# Authorisation

1. General
2. List of roles and their uses
3. how to request a change in role

All [API Tokens](https://docs.aviowiki.com/authentication/api-tokens) are associated with a [User](https://docs.aviowiki.com/authentication/users) and follow the same authorisation limitations as the associated User.

Authorisation roles available to a specific user are listed in the `roles` property of the [User](https://docs.aviowiki.com/authentication/users) object.

Newly created users always have role `USER` associated.

Some functionalities of our API require additional levels of authorisation. For example, to retrieve the position of an aircraft.

### Available Roles

| Role Name           | Access allowed                                                                                   |
| ------------------- | ------------------------------------------------------------------------------------------------ |
| `USER`              | All basic functionalities, except for functionalities that require a specific role listed below. |
| `AIRCRAFT_POSITION` | Allows access to endpoints in the `/aircraft` namespace.                                         |
| `ADMIN`             | aviowiki administrators.                                                                         |