You can modify the API permissions level for each MaxCDN account user by using API key pairs. In this tutorial we show you how to use these.

In general there are two major permission levels:

  • Full Control: This provides unlimited access to the API.
  • Limited Control: This provides limited access for all zones or specific zones.

Permission segmentation lets you protect your CDN account from unwanted changes. If you have multiple users with different duties (permissions), you can break down their access using API keys with different access levels.

Full Control

This option provides full control to your account.

Screenshot of full control API access for MaxCDN account

Limited Control

These options provide limited control to your account.

Limited Access to Reporting Data

This limit sets the key access to GET request method only for reporting data and end point:

https://rws.maxcdn.com/{companyalias}/reports/*

Screenshot of limited MaxCDN API control for reporting purposes

Limited Access to Purging

This limit sets the key access to DELETE method only and end point:

https://rws.maxcdn.com/{companyalias}/zones/pul.json/{zone_id}/cache

Screenshot of limited MaxCDN API control for purging purposes

Limited Access to Specific Zones

This option allows you to select the level of access and limit it to specific zones. This means you can choose any of the limited control options above, then narrow access even more by setting a specific zone or zones.

  1. Check Limit access to specific zones:

    Screenshot of limited MaxCDN API control for specific zones 1

  2. Choose the zone or zones from the list to get the final overview:

    Screenshot of limited MaxCDN API control for specific zones 2