# Building User-Level Permissions User-level permissions allow individual users to control their ability to update their own approvals. Note that these are almost always never needed unless in advanced situations. Typically, you just leave these soft-enabled (empty arrays) for all. These are only really needed in advanced situations where you want to lock down a user's ability to update their own approvals, such as escrow accounts. The canUpdateOutgoingApprovals and canUpdateIncomingApprovals work similarly to [canUpdateCollectionApprovals](/token-standard/examples/building-collection-permissions.md) with key restrictions. - `fromListId` is locked to the user's address for outgoing approvals - `toListId` is locked to the user's address for incoming approvals ## User Permission Structure ```typescript const userPermissions = { canUpdateOutgoingApprovals: [ { // fromListId: 'user-address', // Locked to user's address toListId: 'All', // Can specify recipients initiatedByListId: 'All', transferTimes: FullTimeRanges, tokenIds: FullTimeRanges, ownershipTimes: FullTimeRanges, approvalId: 'All', permanentlyPermittedTimes: [], permanentlyForbiddenTimes: FullTimeRanges, // Lock forever }, ], canUpdateIncomingApprovals: [ { fromListId: 'All', // Can specify senders // toListId: 'user-address', // Locked to user's address initiatedByListId: 'All', transferTimes: FullTimeRanges, tokenIds: FullTimeRanges, ownershipTimes: FullTimeRanges, approvalId: 'All', permanentlyPermittedTimes: [], permanentlyForbiddenTimes: FullTimeRanges, // Lock forever }, ], canUpdateAutoApproveSelfInitiatedOutgoingTransfers: [ { permanentlyPermittedTimes: [], permanentlyForbiddenTimes: FullTimeRanges, }, ], canUpdateAutoApproveSelfInitiatedIncomingTransfers: [ { permanentlyPermittedTimes: [], permanentlyForbiddenTimes: FullTimeRanges, canUpdateAutoApproveAllIncomingTransfers: [ { permanentlyPermittedTimes: [], permanentlyForbiddenTimes: FullTimeRanges, }, ], }; ``` ## Implementation Users update their permissions via `MsgUpdateUserApprovals`: ```typescript const updateUserApprovals = { creator: 'bb1...', // User's address collectionId: '1', updateUserPermissions: true, userPermissions, // ... other approval updates }; ``` ## Related Examples For permission patterns, see: * [Freezing Mint Transferability](/token-standard/examples/permissions/freezing-mint-transferability.md) - Collection permission example * [Locking Specific Approval ID](/token-standard/examples/permissions/locking-specific-approval-id.md) - Approval ID targeting * [Locking Specific Token IDs](/token-standard/examples/permissions/locking-specific-token-ids.md) - Token ID targeting * [Building Collection Permissions](/token-standard/examples/building-collection-permissions.md) - Collection-level patterns For user approval configuration, see: * [Building User Approvals](/token-standard/examples/building-user-approvals.md) - User approval setup --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.bitbadges.io/token-standard/examples/building-user-permissions.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.