I wrote up a blog post that might be helpful. It has a bunch of examples of how to build RSET APIs with UD.
Good info. I’m using it to try and setup a test API scenario where I just use the grant-udjsonwebtoken command to create the token for use by people/processes. In my example, I created a token with an assigned -role (“apiaccess” for example). I then made 2 different endpoints, and set them with different -AuthorizedRole, one ‘apiaccess’ and the other something else. Based off the guide, the way I undertstood it was that only the endpoint with the -role set to ‘apiacess’ should run, the other should be unauthorized. However, both are successfully returning data. any thoughts?