Hi,
I have activated an API in Ariba and got application key, client id and secret. I can call the API using Postman and get the response back.
One of my colleague, who doesn't have access to Ariba can also consume the API and get the results back.
Our requirement is to authenticate the user and check the user roles by the system before provide the results back only if user is authorized to access that specific data.
For example, if user has authorization to display only PRs, but not POs in Ariba system and if the user try to consume the API to retrieve PO related data, system should give an error message saying that user does not have access to PO data
Can you please provide some guidance on this requirement.
Thanks,
Sagar.
Bluesky
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.