https://www.aras.com/community/f/development/36139/rest-api-amlIs it possible to send body with AML to rest api and get aml response? I could create a method that accepts string and parse the aml and reply but not sure how that would apply on the rights (trying to get only the items the logged in user can seeja-JPTelligent Community 12https://www.aras.com/community/thread/6105?ContentTypeID=1Fri, 18 Dec 2020 04:58:31 GMT916d3f7e-8ddc-42f8-8d45-380822f51406:969d436a-9647-4d2c-9ffc-834fedcba843detroit<p>hey thank you for the help! I was thinking more in the lines of having identity &quot;persisted&quot; since i need to execute code as the user calling it. We have requirement of keeping stuff secure as in ...users can only see what they can actually see. Strict rules:)</p><div style="clear:both;"></div>https://www.aras.com/community/thread/6102?ContentTypeID=1Thu, 17 Dec 2020 23:22:12 GMT916d3f7e-8ddc-42f8-8d45-380822f51406:d56246f6-1ec2-4b4d-aa29-53d8c0124e57Trach Van<p>You can pass in the AML and the IdentityName of that user and use the following code:</p> <p>var identityName = &quot;Administrators&quot;;<br /> var identity = Aras.Server.Security.Identity.GetByName(identityName);<br /> bool permissionWasSet = false;<br /> try<br /> {<br />&nbsp; permissionWasSet = Aras.Server.Security.Permissions.GrantIdentity(identity);<br />&nbsp; return item.apply();<br /> }<br /> finally<br /> {<br /> if (permissionWasSet)<br /> {<br />&nbsp; Aras.Server.Security.Permissions.RevokeIdentity(identity);<br /> }<br /><br /></p><div style="clear:both;"></div>