Since API calls require either Basic Auth or an OAuth token, your user can be limited from either inheritance in a Basic Auth situation, or in the case of OAuth, you can define the scope parameter in any of your installed OAuth add-ons to restrict a user to certain REST endpoints. We talk about it briefly here: https://community.jivesoftware.com/docs/DOC-175308#jive_content_id_Obtaining_Access_and_Refresh_Tokens
Thanks for your quick reply! I will definitely look at that document.
Talking about basic auth, is there any settings in Jive that I can set inheritance (as you said) to limit certain user?