Hey everyone.
I’m quite curious about how the SmartThings Cloud binds with a Mobile Phone having SmartThings Application. Also whenever a command is being sent from user by Mobile Application, how do SmartThings cloud authenticates that user and further process the commands.
See discussion in your other topic. I don’t believe these details have been published.
SmartThings has published a white paper on platform security that addresses some of these issues, although it may be out of date.
For additional discussion, see your other thread on events.
We should add that in 2020 SmartThings added optional two factor authentication to the mobile app.
A user first taps on a My SmartThings icon in your application. Your application must then redirect the user to the SmartThings accounts server by calling an OAth endpoint. You can exchange this code for an access token in a subsequent POST request to SmartThings.
A third-party application must authenticate with SmartThings using the Authorization Code flow. how to install iMessage on Windows A user first taps on a My SmartThings icon in your application.