Community Help

mgibson2 · ‎03-04-2022

Hi, I am working on an external app that uses the canvas API and also involves LTI.

So there needs to be some sort of secure exchange with user/client of them giving us a canvas api key (and canvas instance url), and us giving them an LTI key & secret. Im curious how other apps handle this exchange in their onboarding flow and manage to do it securely (not email right?)

thanks for help/pointers - mark gibson

igustafson · ‎03-15-2022

Hello @mgibson2,

You'll want to look over this for the specifics https://canvas.instructure.com/doc/api/api_token_scopes.html but if it's looking for auth in my experience it uses a server or url to auth that is the consumer key and secret key as those are what allow the connection in this case.

View solution in original post

igustafson · ‎03-15-2022

Hello @mgibson2,

You'll want to look over this for the specifics https://canvas.instructure.com/doc/api/api_token_scopes.html but if it's looking for auth in my experience it uses a server or url to auth that is the consumer key and secret key as those are what allow the connection in this case.

Secure exchange of api key and lti key and secret / onboarding flow

Canvas

Student Orientation for Multiple Campus

Canvas submission linked to TII

Editar la gabación

office365 LIT error

Can I generate a Knowledge Deficiency Report (KDR)...

Student Orientation for Multiple Campus

Canvas submission linked to TII

blocking EdPuzzle website with embedded videos

how to open a closed quiz

Nov 2024 update to the Rich Content Editor is not ...

You're signed out

Secure exchange of api key and lti key and secret / onboarding flow

Community Help

View our top guides and resources: