The Auth-Token or Authorization header is used to access API endpoints requiring authorisation. There are four main permission types:
Public
No authorisation required.
Member
Access limited to customers with an authenticated account. Basic and Single Sign On authentication is supported.
/api/v5/{company_id}/members/
Contact
Access limited to customers without an authenticated account.
Admin
Access limited to Administrator's that use the JRNI Studio interface. Basic, Single Sign On and OAuth are supported. OAuth supports Admin and Owner role permission access only.
/api/v5/{company_id}/admin/
See https://jrnisupport.helpdocs.io/article/p6qbqfxo8y-understanding-user-roles-and-permissions