I have an older app that stored non-volatile setting definition files in ~/Library/Preferences/ in the form of plist files.
In refactoring the app for the MAS, I see that I would need an exception of com.apple.security.temporary-exception.shared-preference.read-write to continue doing this. However, I can't find a good definition of where a sandboxed app should save non-volatile settings that are user account specific.
Where should we save files of this type so that our app will pass sandbox requirements (documentation pointers are always welcome)?