# Authorisation

1. General
2. List of roles and their uses
3. how to request a change in role

All [API Tokens](/authentication/api-tokens.md) are associated with a [User](/authentication/users.md) and follow the same authorisation limitations as the associated User.

Authorisation roles available to a specific user are listed in the `roles` property of the [User](/authentication/users.md) object.

Newly created users always have role `USER` associated.

Some functionalities of our API require additional levels of authorisation. For example, to retrieve the position of an aircraft.

### Available Roles

| Role Name           | Access allowed                                                                                   |
| ------------------- | ------------------------------------------------------------------------------------------------ |
| `USER`              | All basic functionalities, except for functionalities that require a specific role listed below. |
| `AIRCRAFT_POSITION` | Allows access to endpoints in the `/aircraft` namespace.                                         |
| `ADMIN`             | aviowiki administrators.                                                                         |


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.aviowiki.com/authentication/authorisation.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.