Update user roles

Integration Notes

Role Management: This endpoint specifically handles user role assignments within an organization.
Complete Replacement: The access_roles array completely replaces the user’s current roles.
Role Validation: Invalid roles (not in the allowed list) will cause the request to fail with a 400 error.
Authorization: Requires update:user scope to modify user roles.
Request ID: Always log the requestId for debugging support requests.

Request

{
  "access_roles": ["admin", "provider"]
}

Assign Single Role

{
  "access_roles": ["receptionist"]
}

Request Fields

Field	Type	Required	Description
`access_roles`	string[]	Yes	Array of roles to assign to the user

Valid Roles

The following roles can be assigned via this API:

Role	Description
`admin`	Administrator with extensive permissions
`provider`	Healthcare provider/prescriber
`receptionist`	Front desk/reception staff
`rx_reader`	Read-only access to prescriptions
`rx_queue_manager`	Manage prescription queues `coming soon`

Validation Rules

Required Field: access_roles is required and must be an array
Non-Empty Array: access_roles must contain at least one role (cannot be empty)
Valid Roles: All roles must be from the supported roles list

Response

Success Response (200 OK)

{
  "success": true,
  "statusCode": 200,
  "message": "User roles updated successfully",
  "data": {
    "user_id": "usr_abc123def456",
    "access_roles": ["admin", "provider"]
  },
  "timestamp": "2024-01-15T10:30:00.000Z",
  "requestId": "req_1705312200000_abc123"
}

Bad Request (400 Bad Request)

Invalid Roles

{
    "success": false,
    "statusCode": 400,
    "error": {
        "type": "https://parchment.health/errors/invalid-request",
        "title": "Invalid request",
        "detail": "access_roles must be a non-empty array of valid roles"
    },
    "timestamp": "2025-08-24T08:41:50.042Z",
    "requestId": "1-68aad04d-10c08dde5682893b35b89265"
}

Empty After Filtering

{
    "success": false,
    "statusCode": 400,
    "error": {
        "type": "https://parchment.health/errors/invalid-request",
        "title": "Invalid request",
        "detail": "access_roles must contain at least one valid role after filtering"
    },
    "timestamp": "2025-08-24T08:41:50.042Z",
    "requestId": "1-68aad04d-10c08dde5682893b35b89265"
}

User Not Found (404 Not Found)

{
    "success": false,
    "statusCode": 404,
    "error": {
        "type": "https://parchment.health/errors/resource-not-found",
        "title": "Resource not found",
        "detail": "User not found"
    },
    "timestamp": "2025-08-24T08:43:28.294Z",
    "requestId": "1-68aad0b0-2f3757b01494507a7802998c"
}

Response Fields

Success Response Data

Field	Type	Description
`user_id`	string	Parchment’s unique user identifier
`access_roles`	string[]	Updated array of roles assigned to user

Common Response Fields

All responses include these standard fields:

Field	Type	Description
`success`	boolean	Indicates if the request was successful
`statusCode`	number	HTTP status code
`timestamp`	string	ISO 8601 timestamp of the response
`requestId`	string	Unique identifier for debugging

Status Codes

Code	Status	Description
`200`	OK	User roles successfully updated
`400`	Bad Request	Invalid request format or invalid parameters
`401`	Unauthorized	Authentication required or token invalid
`403`	Forbidden	Insufficient permissions (missing update:user scope)
`404`	Not Found	User not found
`409`	Conflict	Role update conflict
`422`	Unprocessable Entity	Request validation failed
`429`	Too Many Requests	Rate limit exceeded
`500`	Internal Server Error	Unexpected server error

Authorizations

Authorization

string

header

required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Headers

x-organization-secret

string

required

Organization secret for authentication - provided by Parchment

Path Parameters

organization_id

string<uuid>

required

Organization ID

user_id

string<uuid>

required

User ID

Body

application/json

User roles data to update in Parchment

User roles update request

access_roles

enum<string>[]

required

Array of roles to assign to the user

Valid user roles. Note: owner, support, and member roles cannot be assigned via API.

Available options:

admin,

provider,

receptionist,

rx_reader,

rx_queue_manager

Example:

["admin", "provider"]

Response

User roles updated successfully

success

boolean

required

Indicates if the request was successful

Example:

true

statusCode

integer

required

HTTP status code

Example:

200

message

string

required

Human-readable success message

Example:

"User roles updated successfully"

data

object

required

Response payload data User roles update response data

Show child attributes

data.user_id

string

required

Parchment's unique identifier for the user

Example:

"usr_abc123def456"

data.access_roles

string[]

required

Updated array of roles assigned to user

Example:

["admin", "provider"]

timestamp

string<date-time>

required

ISO 8601 timestamp of the response

Example:

"2024-01-15T10:30:00.000Z"

requestId

string

required

Unique identifier for request tracing

Example:

"req_1705312200000_abc123"

pagination

object

Pagination information for list operations

Show child attributes

pagination.count

integer

Number of items in current response

pagination.hasNext

boolean

Whether more items are available

pagination.limit

integer

Maximum items per page

pagination.offset

integer

Starting position of current page

pagination.lastKey

string | null

Opaque cursor for fetching the next page. Use this value as the lastKey query parameter for the next request. If null, no more pages are available

API Documentation

Authentication

Authentication Endpoints

Patient Management Endpoints

User Management Endpoints

Update user roles

Integration Notes

Request