Level up your Box knowledge with brand new learning paths on Box University. Visit training.box.com to get started

Box Status

How safe is sharing an app's client ID with users?

Answered
Follow
New post
Alex Campbell

Hello, several clients of our apps (Commander One and CloudMounter ) can not connect corporate Box accounts, because of administrator restrictions. According to documentation, their account admin should whitelist our app's client ID (https://support.box.com/hc/en-us/articles/360044195053-Disabled-by-Administrator-Cannot-Use-Application) for them to be able to use our app with Box service. 

But, for us as a developer, it is not quite clear whether it is safe and correct to share client ID of our apps?

0

Comments

1 comment

Date Votes
  • Official comment
    jcleblanc

    Hi Alex, 

    Yes, it'll be safe to share the client ID with the admins directly. During the admin app approval process the admin will use the client ID to approve your application, so it'll be a needed step. With that said, don't share your client secret, just the client ID.

    - Jon

    Comment actions Permalink

Please sign in to leave a comment.