As a best practice, you should take care to provide clients with the minimal API access privileges required to successfully complete their tasks. DreamFactory's role based access control manager ensures administrators never leave your data sources unnecessarily vulnerable, offering a point-and-click interface for quickly defining and reviewing privileges.

In this video we'll walk through the configuration of a role-based access control, demonstrating how a client's API access privileges can be easily updated so as to allow only read access to a select set of API endpoints.