List of Authenticated Users - ios

I am working on a tool inside of a current iOS app that I only want to be available to a handful of people. The company email addresses are all gmail.
How can I make the app work in a way that, You sign into your google account, and on the server end it will check if you have access or not. If you do, it will then move on to the tool page.
Does Google API have anything on this?
Thanks in advance

Google App Engine has the Users API which you can use to allow people to log in with a Google Account. You can the write server side code to cross check the logged in email address against your whitelist (which may or may not be configurable), and only allow access if the emails match.
Is that the kind of thing you mean?

Related

Gmail API OAUTH2 verify Desktop application

At work we have developed an individual customer specific software application that is in use for a long time. We have a new requirement in this same program to implement an option for sending emails directly from the program.
The user is able to add his own email account with the credentials and login through our program. For Microsoft and Gmail accounts OAUTH is implemented and something here is not very clear.
For Gmail-API we have made an OAUTH Client and Consent screen on Google Cloud Console which we need to publish and verify and here is where the problems start. I am not very clear with the whole process of verifying the app.
In the steps for verifying is stated that we should verify a domain for the app, but this software is not hosted anywhere on internet and is not publicly available, it is available to a number of specific users (2000-3000).
Also Google requires a YouTube video of the software to be available publicly, which we are not able to upload because of customer requirements. Also here is required a Data Protection Policy page for the application which we as a developers don't have because we are only developing the software.
Other thing that is not clear to me, how is this type of software rated by Google, internal or public?
Have anyone experience with this or something similar?
Verifying an app for one of the Gmail scopes is a very complicated process. This process depends upon which scope of authorization you are requesting of the users.
In your case you are trying to send an email so you are using the users.messages.send method from the Gmail api. This uses a restricted scope. Which means you will need to go though the full process.
First of it doesn't matter if your application is hosted or not. It also doesn't matter that you give this app to a limited number of users. What matters is the scopes you are using.
You will need to ensure that your domain has been registered via google search console. So this app will need a domain
Once that is done you will be able to host your website, and the privacy policy on that domain.
You will need to create a YouTube video showing your application running, and how authorization is used.
You will also need to submit to a third party security checkup of your application which is not free and will need to be done once a year.
All of this is needed because of your consent screen it doesn't matter if its hosted any where, It also doesn't matter if this is only available to specific number of users.
If all of the users are part of a single google workspace account, that has created your client id and client secrete then you can set the app to internal and you wont need to be verified. This only works for google workspace domain accounts.

Is approval-based sign-ups possible with Slack?

Normally, I invite new members via. email, that I get from them individually.
Let's say I want to campaign publicly for volunteers to join our community, then what is the best approaches with various level of control?
It is not possible out-of-the-box, but you can develop a custom website, where people can apply for your Slack and enter the name and email address.
You can then forward their request for you to approve (e.g. a page with a table of all open requests where each can be approved or denied or an automatically generated email to you etc).
Finally you can auto-invite every approved user with his email address. The Slack API has an undocumented API function that allows that. Check here for my post about that method.
I have done a similar website for inviting people from a gaming community (Eve Online), where they have to first authenticate themselves with their game login before getting an invite to our Slack. It works pretty well. I made this website with PHP, but basically every server based script language will work.

Transfer fund from stripe platform account to a recipient by email

One of my clients have a situation to pay their website user directly from platform account to user. I can do it by using their transfer payment API.
But, my client want to pay to user's email so that user can have option to perform rest of the action.
I went through their API documentation but don't see anything related to do that. Does anyone have similar experience or know anything related to do that?
Stripe's API doesn't have anything like that, but it is something you may be able to build into your application.
I think you might want to contact Stripe Support and fill them in on your use case and see if they can offer you some specific suggestions.

Is there a way to get write access to twitter api without mobile authentication?

I am currently working out of india and am trying to get to make my app post on behalf of my Twitter user account. However, for me to be able to do this, I need to create write access to my app on twitter, which I tried to. Unfortunately, twitter gives me the following error:
Error
You must add your mobile phone to your Twitter profile before granting your application write capabilities. Please read https://support.twitter.com/articles/110250-adding-your-mobile-number-to-your-account-via-web for more information
Now, I tried to add my mobile phone number following these instructions. Twitter, does not support any of the Indian mobile carriers in order to authenticate the same.
Is there a work around? Is there any way I can make write access work from here?
There are two ways to do this.
The official way to do this is to contact the Twitter API team directly using this form https://support.twitter.com/forms/platform
The unofficial way is
Authenticate against mobile.twitter.com (use your phone or computer).
Go to Settings
Go to Phone
Add
Add your mobile
A "manage" link should be available
All being well, you'll get a confirmation SMS
I've not tried this method - but I have seen other people say it works.

Friend Invite System for iPhone

I am looking for information on how to implement a friend system within my iPhone app. The app is going to use a web server to check login's. So would the logical thing be to have the friend system setup through the web server as well? I am clueless on what I need to brush up on to be able to implement such a thing so any information/tutorials/open-source code/guides would be helpful to help me understand how it works. Thanks.
Ask new users about their email (login) and passwords. Also let users to invite to your app his/her friends via:
Direct input of known email address.
Selection friend from iOS addressbook (you will also need an email there).
Then just take care of maintaining lists of friends' emails on server side (or both server and client side).

Resources