If you are enabled for multiple identity APIs (for example, the Abilitec API and the Retrieval API, or the Retrieval API and the Translation API), you need to specify which API you're using on each call.

The following table lists the permissions included in each role.

RolePermissions
abilitec-standardCall /match or /lookup to retrieve AbiliTec Links
envelope-decryptionCall /lookup/envelope to decrypt envelopes
rampid-retrievalCall /match or /lookup to retrieve RampIds
abilitec-transcodingCall /lookup/abilitec or /document to retrieve a translated document ID and/or AbiliTec Link
rampid-transcodingCall /lookup/anonymousAbilitec or /document to retrieve a translated document ID and/or RampId

Example Call with Roles


TOKEN=$(curl -s -X POST  
-H 'Accept: application/json'  
-H 'Content-Type: application/x-www-form-urlencoded'  
-u "{client-id here}:{client-secret here}"  
-d "grant_type=client_credentials"  
<https://us.am-staging.identity.api.liveramp.com/token> | jq -r '.access_token');  
curl -X POST -H 'Accept: application/json'  
-H 'Content-Type: application/json'  
-H "Authorization: Bearer ${TOKEN}"  
--data '["/people/match?name=tester", "/people/match?name=otherTester"]'  
<https://us.am.identity.api.liveramp.com/batch?role=rampid-retrieval>