When you create a new Apigee account (see Creating an Apigee Account) for App Services, Apigee creates a new application for you on its servers. With the new application, called "sandbox," you can add your own example data and try out API calls that do things with the data. Be sure to see Using the API for suggestions.
To keep things simple and make it easier for you to try things out, the sandbox application has all authentication disabled. That way, it doesn’t require an access token for application-level calls to the API. Permissions are so open on the sandbox application because its "guest" role offers full permissions for all access paths -- that is, GET, POST, PUT, and DELETE for /**. Learn more about roles and permissions in Managing access by defining permission rules.
Keep in mind that the lack of authentication means that a sandbox application is not secure enough for important or sensitive data. A sandbox is just for experimentation while you learn how App Services works, and should never be used for a production application.
As with other kinds of App Services applications, a sandbox application is an area of the App Services data store where you can put your own data. You can create as many other applications as you like, including more sandbox applications. When it comes to production (secured) applications, a good rule of thumb is to create one App Services application for each mobile app you develop.
Creating a New Sandbox Application
You may want to create (or re-create) a sandbox application. For example, you may want to create a sandbox application for another organization or you may want to create another application for testing purposes.
Use the following steps to create a sandbox app:
- Create a new application using the admin portal. You can name the application whatever you like (including "sandbox").
- Set full access permissions for the guest role, as follows:
- In the admin portal, click Users, then click Roles.
- On the Roles page, in the list of roles, click Guest.
- For the Guest role, under Permissions, click Add Permission.
- In the New Permission dialog, enter the following in the Path box:
- Select the following check boxes: get, post, put, and delete.
- Click the Add button.
- If there are other permissions listed, delete them.