To get a list of resources both an app and a user can access, the preferred approach is to use this endpoint.
That’s great, but it doesn’t give details of what the user’s permissions are over the shared resources. To get that, currently an app needs to ask for read permissions over the
Organization members resource, which provides lots of additional permissions the app probably doesn’t need (e.g., enumerating all members of the organisation).
My specific use case is displaying a settings screen to a logged in user only if they are an account admin. I’d love the “List installations for user” endpoint to return details of the user’s role over the shared resource, probably just as a
"user_role": "admin" attribute on each installation. (Alternatively, a filter by role on the “List installations for user” endpojnt would work.)