Tweet
I'm pretty aware about the Espo REST API and the api user. We integrated EspoCRM into our enterprise integration tier which uses an espo admin user to read and write data.
Given that we also have implemented a unified user/SSO concept we need to restrict data access for a specific end user (sso speak: REMOTE_USER) since the api user has admin permissions and we want/need to respect the permissions defined in espo for that end user.
Is there any concept we can use to run a REST api call with runAs remote_user permissions sending the remote_user in the request?
Given that we also have implemented a unified user/SSO concept we need to restrict data access for a specific end user (sso speak: REMOTE_USER) since the api user has admin permissions and we want/need to respect the permissions defined in espo for that end user.
Is there any concept we can use to run a REST api call with runAs remote_user permissions sending the remote_user in the request?
Comment