When external system create work object by consume our REST service the created by field is empty. But we got the operator name as part request attribute in JSON. For services is there anyway I can change the requester to a particular operator (here operator id comes part of request JSON) ?
Can you not have your REST service as an authenticated service? Clients would then have to send user credentials in authorization header, a requestor would then be automatically established for the operator credentials passed in.
What happens is external system which consumes our service is already sending operatorid part of request, but making it authenticated is not possible because too many services already in prod .. is there any possibility that I can open the requester based on operatorid that comes with JSON?