Is your feature request related to a problem? Please describe.
Currently app passwords grant full permission set same as user have
Describe the solution you'd like
It would be nice to have option to limit app passwords to a sub set of permissions user have, for example limit to a distinct group.
Describe alternatives you've considered
Or we can have special app passwords with direct user/group - app binging.
Additional context
I am expecting that App Password can be limited to an App, it seems generally a good idea to limit attack surface.
With our current permission system we can't really depict that. The current recommendation is to create a separate user with the required permissions and create a token/app password for that user
Is your feature request related to a problem? Please describe. Currently app passwords grant full permission set same as user have
Describe the solution you'd like It would be nice to have option to limit app passwords to a sub set of permissions user have, for example limit to a distinct group.
Describe alternatives you've considered Or we can have special app passwords with direct user/group - app binging.
Additional context I am expecting that App Password can be limited to an App, it seems generally a good idea to limit attack surface.