- Print
- DarkLight
Updates a reader's name and group associations. When is_invitation_id is false, the endpoint fetches the existing reader record and preserves any fields not provided in the request body, so partial updates are supported. If the reader is not found and is_invitation_id is false, a 404 error is returned. Requires the UpdateRolesAccountsAndGroups permission. Related endpoints: GET /v3/projects/{projectId}/readers to retrieve reader IDs, DELETE /v3/projects/{projectId}/readers/{readerId} to delete a reader.
All V3 endpoints require a Bearer token. Generate tokens in the Document360 portal under Settings > API Tokens. Tokens are project-scoped, require the customerApi scope, and do not expire by default. Tokens can be revoked at any time from the portal. Include the token in every request: Authorization: Bearer <your-token>. Alternatively, use the Authorize button below to sign in via OAuth2 Authorization Code flow with PKCE.
The unique identifier of the project. Retrieve project IDs from GET /v3/projects.
The identifier of the reader to update. Retrieve reader IDs from GET /v3/projects/{projectId}/readers.
Reader update details.
Updates the reader's group membership and expands access to the full project.
{
"first_name": "John",
"last_name": "Smith",
"associated_reader_groups": [
"b2c3d4e5-f6a7-8b9c-0d1e-2f3a4b5c6d7e",
"c3d4e5f6-a7b8-9c0d-1e2f-3a4b5c6d7e8f"
],
"access_scope": {
"access_level": "project",
"categories": null,
"project_versions": null,
"languages": null
},
"is_invitation_id": false
}Request to update an existing reader's details and access scope.
Updated first name of the reader.
Updated last name of the reader.
Updated list of reader group IDs. Replaces all existing group memberships. Retrieve group IDs from GET /v3/projects/{projectId}/readers/groups.
Updated access scope for the reader. Replaces the existing access scope.
The level at which access is scoped. Possible values: 0 = None, 1 = Category, 2 = Version, 3 = Project, 4 = Language, 5 = Article, 6 = Workspace.
List of specific category scopes when AccessLevel is Category (1). Null or empty for broader access levels.
Specifies access to a specific category within a project version and language.
Unique identifier of the project version containing the category. Retrieve from GET /v3/projects/{projectId}/project-versions.
Unique identifier of the category to grant access to. Retrieve from GET /v3/projects/{projectId}/categories.
Language code for the category translation (e.g., "en", "fr", "de"). Retrieve available languages from GET /v3/projects/{projectId}/languages.
List of project version IDs the reader has access to when AccessLevel is Version (2). Retrieve version IDs from GET /v3/projects/{projectId}/project-versions.
List of language scopes defining which translations the reader can access. Applicable when AccessLevel is Language (4).
Specifies access to a specific language within a project version.
Unique identifier of the project version. Retrieve from GET /v3/projects/{projectId}/project-versions.
Language code to grant access to (e.g., "en", "fr", "de"). Retrieve available languages from GET /v3/projects/{projectId}/languages.
Set to true if the reader is an SSO reader who hasn't logged in yet and the readerId is an invitation ID rather than a user ID.
Reader updated successfully.
Returns the reader after the update was applied
{
"data": {
"id": "d4e5f6a7-b8c9-4d0e-a1b2-c3d4e5f6a7b8",
"first_name": "Alice",
"last_name": "Johnson-Lee",
"email": "[email protected]",
"access_scope": {
"access_level": "language",
"categories": [],
"project_versions": [],
"languages": [
{
"project_version_id": "f7a8b9c0-d1e2-4f3a-b4c5-d6e7f8a9b0c1",
"lang_code": "en"
},
{
"project_version_id": "f7a8b9c0-d1e2-4f3a-b4c5-d6e7f8a9b0c1",
"lang_code": "fr"
}
]
},
"associated_reader_groups": [
"b2c3d4e5-f6a7-4b8c-9d0e-a1b2c3d4e5f6",
"c8d9e0f1-a2b3-4c4d-e5f6-a7b8c9d0e1f2"
],
"is_invite_sso_user": false,
"last_login_at": "2025-03-15T10:30:00Z"
},
"success": true,
"request_id": "c3d4e5f6-a7b8-9012-cdef-a23456789012",
"errors": [],
"warnings": []
}Generic API response wrapper containing typed data.
