Best Practice: Storing User's Private Credentials for API Calls

sudsy · August 23, 2017, 2:27am

I’d like to access data from various services (Google, Facebook, Pinterest, etc.) on behalf of the users of my app. Can I use the various plugins and/or the API Connector to do so? If so, how would I go about storing the private keys or other credentials in a secure way?

NigelG · August 23, 2017, 5:31am

You don’t need to, as Bubble handles the OAUTH token exchange for you. So you parameterise the OAUTH call in the API connector, and then add in the service calls underneath the will use the token.

Here is an example using Mailchimp.

shot62 · August 23, 2017, 12:28pm

Thanks, @NigelG, but I guess I’m a bit confused about how/where users of my app enter their own app id and app secret so that my app can access their account.

EDIT: Oh wait, never mind! I think I understand now. I need to try this out. Thanks for the reply!

Topic		Replies	Views
Run time, instanced, API connector APIs	5	1132	January 30, 2018
How does API Connector works on the backend? APIs	43	5018	September 14, 2022
🔑 Building an app that stores multiple user API keys - not just mine Database	16	4391	February 16, 2024
Login to external service - is this the right approach? App Organization	0	47	September 5, 2024
About Plugin Integrations Need help	4	491	June 13, 2021

Best Practice: Storing User's Private Credentials for API Calls

Related topics