thank you!
public scope:
- would be anything that’s already public (requests, funds, labs, applications, etc)
private scope:
- initially, just a full admin rights token but not any of the public stuff (so that folks don’t use private keys for public stuff and then put fully priv. keys out there)
later, allow custom private token scopes that align with object permissions when you add group (ie just like making a new group but not for users for token issue). see /admin/groups/new/ in hypha. make sense?