We use the Matomo PHP-Tracker to track direct downloads and other events.
We are not sure what is correct based on the documentation:
API reference
https://developer.matomo.org/api-reference/PHP-Piwik-Tracker#settokenauth
It is described that admin or super user rights are required.
setTokenAuth()
Some Tracking API functionality requires express authentication, using either the Super User token_auth, or a user with ‘admin’ access to the website.
The following features require access: - force the visitor IP - force the date & time of the tracking requests rather than track for the current datetime
Signature.
Tracking API
https://developer.matomo.org/api-reference/tracking-api
Write access is recommended here.
token_auth — 32 character authorization key used to authenticate the API request. We recommend to create a user specifically for accessing the Tracking API, and give the user only write permission on the website(s).
I think we need write access. Can anyone confirm that (which of the descriptions is correct)?
Thanx
Edit
Tested by myself
Only write permissions necessary