Hi. We have a need to verify a JSM “customer” user has access to a specific issue/requestId from the JSM/Platform REST API. This is to perform security enforcement to verify the context of backend calls the user has permission to see.
For non-JSM projects and regular users we use the standard platform Permissions Check API to verify user can see the specific issue (e.g. BROWSE_PROJECT and issueId access).
However this API does not appear to work for customer users. It returns no Browse/Edit access to issues that customer user can actually see in the portal.
Appreciate any guidance on how to enforce this issue/request access security check from a connect app that does not have RUN_AS_USER.