We’ve developed some resources to help you work effectively from home during COVID-19 Click to learn more

Struggling with Online Application Development?

It's seems increasingly common for newly registered online developers, building online applications, to struggle with the most basic fundamentals: application approval.

What we observe is that, once an application is registered, people just want to start calling the web services in their favorite REST client. Unfortunately, there's a little more to it than that.

Considering how often we sign-in to other web sites using Google or Facebook, and experiencing the first sign-in where we are prompted to give the website access to our email address, it's surprisingly mind-boggling how this practise is overlooked for apps in SuperOffice CRM Online. It's the same thing! 

Look, when you want to access a tenants' resources (web services), the tenant (website) HAS to authorize your application first! There is no way around it. 

While we have created several sample applications on Github to help experienced software developers get started, there is a surprisingly large number of non-programmers attempting to use these samples. The problem with that is all of those examples expect a certain level of knowledge of OAuth 2.0 and OpenID Connect. And unfortunately the percentage of non-programmers who understand these standards is very very low.

In an attempt to make things easier for folks to get past this hurdle, we have deployed one of our samples to Azure websites to give you quick access to an access_token, refresh_token and/or system user token.

Read more about the Online Helper Application

If you want to use it, make sure to add https://devnet-tokens.azurewebsites.net/openid/callback as one of your application redirect URL's.

Hope this helps!

RE: Struggling with Online Application Development?

Nice tool Tony - as you know i was one of those who haven't had any previous experience with OAuth authentication. And just to be able to explore an API without having to make a - for unexperienced people - a somewhat cumbersome attempt of an OAuth client first - will certainly help many being more curious about what the SO API has to offer. And once people experiences the strengths of the API, the struggle of learning the principles behind OAuth would probably not seem so hard as you would get a much better idea of what you will be able to achieve with it. And once you get the hang of it, it's not that bad :)

Now i'm just looking forward to the day where we can register apps, urls and tokens ourselves via some sort of an api console :)

 

Av: Dennis Aagaard Mortensgaard 29. jul 2020