Special Authorization Types
Learn about SP-API scenarios that require special authorization approaches.
Although most Selling Partner API (SP-API) calls follow the standard authorization workflows, some scenarios require different approaches. This topic describes three special cases that have unique authorization requirements.
Grantless operations
Some SP-API operations don't require explicit selling partner authorization. These grantless operations typically access public data or perform functions that don't involve seller-specific information.
For details about which operations are grantless and how to authorize these calls, refer to Grantless Operations.
Vendor group authorization
Vendor applications have a unique authorization model based on vendor groups. When you authorize a vendor application, the authorization applies to all vendor codes associated with your Vendor Central sign-in credentials.
To learn how to handle vendor group authorization, refer to Authorize your Application to Access Vendor Groups.
Restricted data access
Some SP-API operations access sensitive information, such as personally identifiable information (PII). These operations require an additional layer of security through a Restricted Data Token (RDT).
For information about identifying restricted operations and implementing RDT authorization, refer to Authorization with the Restricted Data Token.
Updated 6 days ago