According to the client library documentation, if I store data using for example
t.set('card', 'private', ...), that data should be private to the local user (not the powerup but the user the way I understand it).
If that is the case, shouldn’t it be possible to access private data through the REST api, as long as you are doing so with the credentials of the user who stored said data? I already tried, and it doesn’t seem to be the case. In fact it doesn’t seem to be accessible at all. For example if I try to access private data of the current user using
/1/members/me/pluginData?key=<key>&token=<token>&access=private, with the credentials of the user and the powerup that created the data through the client library, I get a
401 reply, suggesting accessing private data through the api is not allowed at all.
Unfortunately I was not able to find anything about how this works in the documentation. Can anybody clarify how private data is actually supposed to work and if it can be accessed outside of the client library at all?