Access Rights

Different Golden Records Online users have different access rights controlling what they can see and what they can do.  These are:

1. Club Admins - Have complete visibility and control over the club account.
2. Records Officer - Has visibility and control over score records and limited member management functions.
3. Membership Officer/Secretary - Has visibility and control over members
4. Guest - Has read only access.
5. Club Member - Has visibility and control over their own scores
6. Personal Users - Has complete visibility and control over their account, in effect a 1 person club.

These roles can overlap and a Golden Records Online user may have more than one role except for Personal Users who only have one.

The API respects these roles and will allow or deny access accordingly.  For example a Records Officer/Club Admin can view, add, change or delete Age Groups, but a Club Member can only view them.  Adding, changing or deleting is not permitted as this would affect the integrity of the club data.

There is a further level of control determined by the API Key used.  For Club Admins and Club Officials the API key is obtained from their Golden Records Online account and access is controlled by the access rights assigned to them in Golden Records Online.

For Club Members access to the API is by means of User ID and Password and by default this limits their access to that of a Club Member giving them visibility of their own data only and ability to interact with the API may be read only and dependent on Club global settings.

The API will respect Club rules where applicable and if Club rules do not permit members to edit scores then editing a score through the API by a Club Member will not be possible.

For Personal account holders both is possible, full control by using the API Key from their account, but also able to log in using User ID and Password.  If the latter then they have the same rights as a club member.