Hi, We have been using IONAPI to heavily interact with Infor OS. Our standard approach is to "Create Service Account" alongside IONAPI Authorized App creation where we create service account using the ION User.
I understand that the keys saak and sask are created when this option is chosen and scopes are added as well. When I tried to skip creation of service account, IONAPI file cannot be used with Backend service ( as Oauth2.0 authentication NEEDS sask and saak ).
1. What is the use - case of IONAPI without the service account ?
2. What is a good way to understand and differentiate the utility of ( cu cs ) and (sask saak) and their separate scopes ( because it seems we can set the scopes different )
3. When we think about rotating keys, What would need rotation and what should remain the same?
4. I see that "Associating the user with the service account" is OPTIONAL. What is the utility of the option ?
in short I want to understand the difference between following and associated scopes:
1. ionapi without service account
2. ionapi with service account associated with the user
3. ionapi with service account but not associated with any user
