Previous Page Next Page

Check the ACL

Of course you can check the ACL of the To Do database via the Notes Client. But Domino REST API is intended as “API first” access to Domino. Consequently, there are APIs for view and editing database ACLs. However, the ACLs are restricted so that only users with Manager access to the database being queried can use them.

  1. Hover over the “domino-restapi-todo” collection name and click on the ellipsis (three dots). Select “Add Request”.
  2. Name the request “check acl” and click “Save to domino-restapi-todo”.
  3. Set the URL as “{{ADMIN_HOST}}/acl/entries?nsfPath=tutorials/ToDo.nsf”.
  4. On the Headers tab, add a HTTP request header called “Authorization” with the value “{{bearer}}”. This maps to the bearer collection variable we set from the “authenticate” request.
  5. Click “Send” to make the request.
  6. Save and close the request.

You can perform full CRUD access on an individual ACL entry by using “{{ADMIN_HOST}}/acl/entries/{aclEntryName}?nsfPath=tutorials/ToDo.nsf”.
“{{ADMIN_HOST}}/acl/roles?nsfPath=tutorials/ToDo.nsf” will get all roles (there are none).
“{{ADMIN_HOST}}/acl/roles/{roleName}?nsfPath=tutorials/ToDo.nsf” provides create/update/delete access to ACL roles.
See the OpenAPI documentation from the Domino REST API homepage.

Did you know, you can even create new NSFs, create or edit basic Forms and basic Views via HCL Domino REST API? Of course, we require that the bearer token is for a user with appropriate access - Manager access to the Domino REST API Configuration database for creating new NSFs, Designer access to the target database for creating / editing new Forms and Views.

 

Previous Page Next Page