service permissions configuration & cleanup + meep-sessions updates