I recently had a customer who wanted to secure access to the Edit Mode within WebSphere Portal v8.0.  Out-of-the-box, WebSphere Portal makes this link accessible to All Authenticated Portal Users, and since how to secure this link via authorization rules is not documented anywhere (at least that I could find), I did some digging around.  After some time, I finally found the answer I was looking for in one of the theme’s module JSPs (projectMenu.jsp to be exact).  Within the JSP it showed that there is a boolean being set based on the WCM REST SERVICE virtual resource which tells whether or not to show this link.  To change this, simply go to Portal Administration > Resource Permissions > Virtual Resources > WCM REST SERVICE, and remove the All Authenticated Portal Users member from the User role.