The big feature in the next alpha will be the ability to create tokens that have a subset of permissions - eg can only write to specific tables: https://github.com/simonw/datasette/issues/1855

But maybe a mechanism for easily specifying that for anonymous localhost users would be useful too?