You need to sign in to do that
Don't have an account?
Is the "API Enabled" permission required for Apex REST?
I can see clearly that the "API Enabled" permission must be granted to a user before that user can invoke the standard platform Web services APIs (CRUD, metadata, etc.), but what I still can't verify for sure is whether that permission is also required for custom Apex REST services.
I ask because we'd like to enable bidrectional integrations with our OEM applications via standard Web services, ideally without requiring that the "API Enabled" permission be granted to all of the users that would invoke these APIs. My hope is that it's only required to invoke platform services and not custom services delivered in managed packages.
Does anyone know the answer to this one? If so, is there any supporting documentation that you can provide?
Thanks!