> ## Documentation Index
> Fetch the complete documentation index at: https://docs.vos.verolabs.co/llms.txt
> Use this file to discover all available pages before exploring further.

# Grant a per-account permission (admin, direct)

> Grant a per-account permission (admin, direct)



## OpenAPI

````yaml openapi.oms.en.json POST /api/v1/util/admin/permissions
openapi: 3.0.3
info:
  title: VOS OMS Public API
  version: 1.0.0
  description: >-
    Public REST API surface for Vero OMS. Authentication requests use
    platform.verolabs.co. REST API requests use api-oms.verolabs.co.
servers:
  - url: https://platform.verolabs.co
    description: Authentication host
  - url: https://api-oms.verolabs.co
    description: REST API host
security: []
tags:
  - name: Authentication
    description: Account authentication and password recovery.
  - name: Trading
    description: Order entry, quote, IOI, and trading activity APIs.
  - name: Portfolio & Risk
    description: Accounts, holdings, mappings, and risk-rule read APIs.
  - name: Administration
    description: Permissions, groups, workflow, reference data, and audit APIs.
  - name: System & Diagnostics
    description: Health and latency endpoints.
paths:
  /api/v1/util/admin/permissions:
    post:
      tags:
        - Administration
      summary: Grant a per-account permission (admin, direct)
      description: |-
        Grants account permission for the specified user and account.

        Requires `Authorization: Bearer <jwt>` from `POST /api/auth/login`.

        Required JWT role: `maker` or `admin`.
      operationId: post_api_v1_util_admin_permissions
      requestBody:
        required: true
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/GrantPermissionPayload'
        description: Permission grant payload.
      responses:
        '200':
          description: OK
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/Grant'
      security:
        - bearerAuth: []
      servers:
        - url: https://api-oms.verolabs.co
components:
  schemas:
    GrantPermissionPayload:
      type: object
      properties:
        user_id:
          type: string
          description: User identifier.
        account_code:
          type: string
          description: Account code used by administration and mapping records.
        level:
          type: string
          enum:
            - VIEW
            - TRADE
            - ADMIN
          description: Permission level.
      required:
        - user_id
        - account_code
        - level
      description: GrantPermissionPayload schema.
    Grant:
      type: object
      properties:
        user_id:
          type: string
          description: User identifier.
        account_code:
          type: string
          description: Account code used by administration and mapping records.
        level:
          type: string
          enum:
            - VIEW
            - TRADE
            - ADMIN
          description: Permission level.
        granted_by:
          type: string
          description: User that granted the permission.
        created_at:
          type: string
          format: date-time
          description: Timestamp when the record was created.
        updated_at:
          type: string
          format: date-time
          description: Timestamp when the record was last updated.
      description: Grant schema.
  securitySchemes:
    bearerAuth:
      type: http
      scheme: bearer
      bearerFormat: JWT

````