This route can be called from the frontend, so authentication is slightly different than other routes.
To do so, include an X-PUBLIC-TOKEN header instead of your usual API key. This is combined with a JWT which represents the user’s RBAC permissions in your Delphi semantic layer.