What is the sandbox application?
When you create a new Apigee account (see Creating an Apigee Account) to use services for developers, Apigee creates a new application for you on its servers. With the new application, called "sandbox," you can add your own example data and try out API calls that do things with the data. Be sure to see Using the API for suggestions.
Is the sandbox secure?
To keep things simple and make it easier for you to try things out, the sandbox application has all authentication disabled. That way, it doesn’t require an access token for application-level calls to the API. Permissions are so open on the sandbox application because its "guest" role offers full permissions for all access paths -- that is, GET, POST, PUT, and DELETE for /**. Learn more about roles and permissions in Managing access by defining permission rules.
Creating a New Sandbox Application
You may want to create (or re-create) a sandbox application. For example, you may want to create a sandbox application for another organization or you may want to create another application for testing purposes.
Use the following steps to create a sandbox app:
- Create a new application using the admin portal. You can name the application whatever you like (including "sandbox").
- Set full access permissions for the guest role, as follows:
- In the admin portal, click Users, then click Roles.
- On the Roles page, in the list of roles, click Guest.
- For the Guest role, under Permissions, click Add Permission.
- In the New Permission dialog, enter the following in the Path
- Select the following check boxes: get, post, put, and delete.
- Click the Add button.
- If there are other permissions listed, delete them.