To allow access to the web server for a user, the corresponding function rights need to be assigned to the user in the hardware declaration file.
An example file (example.hwl.json) could look like this:
{
"Devices": [
{
"Name": "Device1",
"Modules": [
{
"Name": "PLC_1",
"TypeIdentifier": {
"OrderNumber": "6ES7 516-3AN01-0AB0",
"Version": "V2.9"
},
"AccessProtection": {
"AccessLevel": "FullAccess"
},
"Services": [
{
"Type": "WebServer",
"Enabled": true,
"Parameters": {
"HttpsOnly": true
}
}
],
"UserManagement": {
"Roles": [
{
"Name": "WebServerAccessRole",
"FunctionRights": [
"ReadPlcVariables",
"WritePlcVariables"
]
}
],
"Users": [
{
"Name": "user1",
"AssignedRoles": [
"WebServerAccessRole"
]
}
]
}
}
]
}
]
}
For definition of users and function rights, see UserManagement. see Web Server Function Rights for the function rights that may be assigned for the web server.
In the example above, a single user named user1 is defined which is given the role WebServerAccessRole.
The role has the function rights ReadPlcVariables, WritePlcVariables.
This means that the user can both read and write PLC variables via the PLC's web server.