Scripted REST APIs use REST_Endpoint type ACLs to define access controls.
As a user with the web_service_admin role, you can define access controls for scripted REST
APIs and scripted REST API resources.
A scripted REST API or scripted REST resource may require users to submit basic authentication
credentials and pass an ACL check. A requesting user must satisfy at least one of the ACLs. It is
not necessary to satisfy all selected ACLs.
Scripted REST service ACLs must have the Type value
REST_Endpoint.
