As per the documentation:
Users must have administrative privileges.
However thought some testing was done, but can't find anything in my notes. Seems to me the results of my testing showed the user needed the ACLs for calls made, meaning the category accounts, acls, alarms, etc, (meaning the user can do it in OC) and as Matthais says there is no provision to restrict the type of call made GET, POST, PUT, DELETE.
Original Message:
Sent: 11-29-2021 01:26 AM
From: Matthias Gruber
Subject: Restrict the users on REST api calls in uim 20.3.3
Hi!
As far as I know, and from my experience, well I tested it with 20.1 if I remember right, that is not possible.
API-Access is API-Access, full or nothing, nothing between.
cheers
Matthias
Original Message:
Sent: 11-27-2021 02:29 AM
From: Eshwar K
Subject: Restrict the users on REST api calls in uim 20.3.3
Hi folks,
I have created guest user in UIM and given OC access to him but that user is trying to use REST API PUT request to make the changes. So, I want to restrict that user to send the GET request to UIM. Is there any way to restrict the users on REST api calls in uim 20.3.3?
------------------------------
Regards,
Eshwar
------------------------------