Documentation
Feedback
Guides
API Reference
App Development
Storefront Development
VTEX IO Apps
Troubleshooting
Release Notes
Release Notes
2025
2024
2023
2022
2021
2020
2019
Improved
Access control by permissions in the B2B Suite
1 days ago

The B2B Suite now allows you to configure specific permissions to control user access to buyer organizations, cost centers, and members in the VTEX Admin. This feature provides more security and control, allowing only authorized users to view and edit this information.

What has changed?

We've implemented the new Access Control List (ACL) feature in the B2B Suite, allowing administrators to define which users can view or edit:

  • Buyer organizations
  • Cost centers
  • Members linked to an organization

If the user doesn't have the required permissions, the Buyer Organizations section won't be displayed in the VTEX Admin.

What needs to be done?

  1. Update the B2B Suite apps to the latest major versions using the commands below in the terminal:


    _13
    vtex install vtex.storefront-permissions@3.0.0 --force
    _13
    vtex install vtex.b2b-organizations-graphql@2.0.1 --force
    _13
    vtex install vtex.b2b-quotes-graphql@4.0.1 --force
    _13
    vtex install vtex.b2b-orders-history@2.0.1
    _13
    vtex install vtex.storefront-permissions-ui@3.0.1
    _13
    vtex install vtex.b2b-organizations@3.0.1
    _13
    vtex install vtex.b2b-quotes@3.0.1
    _13
    vtex install vtex.storefront-permissions-components@2.0.1
    _13
    vtex install vtex.b2b-admin-customers@2.0.1
    _13
    vtex install vtex.b2b-my-account@2.0.0
    _13
    vtex install vtex.b2b-checkout-settings@3.0.1 --force
    _13
    vtex install vtex.b2bstore@5.0.0
    _13
    vtex install vtex.b2b-suite@2.0.0

  2. Check legacy dependencies using the command:


    _10
    vtex deps list | grep <app-name-without-version>

    If there are any apps with an older version, update them as described in step 1.

  3. Add the following License Manager resources to custom roles associated to users that need to manage Buyer Organizations:

  4. If you use custom apps that depend on the b2b-organizations-graphql and storefront-permissions apps, update the manifest.json file to include permission policies:

  5. If you use custom apps that depend on b2b-organizations-graphql and storefront-permissions, update the manifest.json file to include permission policies:


    _10
    "policies": [
    _10
    { "name": "buyer_organization_view" },
    _10
    { "name": "buyer_organization_edit" }
    _10
    ]

For more information, see the Enabling an access control list (ACL) in B2B Suite documentation.

Was this helpful?
Yes
No
FastStore WebOps: New permission controls for secrets management
« Previous
On this page