Asset download links should have access management

Asset download links should have access management.

REST API provides an asset download link. With this link, the resource can be downloaded by anyone without using the REST API key or any login.

When this link is known by someone that link grants permanent access to that resource. There is no access management that could a) show who has the access, b) show who has used the access, and c) revoke the access.