Access Permissions
Who can access an endpoint varies by platform, as shown in the following table:
| Platform | Base Endpoint | Permissions Required |
|---|---|---|
| Analytics Collector | /mobile/platform/analytics/ |
The requests can be performed anonymously or by a user who's a member of the realm that's associated with the mobile backend. |
| Analytics Data Management | /mobile/system/analyticsDataManagement/ |
You must be a team member with the MobileEnvironment_System role. |
| Analytics Export | /mobile/system/analyticsExport/ |
You must be a team member with the MobileEnvironment_Analytics role. |
| App Policies | /mobile/platform/appconfig/ |
The requests can be performed anonymously or by a user who's a member of the realm that's associated with the mobile backend. |
| Auth Token | /mobile/platform/auth/token |
Either set the Authorization header to Basic base64-client-id:client-secret or omit the header. If you omit the header, then you must provide in the form data either the client assertion and client assertion type or the client ID and client secret. |
| Database Access | /mobile/platform/database/ |
For security reasons, you can call these operations only from custom API implementations by using the custom code SDK. You can't make direct requests from client applications. This API is included in this reference merely to describe the request and response bodies for the custom code SDK calls. |
| Database Management | /mobile/system/databaseManagement/ |
You must be a team member with the Mobile_DbMgmt role . |
| Devices | /mobile/platform/devices/ |
The requests can be performed anonymously or by a user who's a member of the realm that's associated with the mobile backend. However, if you wish to set the user property, you must be a team member with the MobileEnvironment_Notifications role. |
| Location | /mobile/platform/location/ |
The requests can be performed anonymously or by a user who's a member of the realm that's associated with the mobile backend. |
| Location Management | /mobile/system/locationManagement/ |
You must be a team member with the MobileEnvironment_System role. |
| Mobile Users | /mobile/platform/users/ |
You must either be an MCS mobile user that's a member of the realm that is associated with the mobile backend or a virtual or social user. |
| Mobile Users Extended Operations | /mobile/platform/extended/users/ |
For security reasons, you can call these operations only from custom API implementations by using the custom code SDK. You can't make direct requests from client applications. This API is included in this reference merely to describe the request and response bodies for the custom code SDK calls. |
| Notifications | /mobile/system/notifications |
You must be a team member with the MobileEnvironment_Notifications role. |
| Storage | /mobile/platform/storage/ |
Access to these operations depend on whether the collection is shared or isolated, whether it's listed in the Security_CollectionsAnonymousAccess environment policy, and whether you need READ or READ_WRITE access. For details, see the individual operations. |
| Tools | /mobile/tools/1.0/apis/ |
You must be a team member with the MobileEnvironment_Develop role. Note that only OAuth authorization is supported for the Tools API. |