[barnabee]

I think a good starting point would be something like a digital right to roam.

So you should not be able to enforce contractual terms, ask app stores or platforms to block, or use technical measures to frustrate access to an API.

If you expose it to the public internet you should be required to ambivalent about which software an otherwise valid use uses to connect to it.

I think there’s also a reasonable argument for some core protocols and services to be treats and regulated as a hybrid between public and private, kind of like the banking system.