I am trying to call the ReadTable endpoint from an OAuth client in a code repo, and I’m getting a lot of 403s. It seems like the source may only have perms on datasets in the project/folder it lives in, but I need it to be able to read datasets elsewhere (and I know we have sources that can do this). How does all of this work?
learned that you should treat an oauth user like any other, whose perms are provisioned via group membership / explicit perms on projects/resources