Customer experience | Sales, Customer Insights,...

Odata Rest API and security role

(0) Share

Report

Posted on by JeffGreenrc

Hi,

I have a question regarding security role implementation using rest api calls.

Lets say if a user doesnt have Read access on Contact table, and through rest api, if we make call to contact table in the context of this user, will it retrieve no records and honor the security role applied or will return all contacts record.

Thanks

I have the same question (0)

All responses (3)

Answers (0)

Suggested answer

meelamri 13,216 User Group Leader on at

Like (0)

Report

Hi,

The concept of security roles is also valid for the REST API. If you make call to contact table in the context of this user, it will retrieve no records and honor the security role applied.

Was this reply helpful? Yes No
JeffGreenrc on at

Like (0)

Report

Thank you for quick response.

So instead of using Rest API, if i use Power Apps portal and login with Azure AD method, will the security roles come into play or the entity permission on contact record web role will come into play?

Was this reply helpful? Yes No
Suggested answer

Kenneth Ariel Chave... on at

Like (0)

Report

Hi,

This can be helpful:

Overview of Azure Active Directory role-based access control (RBAC) | Microsoft Docs

Was this reply helpful? Yes No