Environment:

Oracle B2C Service Agent BUI

Resolution:

The new field, Allowed API Methods, allows administrators to create or update connections to restrict the HTTP methods that can be executed using the External Object or Integration connection. The feature is available for the REST Integration Type connections.

What happens to the existing External Objects or Integration connections?

The feature is available for connections with the REST Integration type. The existing connections are expected to work, and it is not suspected to disrupt any existing integrations or new integrations that use the same connection. However, when an admin wants to make changes in the saved connection or test the connection, the Allowed API methods field becomes a mandatory field. The admins can re-enter the credentials to save the changes or test the connection, ensuring only the admins with the correct access can update allowed API methods.

How can I configure a new External Object or Integration connection?

Admin can select the allowed API methods while configuring a new connection. They can choose any one or more options from the dropdown list. If any admin wants to change the Allowed API methods, they will need to re-enter the credentials to ensure that the connection is only used by intended use cases and can be updated only by the authorized admins.