Control e2ee end to end encryption via API while preventing users from changing it

We need to enforce End to End encryption for our users, but we also need to give them the option to switch to ehance_encryption when approved by a request though our internal procsses. We don’t want them to switch it themselves, so we would like the API to do it.

We can set e2ee as the default in the admin console and we can lock it. However , once locked that setting can not be overridden by the Admin or the API. I would like the ability to override lock settings to the end users but allow the admin API user to override these settings.

There is also no visability log or metric that I can find if a user switched a meeting from e2ee to enhanced_encryption.