Hi
I have added an Authorised App (Backend Service). The linked service account has just one permission (Infor Suite User).
I created an Infor Application connection point and added the clientId to this, to ensure only this client app can connect. Confirmed.
However this authorised app can access, for example, the Infor Distribution SX.e Api.
How do I limit access? It seems that an authorised app has access to everything, is this by design. It seems the reverse of best practice?
Or I'm doing something wrong
Any assistance would be appreciated.
Kind Regards
Richard
