Specification
Service logic
Only authenticated and authorized user can use person requests
Service returns only person requests related to the same legal entity as the user
Authentication
Verify the validity of access token
Return 401 in case validation fails
Check scopes in order to perform this action (scope = 'person_request:read')
Return 403 in case invalid scope(s)
Prepare response
Service returns only person requests related to the same legal entity as the user
Extract client_id from token
Return entries filtered by client_id and query params