You can create permissions that are available for a custom API and the roles with specific permissions. For example, http://localhost:8080 custom API has these permissions under Permissions tab:
- read:messages
- write:messages
- delete:messages
You might want to create roles that contain different sets of permissions. To do that, go to User Management > Roles. For example, I created
- message reader (contains read:messages permission)
- message write (contains all messages permissions)