Overcoming Callback Function Invocation Issues

I’m developing a corporate chat application and have encountered an issue with access control to functionalities via callback functions. I’ve found that even if a specific function is not included in the tool_choice parameter for certain users, previous invocations of this function in the message history can trigger it again in subsequent requests. This occurs despite the user no longer having the rights to execute the function. Has anyone else faced this problem? What solutions are available to address it