web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Small and medium business | Business Central, N... / Hiding columns from ta...
Small and medium business | Business Central, N...
Suggested Answer

Hiding columns from table in OData API calls

(1) ShareShare
ReportReport
Posted on by MarcL 4
We have a security problem with API access to our Business Central database.
We have a table that needs to be accessed by all employees.
That table contains Salary information fields that are hidden in BC but can be accessed via an OData API call from PowerBI or Excell.
I’m pretty sure our company wasn’t setup right, but API access must be maintained for reporting purposes and using linked tables is not a viable solution.
Applying security filters, from BC, to the specific fields doesn’t do the trick, since the hole line gets filtered, and we need it.  
Does anyone know how we can hide fields from API calls while the others, from the same line can still be read?
Thanks
Categories:
Dynamics 365 Business Central
Dynamics 365 Business Central
Dynamics 365 Business Central
Dynamics 365 Business Central
I have the same question (0)
  • Suggested answer
    Valentin Castravet Profile Picture
    Valentin Castravet 31,481 Super User 2025 Season 2 on at
    I would create a copy of that API and exclude the salary field in the newly created API. All employees would use the new API. 
     
  • Suggested answer
    YUN ZHU Profile Picture
    YUN ZHU 95,729 Super User 2025 Season 2 on at
    Hi, hope the following helps.
    Dynamics 365 Business Central: Can we extend standard APIs? – Download Standard Source Code for APIs
     
    If you are using a Web Service, you can hide this field on the published page so that users cannot see it.
     
    If it is a Flowfield or TableRelation field, it can be managed through permissions.
    More details:
    Dynamics 365 Business Central: What happens if users don’t have permission to read the table set in a FlowField?
    Dynamics 365 Business Central: What happens if users don’t have permission to read the table set in the TableRelation Property?
     
    Thanks.
    ZHU
  • Suggested answer
    Saurav.Dhyani Profile Picture
    Saurav.Dhyani 14,380 Super User 2025 Season 2 on at
    Hi,
     
    You cannot change the field list exposed by a standard API.
     
    If it a custom API Endpoint created by your partner, you can ask them to remove fields that are sensitive and have a separate endpoint for specific people in team to access that data.
     
    If filters need to be applied on data that can also be done by a developer on Custom API Endpoint.
     
    Let me know if you have additional questions, but I think your solution should be simple enough with one or more custom API Endpoints.
     
    Regards,
    Saurav Dhyani

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Small and medium business | Business Central, NAV, RMS

#1
OussamaSabbouh Profile Picture

OussamaSabbouh 2,362

#2
YUN ZHU Profile Picture

YUN ZHU 867 Super User 2025 Season 2

#3
Sumit Singh Profile Picture

Sumit Singh 607

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans