- Cleanup of APIs, possibly drop APIA/APIM distinction
- For example, listing available DS is an APIM call but view them is an APIA. This leads to additional challenges in coding that are
- Combine the APIs or make a better distinction, so Manage and Access is a reasonable distinction, but needs to be rethought
- Tighter Integration of Security via FESL or an undefined security mechanism
- Queries only reporting objects you can see
- API operations returning things you have access to