# Permissions

{% hint style="success" %}
**Audience:** Admins, Developers, Solution Architects

**Purpose:** Explains how <code class="expression">space.vars.Kizen\_company\_name</code> permissions work and how to retrieve a user’s permissions using the API.
{% endhint %}

## Overview

<code class="expression">space.vars.Kizen\_company\_name</code>'s highly configurable permissions engine allows for fine-grained access control to objects, entities, and actions that can be taken. When using the API, it’s important to be aware what permissions the current user has.

To fetch the user’s current permissions, make a GET call to `/api/auth/access`. This endpoint takes no additional parameters, and simply returns a JSON object with the current user’s permissions:

```bash
curl -X GET "https://app.go.kizen.com/api/auth/access" \
 -H 'accept: application/json' 
```

The JSON response includes a number of fields that describe the user’s permissions:

### Section Permissions <a href="#section-permissions" id="section-permissions"></a>

The `sections` value in the JSON has permission information for specific features and parts of the app. These allow or deny access to things like dashboards, homepages, custom object creation, and other core features.

There are other permissions types you can set as well. See the following topics for more information on them:

* [Object Permissions](/docs/concepts/objects/object-configuration/object-permissions.md)
* [Contact Permissions](broken://pages/ZfSbXfWgUab5oeBMU2jp)
* [Record Permissions](broken://pages/uhMfsDTB0PmOzSEoHKUi)

***

## What's Next

You can apply this information when building integrations, automations, or plugins that need to respect user access and authorization rules within <code class="expression">space.vars.Kizen\_company\_name</code>.

<details>

<summary>Related Topics</summary>

* [Object Permissions](/docs/concepts/objects/object-configuration/object-permissions.md)
* [Contact Permissions](broken://pages/ZfSbXfWgUab5oeBMU2jp)
* [Record Permissions](broken://pages/uhMfsDTB0PmOzSEoHKUi)

</details>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://developer.kizen.com/docs/settings-and-administration/permissions.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.