Community
Select to view content in your preferred language

User token privileges

662
4
05-17-2023 07:46 AM
infoklicconverter
by
Emerging Contributor
‎05-17-2023 07:46 AM

Hi there,

Is it possible to have create a custom role in which the user doen not have the privilege to create a token via REST?

If that is the case how can I test for that, using the sef or username REST API endpoint?

Thanks,

Itay

0 Kudos
4 Replies
TonyContreras_Frisco_TX
by
Frequent Contributor
‎05-17-2023 10:12 AM

I don't think this is possible, since the sign-in process uses the generate token operation in the background to authenticate the user. If a user couldn't generate a token, it would not be able to sign in. Here are the Privileges that can be assigned to custom roles in ArcGIS Online.

infoklicconverter
by
Emerging Contributor
‎05-17-2023 10:27 AM

That makes sense (just wanted to verify it) and I take it that this also applies to sing in with oauth2 + PKCE, right?

0 Kudos
TonyContreras_Frisco_TX
by
Frequent Contributor
‎05-17-2023 10:34 AM

I would think so, but I can't say for sure.

0 Kudos
infoklicconverter
by
Emerging Contributor
‎05-17-2023 11:10 AM

Well thanks anyway 👍

0 Kudos