|
|
|
|
|
|
by da_chicken
441 days ago
|
|
|
With token-based access, you typically assign the role when the token is created. The access level the token has is typically locked at that point. If you're generating an API access token, you might specify the token is read-only. If you later decide that read/write access is needed, you need to generate a new token with the new access level and replace the token id and value in the client system. It's not difficult, but it's a much bigger pain in the ass than just changing access or changing role on a user. |
|
|