The permissions above are set in the Rock – Security – REST Controllers section. For each controller (e.g. Campuses), you can click into this to see each controller’s actions (e.g. GET – api/Campuses, etc.).
Click on the Rest Controllers:
Find each of the controllers that you need to set permissions on, and click the Lock icon to view the controller’s actions.
Click on the lock icon to view and edit permissions for
this action.
The permissions dialog will show for the action. Click “Add User” to add a user.
Search for the “Events2HVAC” user and select it, then click Add button.
Now you should see the user has access to the item.
Follow the procedure above for each the controller actions
below.
|
REST Controller |
Controller Action |
Path |
Permission |
|
Campuses |
GET |
Api/Campuses |
View |
|
Locations |
GET |
Api/Locations |
View |
|
Locations |
GET |
Api/Locations/{id} |
View |
|
Schedules |
GET |
Api/Schedules |
View |
|
Schedules |
GET |
Api/Schedules/{id} |
View |
|
Reservations |
GET |
Api/Reservations |
View |
|
Reservations |
GET |
Api/Reservations/{id} |
View |
|
Reservations |
GET |
Api/Reservations/ GetReservationOccurrences |
View |
|
Reservations* |
GET |
Api/Reservations/GetByAttributeValue |
View |
*Only needed if you want to use custom attributes to exclude event reservations.
Note: If after you have verified that permissions are set correctly and you continue to get permissions errors (401 unauthorized) in Events2HVAC, try restarting the Rock RMS web application in IIS.