We have a business account, and we want to solve the following issue:
Our users add users to vaults, which gives them FULL access, including deletion and mass export permissions. We think this is unsafe and our security standards force us to restrict users, give them only editing rights when they need to, never allow them to export, etc.
We can only set these granular permissions in the web interface, correct?
We would be greatly helped if there was some way, through the API or the CLI, to at least VIEW the granular permissions that a user has on a vault. Then we can use the event lists to run checks on these permissions and fire warnings if we see users with too many permissions on a vault.
With the great number of vaults we have, we simply cannot manually check this every time in the web interface.
Will this ever become possible with the CLI? Is there some other way that we can programmatically check granular permissions?
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided