I am currently developing a Piwik plugin for our own internal CMS, similar to “WP-Piwik” (WP-Matomo (WP-Piwik) — WordPress Plugins).
As far as I can see, the token_auth is required for any API calls, including any reporting functionality.
Question now: Is it possible to perform Piwik API calls without asking the user to provide his token manually?
The idea would be to have something similar to what GA provides (using OAuth 2.0):
Using OAuth 2.0 to Access Google APIs | Google Identity Platform | Google Developers.
Many thanks for any replies or hints for further information.