diff --git a/djangoldp/permissions.py b/djangoldp/permissions.py
index b78ad7cc2bd6f3eec00b631f31bc37a67496cc5e..72e5cfb22cf8e54eacc264702be3a7947bfc9860 100644
--- a/djangoldp/permissions.py
+++ b/djangoldp/permissions.py
@@ -63,12 +63,12 @@ class InboxPermissions(WACPermissions):
         Everybody can create
         Author can edit
     """
-    anonymous_perms = ['view', 'create']
-    authenticated_perms = ['view', 'create']
-    author_perms = ['view']
+    anonymous_perms = ['create']
+    authenticated_perms = ['create']
+    author_perms = ['view', 'update']
 
     def has_permission(self, request, view):
-        if view.action in ['create', 'list', 'retrieve']:
+        if view.action in ['create']:
             return True
         else:
             return super().has_permission(request, view)