The Remedy REST API is a wonderful thing. It has helped us a lot.
However, it is not easy to manage it. By managing I mean restricting access to the API endpoints as to not expose the entire Remedy API to the enterprise. Typically we do this by putting the API behind an API manager (we use WSO2). The Remedy authentication is not very friendly to this, which I can understand.
To manage the API endpoints we put the API behind a load balancer with access rules.
We have to implement every change for each environment.
A simple solve for this would be to allow configuration of the mount point so that we could have some variation of