First of all, thanks for the awesome framework. Life wouldn't be the same without loopback.
I want to be able to check whether a user can perform a given action on the client side. Is it possible serve a swagger.json file containing only the endpoints that the requesting user is authorised to access. For example, unauthenticated users would receive only endpoints that $everyone can access.
Is there an alternative?
Regards,
Ernest Okot