Open
Description
What would you like to be added?
For applications managing their own JWTs outside of etcd, if they lose track of the auth revision then they will never be able to create another token. One possible solution is to loosen the access control on AuthStatus so that you can always get the latest authRevision no matter whether or not you have a valid token. This issue exists to track loosening those access controls.
Why is this needed?
This is followup to PR #16803