When creating a particular user creates an API using in the API Publisher, you s/he can set its level of visibility to either Public or Restricted by Roles in the Add New API page .of the API Publisher Web interface as follows:
This allows you to prevent certain user roles from viewing and modifying APIs created by another user role. The two visibility values mean the following:
- Public : The API is visible to all users (subscribers as well as and anonymous users) of its tenant store. Also, the API can be advertised in multiple stores - a central store and/or non-WSO2 stores.
Restricted by Roles : The API is visible only to specific user roles
in the tenant store. When
Restricted by Rolesis selected, a new field called Visible to Roles appears where you can specify the user roles that have access to the API in a comma-separated list (no spaces).
...
| icon | false |
|---|
...
Note - Roles that have API creation and publication permission can see all APIs in their tenant store even if you restrict access to those roles. This is because any role that has API creation and publication permission can view and edit all APIs in the API Publisher. Therefore, there is no reason to hide the APIs from them in the Store.
- If you restrict the default
subscriberrole
- Roles that have API creation and publication permission can see all APIs in their tenant store even if you restrict access to those roles. This is because any role that has API creation and publication permission can view and edit all APIs in the API Publisher. Therefore, there is no reason to hide the APIs from them in the Store.
...
- under the
Visible to Roles
- under the
...
- category, any user who self
...
- subscribes to the API Store will be able to access the API.
...
- This is because the API Manager assigns the subscriber role to all users who sign up to the API Store.
...
After a created API is published, it becomes available in the API Store for subscription. Given below is how visibility levels work for users in different tenant modes:
Visibility in super tenant mode
Subscribers in super tenant mode can see an API depending on its visibility level as follows:
...
- Anonymous users: can see APIs that have
Publicvisibility and created within the current user's tenant domain
- Logged in users: can see,
- APIs that have
Publicvisibility and created within the current users tenant domain
-
Restricted by RolesAPIs created within the current user's tenant domain and are allowed to be accessed by the role of the current user
- APIs that have
Go back to Creating an API page.
| Excerpt | ||
|---|---|---|
| ||
Linked to the shared space: http://docs.wso2.org/display/FAQ/APIM+Common#APIMCommon-IsitpossibletopreventaAPIcreatedbyroleAbeviewedandmodifiedbyroleB%C2%A0 |