Restrict attrs of query results for an API User

Hi all,
In Icinga(DB)Web we have the possibility to hide sensitive data via protected variables.
But when an API User has the permissions to query a host, it gets all variable values in plain text. Also, when the value is replaced by an Icinga Constant in the Icinga DSL config, the query result is the constant value instead of the constant name. Is there any way to restrict the permissions of an API user for specific variables, comparable to "icingadb/​protect/​variables: *pw*,*pass*,*community*" in Icingaweb?

Thanks and cheers,

I believe not. That’s exactly why you would want to expose such data (?format=json or Accept:application/json) through Icinga Web.