if needed. This is helpful for certain roles in your organization, like customer service representatives, which only need to use a small part of the Merchant Center.

Menu item permissions differ from View and edit permissions in that they only control menu item visibility.

  1. In the main menu bar, open the user menu and select Manage Organizations & Teams. manage-organizations

  2. Click the teams in the row of the table for the organization you want to edit permissions for. select-teams

  3. Select a project from the Select Project dropdown menu to set permissions for.

  4. Click the Hide menu items button and select which menu items to hide. Each item in the list corresponds to a left-hand menu item. hide-menu-items

  5. Click Hide selected.

Reference: Permissions and action rights

You can assign view and edit permissions to the following sections of the Merchant Center.

When granting a View permission, the screen and information is shown in View only mode, with no editing allowed. When granting a View and Edit permission, the screen is shown and editing of existing information or adding of a new is allowed.

All Merchant Center screens have access to any information stored in the project’s Project Settings by default.

Product Permissions

View: See the following screens in read-only mode:

  • Products List
  • Product Direct Access
  • Product Details

View and Edit: See the following screens and access all their functionality for viewing, editing, and adding products. Some functionality in these screens is dependent on the action rights enabled.

  • Products List
  • Product Direct Access
  • Product Details

Product action rights

After granting the View and Edit permission, you can grant the following action rights:

Add prices:

  • Add new prices to existing products.
  • Enables the Add price and button on Product Variant screens.
  • Enables the Add tier price button when creating a new price.
  • Implicitly grants view access to Customer Groups, as they can be used when creating new prices.

Edit prices:

  • Edit all fields existing prices for a product and save changes.
  • Implicitly grants view access Customer Groups, as they can be used when modifying prices.

Delete prices:

  • Delete existing prices for a product.
  • Enables the trash-icon delete button on the Manage a price screen.

Add products:

  • Enables the Add Products button on the Products List screen.
  • Grants access to all Add Product screens.
  • Implicitly grants view access to certain fields in Product Types, Categories, Product Discounts and Customer Group, as they are used when creating new products.

Delete products:

  • Enables the Delete option in the Actions dropdown on the Product List screen.
  • If the product is unpublished, enables the trash-icondelete button on a Product screen.

Publish products:

  • Enables the Status dropdown on Product screens.
  • Enables the Publish option in the Actions dropdown on the Product List screen.

Unpublish products:

  • Enables the Status dropdown on Product screens.
  • Enables the Unpublish option in the Actions dropdown on the Product List screen.

Categories

View: See the following screens in read-only mode:

  • Categories List
  • Category Details
  • Category Search

View and Edit: See the following screens and access all their functionality for viewing, editing, and adding categories:

  • Categories List
  • Category Details
  • Category Search
  • Add Category

Customers

View: See the following screens in read-only mode:

  • Customers List
  • Customer Details

View and Edit: See the following screens and access all their functionality for viewing, editing, and adding customers:

  • Customers List
  • Customer Details
  • Add Customer

Customer Groups

View: See the following screens in read-only mode:

  • Customer Group List
  • Customer Group Details

View and Edit: See the following screens and access all their functionality for viewing, editing and adding customer groups:

  • Customer Group List
  • Customer Group Details
  • Add Customer Group

Orders

View: See the following screens in read-only mode:

  • Dashboard
  • Orders List
    • If granted within a conditional permission, only orders matching the specified data fence (e.g. orders from “Store A”) are listed.
  • Order Details
    • If granted within a conditional permission, only orders matching the specified data fence (e.g. orders from “Store A”) can be accessed.

View and Edit: See the following screens and access all their functionality for viewing, editing and adding orders:

  • Dashboard
  • Orders List
    • If granted within a conditional permission, only orders matching the specified data fence (e.g. orders from “Store A”) are listed.
  • Order Details
    • If granted within a conditional permission, only orders matching the specified data fence (e.g. orders from “Store A”) can be accessed.
  • Add Order

Granting View and Edit permissions to Orders implicitly grants view access to certain fields in Customers, Products (And all dependencies of Products, like Product Discounts), Discount Codes and Cart Discounts when using the Add Order screen.

Product Discounts

View:: See the following screens in read-only mode:

  • Product Discounts List
  • Product Discount Details

View and Edit: See the following screens and access all their functionality for viewing, editing and adding product discounts:

  • Product Discounts List
  • Product Discount Details
  • Add Discount (Product Discount button only)

Granting View and Edit permissions to Product Discounts implicitly grants view access to certain fields in to Products and Categories when using the Add Product Discount screen.

Cart Discounts

View: See the following screens in read-only mode:

  • Cart Discounts List
  • Cart Discount Details

View and Edit: See the following screens and access all their functionality for viewing, editing and adding cart discounts:

  • Cart Discounts List
  • Cart Discount Details
  • Add Discount (Cart Discount button only)

Granting View and Edit permissions to Cart Discounts implicitly grants view access to certain fields in Customers, Customer Groups, Products and Categories when using the Add Cart Discount screen.

Discount Codes

Warning: Discount Codes must be used with a cart discount. When granting access to discount codes, ensure that the user group has access to Cart Discounts as well.

View: See the following screens in read-only mode:

  • Discount Codes List
  • Discount Code Details

View and Edit: See the following screens and access all their functionality for viewing, editing and adding discount codes:

  • Discount Codes List
  • Discount Code Details
  • Add Discount (Discount Code button only)

Granting View and Edit permissions to Discount Codes implicitly grants view access to certain fields in Cart Discounts when using the Add Discount Code screen.

Project Settings

View: See the following screens in read-only mode:

  • Project Settings

View and Edit: See the following screens and access all their functionality for viewing, editing and adding project settings:

  • Project Settings

For an overview of what you can configure using project settings, see Project Settings

Product Types

View: See the following screens in read-only mode:

  • Product Types

View and Edit: See the following screens and access all their functionality for viewing, editing and adding product types:

  • Product Types

Developer Settings

Developer Settings control who can create an API Client. We strongly recommend restricting access to this area to only those who need it.

View: See the following screens in read-only mode:

  • Developer Settings

View and Edit: See the following screens and access all their functionality for viewing, editing and adding developer settings:

  • Developer Settings