Hello
I would like your help regarding the privileges of the following api key :
curl -s -H "Authorization: Bearer p****" "https://api.airtable.com/v0/meta/bases"
{"bases":[{"id":"app***”,"name":"Produ***","permissionLevel":"create"}]}
My question what exactly permissionLevel":"create" means ?
and is the difference with read-only ?
Is there any security concert if for the above key if it is public ?
Thanks in advance
G.
It would relate to this (which is found in the share menu)
Can you see that key in https://airtable.com/create/tokens? It’ll show you all the access tokens currently associated with your account, and what permissions they have. I’m not seeing “create” listed as a possible scope in the web API’s scopes page, so it’s possible you may have an old (and now deprecated) API key as opposed to a newer personal access token.
API endpoint scopes are different to the application permission levels.
I am not quite sure I understand, but for example if you want to create new records by using a POST request then you need to give your token the data.records:write scope, etc
To clarify, the API scope defines what actions are technically allowed, but your account's permission level determines whether you can actually perform those actions. If you lack the necessary permissions, the API request will fail.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.