> <LimitExcept GET> > Require valid-user > etc. > </LimitExcept> That's ok to make a global control on the REST services access, but it doesn't apply to a specific datasource. I need to allow certain users to see or write certain layers, based on grant rules.