XPosting for @Mark Trenorden (Grateful for your Question Friend!)...
Stefanie.B.518
Posts: 638 
admin
admin
XPosting for @Mark Trenorden (Grateful for your Question Friend!)
Restrict GET user search results to specific role
We have a requirement where we want to create a service account that only has the ability to query users with a specific role. I thought we may be able to use the GET /d2l/api/lp/(version)/users/ call in combination with the Users -> Search for '[Role]' permission.
What I have found so far is that whilst the permission restricts the search results through the front end application, the service account can use the GET /d2l/api/lp/(version)/users/ to return a broader result set - i.e. users with roles where this permission has not been set.
Hope this makes sense, any advice/guidance would be appreciated.