Is it possible to disable read/write permissions via the policy api?
I am currently using sharedgroupdata and I saw that an old thread suggested not adding members to the group but have things changed?
Is it possible to disable read/write permissions via the policy api?
I am currently using sharedgroupdata and I saw that an old thread suggested not adding members to the group but have things changed?
API access policy can only “Allow” or “Deny” the API calls. I will suggest you to deny the Client API UpdateSharedGroupData and migrate the update processes to Cloud Script/Azure Function, where necessary verifications can be done before the data is updated.
And this is possible for the other API calls? I would like to prevent the user from deleting or creating groupshared data or adding members.
May I see an example of a policy that denies only the client from UpdateSharedGroupData but allows the server/admin?
Thanks for your response.
You may call UpdatePolicy API with the following request:
{ "PolicyName": "ApiPolicy", "Statements": [ { "Resource": "pfrn:api--/Client/UpdateSharedGroupData", "Action": "*", "Effect": "Deny", "Principal": "*", "Comment": "This statement deny client UpdateSharedGroupData" } ], "OverwritePolicy": false }
Thank you so much!
My last question, is it possible to directly edit the policy in the dashboard? Or via a cloudscript execution?
3 People are following this question.