REST API Permissions

Use this function to manage REST API permissions for users

Last published at: January 6th, 2026

You may watch the YouTube video here. 

 

 

 

REST API Permissions.

This function manages REST API permissions for the FlowWright application for users and application roles. Note: Admin Users also require REST API Permissions access. 

Navigate to the Administration > Security menu option. 

 

The Security Summary page is displayed as shown below. 

 

Select the Security Summary menu to access the REST API Permissions functions. 

 

The REST API permissions page is shown below. The page displays the current access permissions for users and Application roles. The REST API is shown as a hyperlink that, when clicked, displays a list of APIs on a new page.  

 

The REST API provides a Swagger-based documentation site; here’s how to access it. Navigate to the following URL:

http://localhost:8080/api/index.html

The site should be rendered as follows:

 

You can use the filter buttons to grant or revoke permissions between 'All Users' and User/Role-Specific Permissions.  Select the “Users/Roles” filter button to configure access for particular FlowWright user groups. 

 

Select multiple Users from the drop-down list. 

 

Select Authorization by their App roles from the drop-down list. Using the Users/Roles filter provided here, you may grant access to specific users and/or application roles. 

 

Click the Save button, and a confirmation message will appear in the top-right corner. Note: Admin Users also require REST API Permissions to access.  

 

Click the “No Access” button to revoke access to REST API Permissions for all users (including Admins).  

 

Export.

This function exports the REST API permissions list to a JSON file in the local folder. You can import this list into the target FlowWright environment to quickly replicate the permissions. 

Select Export > JSON on the REST API Permissions page. The permissions list is generated and downloaded as a JSON file. 

 

The contents of the JSON file are provided here for reference. 

 

 

Import.

This function imports the REST API permissions list from a JSON file in the local folder. After import, the existing permissions are overwritten. 

Select Import > JSON on the REST API Permissions page.

 

A pop-up window appears for configuration. Select the JSON file from the local folder. 

 

The existing permissions are overwritten, and a confirmation message is displayed in the top-right corner. 

 

Alternatively, you can select the “All Users” button to grant access to all active users. Click the Save button. A confirmation message is displayed in the top-right corner, and REST API access is available to all active users.