Response data payload.
Unique identifier of the reader.
First name of the reader.
Last name of the reader.
The access scope defining which content this reader can view.
The level at which access is scoped. Possible values: 0 = None, 1 = Category, 2 = Version, 3 = Project, 4 = Language, 5 = Article, 6 = Workspace.
List of specific category scopes when AccessLevel is Category (1). Null or empty for broader access levels.
Specifies access to a specific category within a project version and language.
Unique identifier of the project version containing the category. Retrieve from GET /v3/projects/{projectId}/project-versions.
Unique identifier of the category to grant access to. Retrieve from GET /v3/projects/{projectId}/categories.
Language code for the category translation (e.g., "en", "fr", "de"). Retrieve available languages from GET /v3/projects/{projectId}/languages.
List of project version IDs the reader has access to when AccessLevel is Version (2). Retrieve version IDs from GET /v3/projects/{projectId}/project-versions.
List of language scopes defining which translations the reader can access. Applicable when AccessLevel is Language (4).
Specifies access to a specific language within a project version.
Unique identifier of the project version. Retrieve from GET /v3/projects/{projectId}/project-versions.
Language code to grant access to (e.g., "en", "fr", "de"). Retrieve available languages from GET /v3/projects/{projectId}/languages.
List of reader group IDs that this reader belongs to. Retrieve group IDs from GET /v3/projects/{projectId}/readers/groups.
Whether this reader was invited via SSO authentication.
Date and time when the reader last logged in. Null if the reader has never logged in.
Whether the API request was successful.
Unique identifier for request tracing and correlation.
List of errors if the request failed.
Represents an error returned by the API.
Machine-readable error code (e.g. VALIDATION_ERROR, RESOURCE_NOT_FOUND).
Human-readable error message.
The request field that caused the error, if applicable.
Additional context about the error.
List of non-fatal warnings from the request.
Represents a non-fatal warning from the API.
Machine-readable warning code.
Human-readable warning message.
The request body is malformed or contains invalid JSON.
RFC 7807 Problem Details response for V3 API errors. Content-Type: application/problem+json
URI reference identifying the error type (links to documentation).
Short human-readable summary of the error type.
HTTP status code.
Human-readable explanation specific to this occurrence.
URI of the request that generated the error.
Request trace identifier for correlation.
Structured list of specific errors (extension field).
Represents an error returned by the API.
Machine-readable error code (e.g. VALIDATION_ERROR, RESOURCE_NOT_FOUND).
Human-readable error message.
The request field that caused the error, if applicable.
Additional context about the error.
Non-fatal warnings (extension field).
Represents a non-fatal warning from the API.
Machine-readable warning code.
Human-readable warning message.
Authentication token is missing or invalid.
Authentication token is missing or invalid.
{
"type": "https://developer.document360.com/errors/unauthorized",
"title": "Unauthorized.",
"status": 401,
"detail": "The authentication token is missing or has expired.",
"instance": null,
"trace_id": "req_abc123def456",
"errors": [
{
"code": "UNAUTHORIZED",
"message": "Bearer token is missing or invalid.",
"field": null,
"details": null
}
],
"warnings": null
}RFC 7807 Problem Details response for V3 API errors. Content-Type: application/problem+json
URI reference identifying the error type (links to documentation).
Short human-readable summary of the error type.
HTTP status code.
Human-readable explanation specific to this occurrence.
URI of the request that generated the error.
Request trace identifier for correlation.
Structured list of specific errors (extension field).
