For added security when using Braintree we recommend taking these steps to only grant ChartMogul read access to certain parts of your Braintree account.
- Login as admin to your Braintree account and go to Settings > Team > Manage Roles > + New Role.
- Give the role a name like "Read only".
- Uncheck all permissions except:
- Transactions > Download Transactions with Masked Payment Data
- Customer Management > Download Vault Records with Masked Payment Data
- Recurring Billing
- Download Subscription Records
- View Modifications
- View Subscription Plans
- View Subscriptions
- Search Subscriptions
- Read-Only Access (ALL)
- Search (ALL)
- Now go to Settings > Team > Users > + New user.
- Give the user API Access
- Assign the read only role you previously created
- Assign access to the merchant accounts (usually all of them).
- Now logout of Braintree and log back in as this new 'read only' user.
- Then go to Account > My User > Api Keys.
- Use these API keys in ChartMogul for added security.
Here are the rights you need to grant your Braintree user in order for ChartMogul to work:
