Session Roles and Scopes

Choose the right session role and scope when you mint a Meshes embed session.

Meshes embed behavior is driven by the role and scopes you send to POST /api/v1/sessions.

Current session roles:

Use the lowest role that still supports the embedded workflow you want to expose.

Typical guidance:

Some capabilities are intentionally controlled by explicit scopes rather than role alone.

Current scope:

Grant this only when the embedded experience should be able to view event payloads.

To view sensitive event payloads in embed, the session currently needs:

Meshes embed behavior is driven by the role and scopes you send to POST /api/v1/sessions.

Current session roles:

Use the lowest role that still supports the embedded workflow you want to expose.

Typical guidance:

Some capabilities are intentionally controlled by explicit scopes rather than role alone.

Current scope:

Grant this only when the embedded experience should be able to view event payloads.

To view sensitive event payloads in embed, the session currently needs: