SmartApps Private Access

smartapp

(Joe) #1

Hi all,

Is there any way to control who has access to your smartApp, once published? I’d to be able to ‘grant access’ to a couple of people only, so that the smartApp can be tested. I can’t simply copy and paste code and have my friends test this way, because there are API keys etc that are stored within the smartApp I’m wishing to test, which are private to me.

Thanks


(ActionTiles.com co-founder Terry @ActionTiles; GitHub: @cosmicpuppy) #2

Yes… You can control who has access to the ability to install it. (But you can’t directly revoke access once someone has installed).

  1. Request that the SmartApp not be listed in the Marketplace.

  2. Set up a website that installs the SmartApp via the OAuth flow. That website will use the “client secret” parameter (which is never publicly revealed).

  3. Put in your own access controls to your installer webpage (eg., login and password).


(Joe) #3

Hi, thanks for the response. That would be the perfect implementation, if it wasn’t for the fact that there was no way to revoke access.

I wonder if there is a way for the user to enter a key into the app, which we would provide, which would give them access? We could then delete this key from our server when we wish to revoke access.

Do you know if there is any way for the user to enter a ‘key’ into their app?
Thanks


(ActionTiles.com co-founder Terry @ActionTiles; GitHub: @cosmicpuppy) #4

Sure… It would be like any other SmartApp parameter.