I am building a custom API on UF 4.1, with the following two requirements:
- Some routes are accessible only to certain users/groups.
- Some routes return different results depending on the user/group. (e.g. an admin will get the full data, a user will get a filtered subset).
I need some pointers on how to work with the above, and use Postman to test the API through the UF4 authentication system.