The ToolsAPI, when initializing requests, it makes sure there are basic roles and permissions available. This is built into the main controller that handles the requests. To make sure this isn't alway happens (due to performance) there are still plans of checking how to prevent this as it normally requires once when starting the API.
The roles that our API creates is following:
|Owner||The site administrator. Reaches everything.|
|Administrator||Administrator for separate sections in the API. Hand handle property, if we sometimes expand the API to be a "shared user experience".|
|User||Regular API requesting. This should always be primary for all users in the API universe.|
|Domain||Domain name editor. Required for users to be able to handle domain names.|