R2 bucket sharing without access/secret key


I’d like to grant an external application read & write access to my R2 bucket for an extended time.

Is it possible to do so without giving them an access key + secret key? In AWS S3, I can add a policy that grants the external vendor’s AWS account ID access to my S3 bucket. This avoids me having to manage API tokens and giving out secrets.

Thank you