Forum Discussion
Restrict users to access list using REST API
If a user has the right to access / read / modify a list with SharePoint permissions. It will be possible too with REST / CSOM / Graph (if he has the right to use these APIs).
Thanks for the quick reply.
Users have access to SharePoint list but I want to restrict them to call APIs. Is there any way to achieve this?
- If the user has access to the SharePoint list, he is theorically able to access it through the APIs (if he is skilled enough + has the rights to use / consent APIs)...
To my knowledge, you cannot block it.Thank you, for your help thijoubertold.
As jcgonzalezmartin sent me the link, can you please help me out on the same? That whether or not the user would be able to access the SharePoint list via the API, if I am able to hide the SharePoint List using the PNP PowerShell.
And would the user still be able to access the SharePoint List using the Power Apps, if he has the permission and rights, keeping in mind, the list is still hidden in SharePoint.
And whilst, the list is hidden, can any technically smart person, be able to access to that List by making API calls to that list?
And do we need the URL to the SharePoint List, at all, in order to make the API CALL to the SP LIST?
Thank you so much for replying, thijoubertold .
We hope a reply from you, thijoubertold.
Hey thijoubertold,
I know about the Graph API and stuffs, but can you please tell me which rights you are talking about? Thank you for your help.