I have an ApiService written in retrofit. It has about 20 calls. 15 of them require an authorization header. 5 require explcitly NOT sending an auth header. I'm already using an interceptor, but it's getting applied to each of the 20 calls. Should I just opt out in my auth interceptor itself, or should I write an annotation to opt out or something? My fear of just going the interceptor approach is that it doesn't require a dev to make a concious decision when adding a new api call. You gotta run the app. Potentially wait for the call to fail, and then know to go update the interceptor to add to the allow/deny list.