Organization admins have implicit access to all directories within their organization and do not require explicit grants.For developer API key directory search, the key must be an organization API key (not a personal key) and must match an
organization or api_key grant with search or manage permission on the target directory. Personal API keys are always rejected for directory search.Permissions
search
search
Allows the principal to run directory-scoped search queries against this directory. This is the minimum permission required for an organization API key to search the directory.
upload
upload
Allows the principal to upload source data into this directory, including CSV files and connection imports.
manage
manage
Full administrative control. A principal with
manage permission can update directory metadata, manage sources, create and delete grants, and run searches. Grants search and upload capabilities as well.Grant principals
| Principal type | What it grants access to |
|---|---|
organization | All users and API keys across the entire organization. |
user | One specific organization member. |
api_key | One specific organization API key. |
