Anonymous Authenticator rule

Allows anonymous access based on a role. This rule identifies the requestor by the client IP address, and assigns a role. You must configure the Authorize By Role rule to authorize that role. Because the Anonymous Authenticator Rule allows anyone to access an API, consider combining this rule with a Client throttle rule to avoid overloading a Snaplex with too many requests.

The Anonymous Authenticator rule works well to provide read-only access to resources.

Rule execution order

This rule executes after the other authentication rules. For example, the API Key or Callout Authenticator rules, where the client provides a token for access.


Field	Description
When this rule should be applied	An expression that defines one or more conditions that must be true for the rule to execute. Default value: True Example: The expression `request.method == "GET"` causes the rule to execute only on `GET` requests.
Role	One or more roles to assign to the caller. Rules such as Client Throttling or Authorize by Role can reference these roles.
Description	Default value: `Authenticating anonymous requests as specified role`