Set Role Permissions for the Site List landing.role.setRights
If you are developing integrations for Bitrix24 using AI tools (Codex, Claude Code, Cursor), connect to the MCP server so that the assistant can utilize the official REST documentation.
Scope:
landingWho can execute the method: administrator or user with "full access" permission to the "Sites and Stores" section
The method landing.role.setRights sets role permissions for sites. You can specify separate permissions for each site, while others will have default permissions. The new set of permissions completely replaces the previous one.
Method Parameters
Required parameters are marked with *
|
Name |
Description |
|
id* |
The identifier of the role for which permissions need to be updated. You can obtain the identifier using the landing.role.getList method. If you pass the identifier of a non-existent role, the method will not return a separate error. |
|
An object in the following format: where:
The list of available permission codes is described below, and the structure of the object is in the parameter table rights. The method completely replaces previously saved role permissions for sites. |
|
|
additional |
Additional capabilities of the role. Possible values:
If the parameter is not passed, the current additional capabilities of the role will remain unchanged. |
Parameter rights
|
Name |
Description |
|
|
Default permissions for the role for all sites that do not have separate settings. Available permission codes are described below. |
|
|
Role permissions for the site with the specified identifier. The key is the site identifier, and the value is an array of permission codes. If a site with that identifier is not found, the entry will be skipped without an error. You can obtain the site identifier using the landing.site.getList method or from the result of the landing.site.add method. For each site, pass an array of permission codes. If a different value is passed instead of an array, the entry for that site will be skipped without an error. |
Permission Codes
|
Code |
Description |
|
|
Access to the site is denied. |
|
|
View the site. |
|
|
Modify site pages. |
|
|
Change site settings. |
|
|
Publish. |
|
|
Move to trash and restore from trash. |
Code Examples
How to Use Examples in Documentation
curl -X POST \
-H "Content-Type: application/json" \
-d '{
"id": 11,
"rights": {
"0": ["read"],
"66": ["read", "edit", "sett"],
"71": ["denied"]
},
"additional": ["menu24", "create"]
}' \
"https://**put.your-domain-here**/rest/**user_id**/**webhook_code**/landing.role.setRights.json"
curl -X POST \
-H "Content-Type: application/json" \
-d '{
"id": 11,
"rights": {
"0": ["read"],
"66": ["read", "edit", "sett"],
"71": ["denied"]
},
"additional": ["menu24", "create"],
"auth": "**put_access_token_here**"
}' \
"https://**put.your-domain-here**/rest/landing.role.setRights.json"
try
{
const response = await $b24.callMethod(
'landing.role.setRights',
{
id: 11,
rights: {
0: ['read'],
66: ['read', 'edit', 'sett'],
71: ['denied']
},
additional: ['menu24', 'create']
}
);
const result = response.getData().result;
console.info(result);
}
catch (error)
{
console.error(error);
}
try {
$response = $b24Service
->core
->call(
'landing.role.setRights',
[
'id' => 11,
'rights' => [
0 => ['read'],
66 => ['read', 'edit', 'sett'],
71 => ['denied'],
],
'additional' => ['menu24', 'create'],
]
);
$result = $response
->getResponseData()
->getResult();
echo 'Success: ' . var_export($result, true);
} catch (Throwable $e) {
error_log($e->getMessage());
echo 'Error setting role rights: ' . $e->getMessage();
}
BX24.callMethod(
'landing.role.setRights',
{
id: 11,
rights: {
0: ['read'],
66: ['read', 'edit', 'sett'],
71: ['denied']
},
additional: ['menu24', 'create']
},
function(result)
{
if (result.error())
{
console.error(result.error());
}
else
{
console.info(result.data());
}
}
);
require_once('crest.php');
$result = CRest::call(
'landing.role.setRights',
[
'id' => 11,
'rights' => [
0 => ['read'],
66 => ['read', 'edit', 'sett'],
71 => ['denied'],
],
'additional' => ['menu24', 'create'],
]
);
if (isset($result['error']))
{
echo 'Error: ' . $result['error_description'];
}
else
{
echo '<pre>';
print_r($result['result']);
echo '</pre>';
}
Response Handling
HTTP Status: 200
{
"result": true,
"time": {
"start": 1775071662,
"finish": 1775071663.148474,
"duration": 1.1484739780426025,
"processing": 0,
"date_start": "2026-04-01T22:27:42+02:00",
"date_finish": "2026-04-01T22:27:43+02:00",
"operating_reset_at": 1775072263,
"operating": 0.1147608757019043
}
}
Returned Data
|
Name |
Description |
|
result |
The result of the call. The method returns The value After the call, check the saved set of permissions using the landing.role.getRights method. |
|
time |
Information about the execution time of the request. |
Error Handling
HTTP Status: 400
{
"error": "MISSING_PARAMS",
"error_description": "Not enough parameters for the call, missing: rights"
}
|
Name |
Description |
|
error |
String error code. It may consist of digits, Latin letters, and underscores |
|
error_description |
Textual description of the error. The description is not intended to be shown to the end user in its raw form |
Possible Error Codes
|
Code |
Description |
|
|
Not enough permissions to work with the "Sites and Stores" section. |
|
|
The method requires administrator rights or "full access" permission to the "Sites and Stores" section. |
|
|
Permission management in the "Sites and Stores" section is not available on the current plan. |
|
|
The required parameter |
Statuses and System Error Codes
HTTP Status: 20x, 40x, 50x
The errors described below may occur when calling any method.
|
Status |
Code |
Description |
|
|
|
An internal server error has occurred. Please contact the server administrator or Bitrix24 technical support |
|
|
|
An internal server error has occurred. Please contact the server administrator or Bitrix24 technical support |
|
|
|
The request intensity limit has been exceeded |
|
|
|
The current method is not permitted for calls using batch |
|
|
|
The maximum length of parameters passed to the batch method has been exceeded |
|
|
|
Invalid access token or webhook code |
|
|
|
The HTTPS protocol is required for method calls |
|
|
|
The REST API is blocked due to overload. This is a manual individual block; please contact Bitrix24 technical support to lift it |
|
|
|
The REST API is only available on commercial plans |
|
|
|
The user associated with the access token or webhook used to call the method lacks the necessary permissions |
|
|
|
The manifest is not available |
|
|
|
The request requires higher privileges than those provided by the webhook token |
|
|
|
The provided access token has expired |
|
|
|
The user does not have access to the application. This means that the application is installed, but the portal administrator has restricted access to this application to specific users only |
|
|
|
The public part of the site is closed. To open the public part of the site on an on-premise installation, disable the "Temporary closure of the public part of the site" option. Path to the setting: Desktop > Settings > Product Settings > Module Settings > Main Module > Temporary closure of the public part of the site |
Continue Learning
- Get the List of Roles landing.role.getList
- Get Role Rights with landing.role.getRights
- Set Access Codes for Role landing.role.setAccessCodes