To maximise your app’s security it is important to set permissions to allow your app to accept and process specific endpoints or payment types.
Each Token and Secret pair related to an app has its own unique permissions.
Note: It is advised to enable the absolute minimum permissions required for your mobile app.
For example, if you only perform transactions from your backend; in your backend app enable the Make Payments permission.
The following app permissions are available:
- List All Transactions
- Make Payments
- Refund Payments
- Retrieve Web Payment
- Create Web Payment
- PreAuth Transactions
Note: For Mobile apps, it is recommended not to make a transaction from the app, as the Token and Secret could become compromised.