3rd Party Apps

04/16/21
Answered - Pending Review

How can I let my application know who is accessing the application before it has an actual Smartsheet access token? If I understand correctly the first time the user uses the authorize link it generates the token and we can use that initially. The second time the user accesses the web app they are going through the direct link and not authorizing again. How can I get and use the token they previously received during the authentication (assuming it is not expired).


My assumption is we need to get the user name or id and compare that to a list of users/tokens. Again how can I get the user name without having a token?


Any help appreciated, let me know if the above makes sense.

Fairly new to web based applications, using C# / ASP.NET.

Answers

  • Hi @Christopher Alfaro

    It sounds like you're building an application that you want to access Smartsheet. In this case, apps connect to Smartsheet using OAuth 2.0 to authenticate and authorize users.This is the Smartsheet API documentation for setting up your OAuth flow:

    This flow could identify the username and token, and your app database would show this (see the documentation above).

    However, if you are talking about using the API directly, then Smartsheet does not allow enquiring a user's password (or access token).

    Cheers,

    Genevieve

Sign In or Register to comment.