Configure a scripted REST API resource to require an ACL

As a user with the web_service_admin role, you can configure a scripted REST API resource to require ACLs.

Before you begin

Role required: web_service_admin or admin

About this task

Resources inherit security settings from the parent API by default. Define custom security settings for a specific resource to override the inherited settings.

Procedure

  1. Navigate to System Web Services > Scripted REST APIs.
  2. Select a scripted REST API record.
  3. In the Resources related list, select a resource.
  4. In the Security tab, select the Requires authentication check box.
    This check box must be selected to require an ACL. Clear this check box to allow unauthenticated requests to access the resource, even if the parent REST service requires an ACL.
  5. Select the Requires ACL authorization check box.
  6. In the ACL field, select one or more ACLs that have a Type value of REST_Endpoint.
    Selecting an ACL for an resource overrides any ACLs selected for the parent web service. Leave this field blank to use the ACLs selected for the parent web service.