Represents an error returned by the API.
Machine-readable error code (e.g. VALIDATION_ERROR, RESOURCE_NOT_FOUND).
Human-readable error message.
The request field that caused the error, if applicable.
Additional context about the error.
Non-fatal warnings (extension field).
Represents a non-fatal warning from the API.
Machine-readable warning code.
Human-readable warning message.
Reader not found.
The requested resource was not found.
{
"type": "https://developer.document360.com/errors/not-found",
"title": "Not Found.",
"status": 404,
"detail": "The requested resource does not exist or has been deleted.",
"instance": null,
"trace_id": "req_abc123def456",
"errors": [
{
"code": "RESOURCE_NOT_FOUND",
"message": "The requested resource was not found.",
"field": null,
"details": null
}
],
"warnings": null
}RFC 7807 Problem Details response for V3 API errors. Content-Type: application/problem+json
URI reference identifying the error type (links to documentation).
Short human-readable summary of the error type.
HTTP status code.
Human-readable explanation specific to this occurrence.
URI of the request that generated the error.
Request trace identifier for correlation.
Structured list of specific errors (extension field).
Represents an error returned by the API.
Machine-readable error code (e.g. VALIDATION_ERROR, RESOURCE_NOT_FOUND).
Human-readable error message.
The request field that caused the error, if applicable.
Additional context about the error.
Non-fatal warnings (extension field).
Represents a non-fatal warning from the API.
Machine-readable warning code.
Human-readable warning message.
Rate limit exceeded. Retry after the duration specified in the Retry-After header.
Rate limit exceeded.
{
"type": "https://developer.document360.com/errors/too-many-requests",
"title": "Too Many Requests.",
"status": 429,
"detail": "Rate limit exceeded. Retry after the duration specified in the Retry-After header.",
"instance": null,
"trace_id": "req_abc123def456",
"errors": [
{
"code": "TOO_MANY_REQUESTS",
"message": "Rate limit exceeded. Retry after the duration specified in the Retry-After header.",
"field": null,
"details": null
}
],
"warnings": null
}RFC 7807 Problem Details response for V3 API errors. Content-Type: application/problem+json
URI reference identifying the error type (links to documentation).
Short human-readable summary of the error type.
HTTP status code.
Human-readable explanation specific to this occurrence.
URI of the request that generated the error.
Request trace identifier for correlation.
Structured list of specific errors (extension field).
Represents an error returned by the API.
Machine-readable error code (e.g. VALIDATION_ERROR, RESOURCE_NOT_FOUND).
Human-readable error message.
The request field that caused the error, if applicable.
Additional context about the error.
Non-fatal warnings (extension field).
Represents a non-fatal warning from the API.
Machine-readable warning code.
Human-readable warning message.
An unexpected server error occurred.
Unexpected server error.
{
"type": "https://developer.document360.com/errors/internal-error",
"title": "Internal Server Error.",
"status": 500,
"detail": "An unexpected error occurred. Please try again or contact support.",
"instance": null,
"trace_id": "req_abc123def456",
"errors": [
{
"code": "INTERNAL_SERVER_ERROR",
"message": "An unexpected error occurred.",
"field": null,
"details": null
}
],
"warnings": null
}RFC 7807 Problem Details response for V3 API errors. Content-Type: application/problem+json
URI reference identifying the error type (links to documentation).
Short human-readable summary of the error type.
HTTP status code.
Human-readable explanation specific to this occurrence.
URI of the request that generated the error.
Request trace identifier for correlation.
Structured list of specific errors (extension field).
Represents an error returned by the API.
Machine-readable error code (e.g. VALIDATION_ERROR, RESOURCE_NOT_FOUND).
Human-readable error message.
The request field that caused the error, if applicable.
Additional context about the error.
Non-fatal warnings (extension field).
Represents a non-fatal warning from the API.
Machine-readable warning code.
Human-readable warning message.
