Question

2
Replies
19
Views
Close popover
James Robins (JamesR61)
SSCL
System Architect
SSCL
GB
JamesR61 Member since 2020 1 post
SSCL
Posted: April 15, 2021
Last activity: 4 weeks ago
Solved

Pega API - POST Assignment{ID} Role Privileges

We would like to make use of Out of the Box API capability in Pega Platform.

One challenge we have is around the Access Roles for the API user.

Administrator role gives access we need, but when we use a user will less privilege, we get an error on the POST Assignments{ID} which is: 

"ID": "Pega_API_012",

"message": "Unauthorized access for the given parameter ID",

"pxObjClass": "Pega-API-Error"

We also do not get the actions returned in the GET Assignments{ID} request, which we do as Administrator:

"actions": []

We would expect to see:

"actions": [ { "ID": "MyFlowAction", "name": "MyFlowAction", "pxObjClass": "Pega-API-CaseManagement-Action", "type": "Assignment" }]

The assignment is in the worklist of the authenticated operator, and the actionid is the flow action name, which works perfectly with the MyApp:Administrator Access Group, but not the MyApp:PegaAPI Access Group.

What privileges or configuration is needed on a "Principle of Least Privilege" approach for this API user?

***Edited by Moderator: Pooja Gadige to add platform capability tag***
Pega Platform 8.4.3 Case Management Security Other Industry System Architect