Last Updated: July 12, 2018
·
97
· wjgilmore

Restricting API Interaction Using DreamFactory Roles

#dreamfactory

One of the first things I do after generating a new REST API using DreamFactory is lock down access using a role. This is done by first creating a new service access definition within the Roles tab. For instance, in the following screenshot I'm creating a new role which restricts the role's API access capabilities to solely the service named mysql. Furthermore, I've only allowed GET requests to be handled by the API; POST, PUT, PATCH, and DELETE requests will be ignored.

roles.png

#dreamfactory

Written by Jason Gilmore

Say Thanks
Respond

Related protips

Need to Create A New API Key For An App?

1.751K
0

Stop / remove all Docker containers

1.944M
32

Don't use Array.forEach, use for() instead

1.229M
19

Have a fresh tip? Share with Coderwall community!

Post
Post a tip
Best #Dreamfactory Authors
ErikJacobsen
1.744K
#dreamfactory
#PHP
#Ruby
wjgilmore
93
#dreamfactory
#PHP
#Laravel
Related Tags
#dreamfactory
Sponsored by
#native_company#
#native_desc#
#native_cta#
Awesome Job
See All Jobs
Post a job for only $299
Thanks to our sponsor
Sponsored by #native_company# — Learn More
#native_title# #native_desc#
#native_cta#