Magnolia 5.6 reached end of life on June 25, 2020. This branch is no longer supported, see End-of-life policy.
Page History
...
Permissions to issue REST requests are controlled using Magnolia's standard role-based security mechanism.
| Table of Contents |
|---|
Security strategy
...
| HTTP method | Web access security required | JCR access security | Specific role based security | |
|---|---|---|---|---|
delivery | GET | /.rest/delivery/{workspace}/v1* | Read-only access for a path on a workspacethe delivery API path | - |
nodes | GET | /.rest/nodes/v1/{workspace}/{path} | Read-only access for a path on a workspace | - |
PUT | /.rest/nodes/v1/{workspace}/{path} | Read/Write access for a path on a workspace | - | |
POST | /.rest/nodes/v1/{workspace}/{path} | Read/Write access for a path on a workspace | - | |
DELETE | /.rest/nodes/v1/{workspace}/{path} | Read/Write access for a path on a workspace | - | |
properties | GET | /.rest/nodes/v1/{workspace}/{path} | Read-only access for a path on a workspace | - |
PUT | /.rest/nodes/v1/{workspace}/{path} | Read/Write access for a path on a workspace | - | |
POST | /.rest/nodes/v1/{workspace}/{path} | Read/Write access for a path on a workspace | - | |
DELETE | /.rest/nodes/v1/{workspace}/{path} | Read/Write access for a path on a workspace | - | |
commands | POST | /.rest/commands/v2/{catalogName}/{command} | - | required |
...
rest-admin– The REST administrator role grants GET/POST permissions to all Magnolia's REST APIs.rest-editor– The REST editor editor role grants GET/POST permissions to REST services APIs (nodes, properties), for a limited set of workspaces.rest-anonymous– – The REST anonymous consumer consumer role grants GET permissions to Magnolia's content delivery REST API.rest-backup– The REST backup role backup role grants permission to execute thebackupcommand from a running Magnolia instance.
...
Overview
Content Tools