Hi there,
I found a way to manage authentication with detailed access restriction for the REST API done by a reverse proxy.