New Admins: Register for our new Pure Lecture Series!
Pure's logos
Pure Help Center for Pure Administrators

If you are a researcher, or other non-admin at your institution, click here.

  • Home
  • Announcements
  • Release Notes
  • Technical user guides
  • Training
  • Events
  • Support
  • Contact Us
  • Home
  • Training
  • Technical user guides
  • Pure API

How Can We Help?

Search Results

Filter By Category

Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

Contact us

Pure API: Access definitions for content and field filteringPure API: Access definitions for content and field filtering

Learning about the Pure API?

Please visit the Getting started: Pure API user guide for an overview and recommended starting steps.

 

 

It is possible to pair API keys with configurable access definitions to specify:

  • What content is available to what API key.
  • What metadata is exposed for the different API types.
  • Whether an API key grants read and write permissions, or only read permissions.

This provides you with much greater control of what data is made available to whom.

For example, it is now possible to:

  • Set up an API key which grants access to all confidential content (as long as that content is available through Pure API), embargoed documents, and all fields on Persons.
  • Set up another API key which can only read a few fields on Persons and only has access to public data.

Note: All existing API keys will be migrated and given access definitions that match their old behavior, but can be updated afterwards to the desired access definition.

Information
Screenshot

Overview

Setting available to user role: Administrator          
Location in Pure: Administrator > Pure API > Access definitions

Each API keys is now linked to an access definition:

  • You can create multiple access definitions.
  • You can use the same definition with multiple API keys (one-to-many).
  • One API key can be paired with only one access definition (one-to-one).

Access definition field

Access definition editor

When creating an access definition, you can specify a number of details in the Access definition editor.

  • Access definition editor > Information

Add name and description of your access definition.

  • Access definition editor > Types and fields

The Types and fields section includes all the supported types in the Pure API.          
Each type has been setup to allow all fields where both read and write is enabled.          
The only exception is the Person API type, where gender, date of birth and nationality fields are not available by default.

  • Access definition editor > Content filters

Filters in this section are the same as those available in Administrator > Security > Ws > Authentication requirements and content filtering.

Access definition field where to create new

Access definition field types and fields

Access definition: customizing accessible types and fields

Access definition editor > Types and fields lets you edit each available type to:

  • Specify access mode to the type (read-only, or read and write).
  • Choose fields exposed for that type:
    • You can allow all fields by enabling the 'Allow all fields' setting.
      • All new fields added to the type in the future will also become available in that definition.
    • When the setting is off, you can manually select allowed fields.
      • There is an option to 'Add all' or 'Remove all' fields.

This means that you have flexibility to, for example, allow read-only access to some types, and read and write access to others.

Note: The names of the fields in the editor correspond to the field names in the JSON response from the API. 

Access definition field edit field filters

Adding an access definition to a new API key

  1. When you create a new API key, you need to link it to a specific access definition.
  2. Once you have selected the definition, you can preview the details of the definition directly in the API key editor (1) to cross-check how the types and filters have been setup.
  3. Important: You still need to configure the endpoints that the API key can access in the API key editor (2). The access definition assigned to the key will only work for the endpoints that are explicitly added for this key.

Access definition field with api key

Existing API keys: initial access definition

Upon upgrade to 5.22.0, an initial access definition will be created and associated with all existing API keys. 

The settings of the initial access definition will follow what you had setup for the REST service before the upgrade.

 

 

Published at January 13, 2025

Download
Table of Contents
  1. Learning about the Pure API?
Related Articles
  • Testing the Pure API: A Beginner's Guide
Keywords
  • access definition
  • pure api
  • content filtering
  • pure api key
  • api key
  • field access

Was this article helpful?

Yes
No
Give feedback about this article

    About Pure

  • Announcements

    Additional Support

  • Events
  • Client Community
  • Training

    Need Help?

  • Contact Us
  • Submit a Support Case
  • My Cases
  • Linkedin
  • Twitter
  • Facebook
  • Youtube
Elsevier logo Relx logo

Copyright © 2025 Elsevier, except certain content provided by third parties.

  • Terms & Conditions Terms & Conditions
  • Privacy policyPrivacy policy
  • AccesibilityAccesibility
  • Cookie SettingsCookie Settings
  • Log in to Pure Help CenterLog in to Helpjuice Center

Knowledge Base Software powered by Helpjuice

Expand