I am trying to implement user roles and permissions for my data. I looked in the documentation but there does not seem to be a fully explanation for specific toggles, namely “Describe” and “Permissions”. Could you explain what these mean, specifically what happens when they are toggled GRANT or DENY.
Attached is screen shot of the toggles in question
Hello, Theo!
Please, find links below about these actions (I’ve put links for REST API, you can switch language to yours)
About “Describe”: https://backendless.com/documentation/data/rest/data_retrieving_properties_of_the_d.htm
And about “Permissions”: https://backendless.com/documentation/data/rest/data_permissions_api.htm
When toggle is “Grant” - specific user | role would be able to execute action, and wouldn’t be if toggle is “DENY”.
More about ACL: https://backendless.com/documentation/data/rest/data_security.htm
Hope it helps,
Alex
Sorry but I do not see an explanation of “Describe” or “Permissions” toggle buttons. I understand ACL and what it does, and what the specific rules like Update, Create, Delete, etc do. My question is about what specifically does the “Describe” and “Permissions” toggles do in the Permissions Matrix when I want to define the rules for a specfic role, like in the photo I have attached to my OP.
Describe controls using api for retrieving table schema. Permissions toggle controls permissions api usage, as described in the second link. For example, if you deny describe on global level for a particular roles, say, not-authenticated user, then they wouldn’t be able to execute any GET /v1/data/tableName/properties call.