MicrosoftChad_V_Kealey : yes re: generated token; that's as secure as user+password, arguably moreso since you can enforce a long unique token. Perhaps with a validity timeout. And/or a 2-part key requiring a pass-phrase from the user in addition to the token you generate for them. It's not 2-factor authentication. But would suffice in many use cases.
See my comment from last year above (search "let anonymous form users update") recommending this as well.
It's true that some scenarios require high security but not all.
Given that Power Apps doesn't have the capability for anonymous users, Forms is the best option for low-code problem solvers (aka power platform, also "hah" @ low code) to get data into the system from public audience.
As long as I'm here - Forms DESPARATELY needs better support for validation. Like regex for text inputs.
