This means that users with an account that Candid recognizes
can access the controller as long as they have appropriate
permissions granted. Note that Candid usernames are given
an @external
suffix to distinguish them from controller-local usernames.
Note that identity-url can only be set at bootstrap time and cannot be changed later.
The allow-model-access=true
setting allows users to access models