Hi,
I'm building an external app for external users. When logging on with my test user I can see in the Chrome console - network tab, a number of details about users and the resources for my application.
Similar to this post Privacy concerns: users details are visible through console, There is an API call "appUsers" which returns user details of people who seem to have access to the application, including name and email.
https://xxxxxxxx.retool.com/api/organization/permissions/appUsers
If I have eternal users accessing the application I don't want them to see the other user details. Is there a way to prevent this API from being called? Or only return the user who's logged in?
Also I notice the resources API https://xxxxxxx.retool.com/api/resources
returns a lot of information about the underlying services that my application is using. Ideally I'd like to abstract this information from the external users. Is that possible via settings? Or would I need to proxy the calls through an API Gateway or similar if I'd like to hide those details.
Thanks, Stephen