Spree::Api::Config[:requires_authentication]
is set to false
.Spree::Api::Config[:requires_authentication]
is set to false
, read-only requests in the API will be possible for all users. For actions that modify data within Spree, a user will need to have an API key and then their user record would need to have permission to perform those actions.