stackoom
  简体   繁体   中英

Azure Api Management restrict users from operational level

 原文  2022-03-04 09:49:41       azure/ api/ azure-api-management

Question

I am having an api with suppose 100 operations. I have created developer portal. my requirement is out of 100 operations, user A can only view the GET operations and User B can only view PUT and POST operations in developer portal once they logged in.

I am using username and password identity.

Kindly help on this. I have tried policies but not helping.

2 answers

solution1
 1  2022-03-04 11:02:47

You can't do that on the managed portal because the narrower subscription level(scope) is the API/User level. You can self host the portal and achieve what you want but that will require considerable amount of work from your end.

在此处输入图像描述

solution2
 1 ACCPTED  2022-03-04 13:34:03

Indeed this cannot be done just like that from the portal.

What you could do is setup the API in API Management twice. Once only with the GET operations and once with the POST operations. You would have two different API's to which you can grant access.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question is it possible to block users from using api operations in azure api management? Is There a Way to Restrict Azure API Management Endpoint By Subscription? Azure API Management - Versioning Azure API Management - Named Values how to restrict my latest version of image in image definition from users in Azure compute gallery for a particular time Azure API Management - Authorize Attribute Azure API Management responses 404 Azure API Management - Etag for an operation Azure Api management for connecting to application Azure CDN and Azure API Management integration
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM