Restrict public access to Master Data fields

Master Data v1 settings

In Master Data v1, it is possible to create data entities with different access restrictions for each field:

Make readable without credentials
Allow editing without credentials
Allow filtering without credentials

Depending on the data stored, public access without authentication can pose a risk to your business. To enforce authentication and restrict public access to fields containing sensitive data, follow the instructions below.

In the VTEX Admin, go to Store Settings > Storefront > Master Data.
In Master Data, click Applications.
Click the gear next to Profile System:

${"base64":" ","img":{"width":353,"height":206,"type":"png","mime":"image/png","wUnits":"px","hUnits":"px","length":9735,"url":"https://raw.githubusercontent.com/vtexdocs/help-center-content/refs/heads/main/docs/en/tutorials/Master%20Data/Master%20Data%20v1%20settings/restrict-public-access-to-master-data-fields_1.png"}}$
In Settings, click Data structure.

${"base64":" ","img":{"width":331,"height":193,"type":"png","mime":"image/png","wUnits":"px","hUnits":"px","length":6968,"url":"https://raw.githubusercontent.com/vtexdocs/help-center-content/refs/heads/main/docs/en/tutorials/Master%20Data/Master%20Data%20v1%20settings/restrict-public-access-to-master-data-fields_2.png"}}$
Click the Data Entities tab.
In the data entity row, click the edit button.

${"base64":" ","img":{"width":1192,"height":78,"type":"png","mime":"image/png","wUnits":"px","hUnits":"px","length":14313,"url":"https://raw.githubusercontent.com/vtexdocs/help-center-content/refs/heads/main/docs/en/tutorials/Master%20Data/Master%20Data%20v1%20settings/restrict-public-access-to-master-data-fields_3.png"}}$
Click the gear icon in the row of a field that contains confidential data.

${"base64":" ","img":{"width":1212,"height":317,"type":"png","mime":"image/png","wUnits":"px","hUnits":"px","length":46856,"url":"https://raw.githubusercontent.com/vtexdocs/help-center-content/refs/heads/main/docs/en/tutorials/Master%20Data/Master%20Data%20v1%20settings/restrict-public-access-to-master-data-fields_4.png"}}$
Uncheck the following options:
- Make readable without credentials
- Allow editing without credentials
- Allow filtering without credentials
${"base64":" ","img":{"width":1228,"height":116,"type":"png","mime":"image/png","wUnits":"px","hUnits":"px","length":10204,"url":"https://raw.githubusercontent.com/vtexdocs/help-center-content/refs/heads/main/docs/en/tutorials/Master%20Data/Master%20Data%20v1%20settings/restrict-public-access-to-master-data-fields_5.png"}}$
Click Save.
In the row of the changed data entity, click the Publish button to publish the saved settings.
Click OK.

Required permissions

After following the previous instructions, it is mandatory to have a role with the necessary permissions to access the following information:

At least one resource from the Generic resources category in the Master Data product: READONLY_USER_CRM, POWER_USER_CRM, NOREMOVE_USER_CRM, or ADMIN_CRM.
At least one resource from the Dynamic storage generic resources category in the Dynamic Storage product:** READONLY_USER_DS**, NOREMOVE_USER_DS, POWER_USER_DS, or ADMIN_DS.