How to set REST API access privileges by role

Our Sugar 8.3 instance is integrated with another application (ServiceNow) using REST API, where data is sent from Sugar to ServiceNow, and ServiceNow record ids are saved in Sugar modules. If the API logs into Sugar as a non-admin user, then Sugar does not allow the API to POST data to Sugar (a "forbidden" error is returned). But if the API user is admin, then data can be saved with no problems. The Role Management dashboard shows that the non-admin role has no restrictions on modifying the relevant data fields. I'd prefer to have the API use a non-admin user account, but how can I set up a non-admin user role that is allowed to POST data to Sugar?

0 Hatim Alam over 6 years ago

Hi Yury Voloshin,
In which module you are trying to create records? There are few standard modules which have "Admin Only" access like PDF Manager, Product Catalog (only view, cannot create) etc. but access list still shows everything in "green" by default.
Please confirm the module you are trying to create data for is accessible to regular user.
Regards.
0 André Lopes over 6 years ago in reply to Hatim Alam

Eventually on saving records of that module, which non-admin user has access, Sugar may try to save some records from related module which may not be accessible by the non-admin user.
In order to identify what is that forbidden module you can set log level to debug and try again.
Regards

André Lopes
Lampada Global

Skype: andre.lampada
0 Yury Voloshin over 6 years ago in reply to Hatim Alam

I'm trying to create data in Accounts. Thanks!
0 Yury Voloshin over 6 years ago in reply to André Lopes

That should help, thanks. I'll get in touch with sugar support about changing the logging level to debug.