If you are using the API in a custom app and getting the API key from a configuration/setting. (The settings/configuration is set when you install the app.)
Is it possible to get it from the user object instead?
Lets say you use the custom app from another agent which should not have access to the Admin API key.
Is it possible to retrieve the API key based on the user that is logged in, so Admin Api key is not exposed to lower levels of user roles.
Users without the admin role can't access custom apps which means they can't configure their own API key in the app either.
Is there a solution to this?