making my REST API publicly accessible

[Phillip jan]

Does public accessible mean online, like anyone outside my local network could access my  REST API or does that mean that my REST API is accessible only in my local network?

If it means that my REST API should be accessible outside my local network, how would I do it if port forwarding is not an option (Because I am behind a CGNAT setup)? Thanks!

[Tim Donohue]

Hi,

Generally, your REST API needs to be accessible to anyone you expect the use the User Interface.  So, if your User Interface is accessible to the world, then your REST API must also be accessible to the world.  If your User Interface is behind a firewall, then your REST API can be behind the same firewall (but then all users must access both from behind that firewall).  Generally, it must have the exact same access settings as your User Interface, since the User Interface requires the REST API to operate.

Tim

[Phillip jan]

Can i limit the access to my REST API and UI to only my local network? 

[Tim Donohue]

Yes, it is possible to limit your REST API and UI to your local network.  But, that obviously means that only people on your local network can access your DSpace site.  No one external to your network will be able to interact with DSpace (unless they perhaps used a VPN or similar to first get access to the local network).   

As noted, the key point is that your REST API and UI should have the same access permissions. If one is restricted (e.g. behind a firewall), then the other one should be similarly restricted. If one is open to the world (publicly accessible), then the other one should be open to the world, etc.

Tim