Resource Provider Access Control
Permissions to execute certain services on resource providers are granted to all users for non-admin user support.
On the abstract resource provider level, permissions are granted to all users to execute only the services required by the framework. Permissions to execute CRUD services are granted on the resource provider template-level based on the access control of the connected system. The following graphic illustrates the services that are available with each of the resource providers out-of-the-box. All resource providers inherit the services included with PTC.Resource.ResourceProviderTemplate as shown below.
Image
  • Thing-based resource providers can delegate access control to the resource Things using the property read/write permissions. But, there is no access control on the creation and deletion of Things. Therefore, all users are granted permissions to execute read and update services on Thing-based resource provider template.
  • There is no access control to entries of a data table in ThingWorx. Therefore, no permission to execute any of CRUD services is granted to all users on data table-based resource provider template.
  • Salesforce manages the full access control on its own. Therefore, permissions to execute all services are granted to all users on the generic Salesforce provider template.
  • A key-based relationship resource provider delegates access control to its role resource providers; therefore, permissions to execute all services are granted to all users.
 Note
Permissions for business user groups are granted on the individual resource provider instance level.
 
Related Links
Resource Providers