2020-06-03 07:49 AM
Hi, i want to use get all applications API: api/core/system/application
i want to get the least access role (if any inbuilt) that needs to be added to the account to have access to all applications metadata.
i don't want to use system administrator.
is there any inbuilt role which i can use so no need of any custom role which has read access to all applications meta data.
2020-06-03 08:41 AM
I think you still have to create custom role, cause except sysadmin, when you add new ODA, all other roles would need to be changed manually.
For the OOB apps, you can maybe use Default Administrator role.
2020-06-03 09:37 AM
2020-06-03 11:06 AM
Thank you Ilya Khen and David Freeman
i too only find custom role as solution that i am using as of today, was just thinking to see if we can have a global reader role in 2 ways.
1. for application metadata
for application metadata like access control administrator(which does'nt have today) where this account should have read access to all the applications.
when i say metadata i mean fields info for that application.
2. for content
for content i believe this read only for all will be violation of access if there are any record permission and several ways to not allow users to even read.
2020-06-03 11:27 AM
The minimum permission required in order to see the metadata for an application through the API call you are using is Read access to the Content Record page for that application. For this reason, you will need to set up a custom role, as the only out of box role that has these permissions for every application is the sysadmin role.
2020-06-05 06:03 AM
thank you for the answer.