How do we create a read only user account for OpenAPI

Document ID : KB000072198
Last Modified Date : 26/02/2018
Show Technical Document Details
Question:
How do we create a user that only has read only privileges to OpenAPI?
Environment:
Any version of CAPM with OpenAPI.  
 
Answer:
OpenAPI by it's very nature is read only.  We do not support create/delete/update operation using open API.  Any user that has access to CAPC has read only access using OpenAPI interface.  This includes the admin user.  OpenAPI does not support user roles, but it does support what a user can see.  For example, if a user has permission to see certain objects in CAPC, that is all he will see in OpenAPI.  Basically the user will see all children of the groups he has access to.