To Check or not to Check? #25
Description
i know this is just an example, but should we recommend that accessCheck() be FALSE? otherwise, the results could vary based on which user triggers the API call, right?
Originally posted by @aasarava in #21 (comment)
should this be FALSE so that the results aren't dependent on the role of the user who calls the API?
Originally posted by @aasarava in #21 (comment)
Personally, I was thinking you do want to check b/c you want to validate for the user, just like on the normal site. There may be 1 actor for an API, but we may also have different levels and roles of consumers 🤷