You are creating an API token to allow a DevSecOps engineer to create and update a URL list using REST API v2. In this scenario, which privilege(s) do you need to create in the API token?
Ah, but then the engineer wouldn't be able to see what's already in the list before making changes. I think read and write access is the safest bet here.
I'm not so sure about that. What if we only want the DevSecOps engineer to be able to update the URL list, but not read it? Then option D would be the better choice.
I agree with you, option B is the way to go. The DevSecOps engineer needs to be able to both create and update the URL list, so they'll need full access to that endpoint.
Iesha
24 days agoFatima
25 days agoGeorgene
26 days agoIra
7 days agoBenedict
8 days agoSimona
9 days agoLina
10 days agoChara
11 days agoOneida
12 days agoLouann
27 days ago