...
This allows you to prevent certain user roles from viewing and modifying APIs created by another user role. The two visibility values mean the following:
- Public : When the API creator publishes an API to the API Store, it will be The API is visible to all users (subscribers as well as and anonymous users) of the API Storeits tenant store. Also, the API can be advertised in multiple stores - a central store and/or non-WSO2 stores.
Restricted by Roles : When the API creator publishes an API to the API Store, it will be The API is visible only to specific user roles in the API Store. When
Restricted by Roles
is selected, a new field called Visible to Roles appears where you can specify the user roles that have access to the API in a comma-separated list (no spaces).Info If you specifyicon false Note - Roles that have API creation and Publication permission can see all APIs in their tenant stores even if you put that role under the
Restricted by Roles
category. The reason is because these users can anyway edit all APIs in the API Publisher. Therefore, there is no reason to hide the APIs from them in the Store.
- If you restrict the default
subscriber
role
- under the
Visible to Roles
- category, any user who self subscribes to the API Store will be able to access the API.
- This is because the API Manager assigns the subscriber role to all users who sign up to the API Store.
- Roles that have API creation and Publication permission can see all APIs in their tenant stores even if you put that role under the
Given below is how visibility levels work for users in different tenant modes:
Visibility in super tenant mode
Subscribers in super tenant mode can see an API depending on its visibility level as follows:
...