Hi! I need to create an API that validate subscriptions from a user(simple user, without api access).

For that, I need to check user/password and then the licenses.

The LOGIN works, but I can't execute a search_read for  sale.subscription with the security access of that user.

The thing is, I already have a special user for API acccess that can read sale.subscription . Is there any way to get that information with the normal user login? Or do I need to use both session(simple user to check user/password, api user for licenses) to check this information?