The WGS REST API permissions are controlled in the same way as those for the Navigator/Manage GUI. Both interfaces use the same underlying granular permission model, which means:
Any permissions configured for a user or role in the Navigator/Manage GUI will automatically apply to their access via the REST API.
No separate configuration is required specifically for REST API access.