Under System Settings\Default\Authorization and security:

Separate "Using API, mobile app and browser extension" to allow options for individual components to be authorized. For example, I would like users to be able to use the browser extension, but not the API, and certain users to be able to use the mobile app, but not everyone.