Pros/Cons of Oauth for in-house 1st-party apps

glparker
Community Champion

Good Morning,

We are building more apps for our environment, and only for our environment.   In the past we had included Oauth into our apps so that the API calls were made with the privileges of the teacher/students using the app.   However, managing Oauth tokens is a bit tedious.   I'm considering just using an admin token and API Scoping for our new application, and removing the overhead of managing Oauth tokens.

What are some other pros and cons of using Oauth and the complications it brings for a 1st-party, in-house developed application that will never leave our borders.   Are there other glaring security concerns I'm overlooking using an admin token in our app vs Oauth tokens?

 

Labels (2)
0 Likes