When a user manually creates an object via the Providence interface, in the tab "Access" an entry is created to the "Exceptions" section. This exception gives the owner of the record rights to edit and delete the object.
(See screenshot "Manual_create.PNG")
When an object is created via the API, using the same user credentials, this exception is not created. Hence the record is readonly and only administrators can edit it.
(See screenshot "API_Create.PNG")
Creating the object via the API followed this procedure:
Authentication via GET ../services.php/auth/login, with the user credentials in the Authorization header for Basic Authtentication.
Creation of the item via PUT ../services.php/item/ca_objects, using the authentication token from the authentication request.