Independent permissions to methods RESTAPI

402
ss_permission_api
--
1585659166
875,00 PLN

(Price without tax)

(1076,25 PLN inc tax for Polish only
- for abroad tax will be reduced
after providing the address)

Ask for an individual discount!

Domain(s) installation separated comma
Free installation for Store Builder or Multi-Vendor programs purchased from SoftSolid

THIS PRODUCT IS DISTRIBUTED IN AN ELECTRONIC FORM (DOWNLOAD FILE).

Hosting
vps z directadmin
Our advantages
  • — 12 months guarantee for all our add-ons
  • — add-ons sold to entire world
  • — stable, flexible, high-quality products
  • — competitive prices, attractive discounts
  • — quick and competent technical support
  • — installation in 24 hours
  • — personalized solutions - we'll write any add-on for you
Payment options
Delivery

Extension to CS-Cart and Multi-Vendor allows creating access rules to store RESTAPI. In standard, access to RESTAPI is regulated separately for each user group. Added rules allow to block (or give) access only to selected administrator, only for chosen API object (ex. Products, Orders) only with selected API method (ex. GET, PUT).

We start from installing an extension:

Managing RESTAPI rules menu is in tab Customers:

List contains all information about defined rules. New rules can be added with + button in upper right corner:

When adding rules, we have to define those parameters:

- Name: makes rule different from others, serves only informational purpose.

- Administrator: which administrator is affected by the rule.

- Method: GET means reading data, POST modifying it, PUT adding new data (ex. orders or products), and DELETE deleting data.

- Entity: Object, for which rule applies. Full list of objects and their specification is available here.

- Access status: should the rule block access to part of the RESTAPI, or give it.

Add-on overrides standard RESTAPI rules, which are defined in usergroup settings. Here, administrators by default cannot access products and have full access to orders.

Because we created rule that blocks Orders object for administrator test@test.pl, trying to download orders gives him a notification:

Administrator can download information about products, even though they are blocked in user group  - because we created record that gives administrator access to Products object.

Add-on amplifies store security, letting you set precise RESTAPI access range for each administrator.

We invite you to shopping!

Program
  • CS-Cart
  • Multi-Vendor
Version
  • 4.18.x
  • 4.17.x
  • 4.16.x
  • 4.15.x
  • 4.14.x
  • 4.13.x
  • 4.12.x
  • 4.11.x
  • 4.10.x
  • 4.9.x
  • 4.8.x
  • 4.7.x
  • 4.6.x
  • 4.5.x
  • 4.4.x
  • 4.3.x
  • 4.2.x
  • 4.1.x
  • 4.0.x
Changes in the code
  • Changes in core
Find similar

No reviews found

Possibly you may be interested
  • Bestsellers
  • Most Popular