I want to have a permanent auth token that can create resources, but not read them. An example of this is having a token that can create users in my frontend.
Exposing a token in the frontend that can see all user data would be terrible.
Does this make sense? Is there a workaround that I can use?
Completely understand the request Alejandro. This is on our list already and we want to allow this definitely. We will update this ticket once it goes into planning.
Best,
Michael