It would be nice to have more granular control over the Domo API access. Currently, if we want to push data to Domo with the Domo API, it requires the user to have the "Manage Dataset" grant. Since this is considered an admin grant, it inherently allows access to all datasets within Domo and overrides any PDPs. In reality, if someone gains unauthorized access to those keys they could do get all datasets and use the dataset IDs to exfiltrate pretty much all the data in the instance. With the Domo activity log only updating daily, it would be too late to alert on the exported data. There are workarounds like creating a dedicated instance to push data to Domo or writing the data to another tool like SharePoint or a database, and using that connector to import into Domo. But it introduces additional steps that could cause issues.
We've previously created dedicated service accounts for specific use cases when pulling data from Domo or using Domo Everywhere. This is how we limit what data those API keys have access to. However, you need more access to push data to Domo.
Could there be an option to only allow API keys to only manage datasets they create, without giving access to all the other datasets?
