Each Sellfern API token is granted specific scopes that control which endpoints it can call. Scoping tokens narrowly limits the blast radius if a token is ever leaked — a read-only analytics token cannot modify orders even if compromised.Documentation Index
Fetch the complete documentation index at: https://docs.sellfern.com/llms.txt
Use this file to discover all available pages before exploring further.
Scope reference
| Scope | Description |
|---|---|
orders:read | Read orders, order details, notes, and tracking information. |
orders:write | Create or update orders and append order notes. |
orders:status:write | Update order status (single or bulk). |
analytics:read | Read analytics summaries and per-store reports. |
fulfillment:read | Read the fulfillment queue and fulfillment status. |
fulfillment:write | Assign suppliers and update fulfillment records. |
webhooks:manage | Create, list, update, test, and delete webhook endpoints. |
Choosing scopes for common use cases
Read-only analytics bot Grantanalytics:read only. The token can call /api/v2/analytics/summary and /api/v2/analytics/by-store but cannot touch orders or fulfillment.
Order status updater
Grant orders:read and orders:status:write. The token can list orders and update their status, but cannot create orders, add notes, or access fulfillment.
Full automation agent
Grant orders:read, orders:write, orders:status:write, analytics:read, fulfillment:read, and fulfillment:write. Use this scope set only for trusted agents that need complete operational access.
Webhook setup script
Grant webhooks:manage only. The token can register and manage webhook endpoints without any access to order or analytics data.