Allow access to the API without an access token to all resources that are configured via the role of this client. Do not give more than one client anonymous access.