Open fiji-flo opened 3 years ago
Quoth gene: "The challenge is that there's no scoping to grant a PersonAPI user rights to do read operations but not deletes. That capability would need to be added first as otherwise all PersonaAPI clients could delete any/all records"
Tired of deleting profiles directly in Dynamo. Require write scope for all change API endpoints.