My suggestions is to add an API endpoint to query allowed API keys permissions.
- “Coinbase Sign-in” API “get_auth_info” method returns a “Scopes” supported to the current API key.
- Binance end point “get_account_api_permissions”
… and so on.
Thanks in advance.