Allow Invoice only users to use the API
As seen on this link: https://developer.xero.com/faq/permissions#user-permissions , currently only standard users can use the API, however, this makes no sense for my use case, and this is probably the same for other people.
Right now I'm trying to build an app that will automatically create invoices and email them to the contacts, however, I do not want to connect a standard full user to my application, as the returned access token will have full access to all my banking account statements whereas all I need I to create a Sales Invoice, which could be done with a "Sales Invoice only" user that does not have unrestricted access to all my data.
-
Felix commented
I think this suggestion (OAuth authorisation for users with lower access levels) would be alternative way to address some of the problems I've mentioned on my suggestion over here: https://xero.uservoice.com/forums/5528-accounting-api/suggestions/43916568-create-more-granular-accounting-scopes-eg-sales
However being able to select specific scopes more granularly would potentially be a more flexible approach - you wouldn't mind connecting a Standard user if it's very clear that the access will be to Sales Invoices only.