API permissions

Hello. In my integration with pipedrive, I’ve been testing with an admin user. That user has been able to do everything. However, when trying with a non admin user (even with all the same permissions), the second user is not able to update a person. They can however, still search people. What permissions are needed for non-admin users to update people via the API (https://api.pipedrive.com/v1/persons/:id)?

Can you share the permission set for the said user @Jim ?

Also, whats the mode of authentication that you use in the API - API token vs OAuth?

It is literally every permission. I can get more detailed, but I don’t have access to the list right now. We are using api_token in the url parameters