Building a Node.js service to pull historical queue metrics. The app has no UI, just runs on a schedule. Should I stick with client credentials or try authorization code with PKCE? The SDK’s oauth2.getOAuthToken() works fine for client creds, but I’m worried about scope limits on long-running tokens. Any reason to complicate this with user context?