diff --git a/service/permissions.py b/service/permissions.py
index c09c13e..b1267d2 100644
--- a/service/permissions.py
+++ b/service/permissions.py
@@ -6,7 +6,7 @@ from django.conf import settings
 class UserPermission(BasePermission):
     def has_permission(self, request, view):
         kk_profile = request.auth
-        kk_roles = kk_profile.get('realm_access', {}).get('roles', [])
+        kk_roles = kk_profile.get('resource_access',{}).get('postnet',{}).get('roles',[])
         if request.method not in ['GET']:
             # if view.action in [
             #     'update_fact', 'update_postamat_id', 'update_status', 'retrieve',