Shopper API: Requires shopper.read scope. The authenticated member's identity is resolved from the JWT sub claim — no member ID in the URL for self-service endpoints.