Skip to main content
PUT
/
api
/
public
/
teams
/
{teamId}
/
permissions
/
{memberId}
{
  "401 Unauthorized": {},
  "403 Forbidden": {},
  "400 Bad Request": {},
  "404 Not Found": {}
}

Update Member Permissions

Updates the permission flags for a single team member, controlling what actions they can perform within the team context — such as making bookings, purchasing products, or accessing community features. Only team administrators can modify permissions. An administrator cannot change their own IsTeamAdministrator flag.

Authentication

Requires a valid customer bearer token. The customer must be a team administrator of the specified team.

Path Parameters

teamId
number
required
Numeric identifier of the team. Returned as Id from GET /api/public/teams/my.
memberId
number
required
Numeric identifier of the member whose permissions are being updated. Returned as Id in the AllTeamMembers array from GET /api/public/teams/ {teamId}/profile.

Request Body

Id
number
Member ID (mirrors the path parameter).
IsTeamAdministrator
boolean
required
When true, grants the member full administrative rights. Disabled when editing one’s own permissions.
CanMakeBookings
boolean
required
When true, the member can create bookings.
CanBookForTeam
boolean
required
When true, the member can create bookings on behalf of the team.
CanPurchaseProducts
boolean
required
When true, the member can purchase products.
CanPurchaseEvents
boolean
required
When true, the member can purchase event tickets.
CanAccessCommunity
boolean
required
When true, the member can access community features (directory, discussion boards).
AccessCardId
string
Access card identifier for physical access control. Maximum 15 characters.

Response

Returns HTTP 200 OK with an empty body on success.

Examples

Grant admin rights and booking permissions

PUT /api/public/teams/55/permissions/102
Authorization: Bearer {token}
Content-Type: application/json

{
  "Id": 102,
  "IsTeamAdministrator": false,
  "CanMakeBookings": true,
  "CanBookForTeam": true,
  "CanPurchaseProducts": true,
  "CanPurchaseEvents": false,
  "CanAccessCommunity": true,
  "AccessCardId": "CARD-00102"
}

Status: 200 OK
Body: (empty)

TypeScript Integration

import { endpoints } from '@/api/endpoints'

await httpClient.put(endpoints.teams.permissions(teamId, memberId), {
  IsTeamAdministrator: false,
  CanMakeBookings: true,
  CanBookForTeam: true,
  CanPurchaseProducts: true,
  CanPurchaseEvents: false,
  CanAccessCommunity: true,
})

Usage in Portal

ContextSource file
Team permissions modal (/team/permissions/{teamId})src/views/user/team/permissions/components/TeamPermissionModal.tsx

Error Responses

401 Unauthorized
error
The customer is not authenticated or the session has expired.
403 Forbidden
error
The customer is not an administrator of the specified team.
400 Bad Request
error
Invalid request data — for example, AccessCardId exceeding 15 characters.
404 Not Found
error
Team or member with the specified ID does not exist.
MethodEndpointDescription
GET/api/public/teams/{teamId}/profileFull team profile with members
POST/api/public/teams/{teamId}/membersAdd members to a team
DELETE/api/public/teams/{teamId}/members/{coworkerId}Remove a member from a team
GET/api/public/teams/myList the customer’s teams