In Onna, admins can connect enterprise data sources using their enterprise credentials. There may be a case, however, where some admins won't have the proper origin account type to do so. As an Onna admin, you're now able to share admin permissions for enterprise sources with other Onna admins using an Authorized Connection.
Sharing admin account permissions
The Authorized Connections section (found under User Preferences in your User Panel) is a secure place where Onna admins can share source permissions for new sources added to the platform. Currently, only Slack Enterprise, Quip Enterprise, and Dropbox Business credentials can be saved as authorized connections. In the future, admins will have the ability to share all enterprise source permissions as Authorized Connections.
Note: Currently, this feature is only available for Onna admins
Once you have created a new source, you will be able to access your Authorized Connections by navigating to your User Panel, clicking User Preferences, and finally Authorized connections. Whenever a new enterprise source type has been added, the credentials for that source will be saved to Authorized Connections.
As an admin you can do several actions. An ellipses will appear when you hover your mouse over the source on the top right corner. Clicking on the three dots will provide you the following options:
- Share credentials - Allows you to share admin credentials with another user.
- Revoke all - Revokes all credentials that have been shared with another user.
Note: By revoking credentials, the source that has been collected using those credentials will stop syncing data into Onna.
To share credentials with another admin, select Share Credentials. You'll be presented with the following window.
You'll have the option to either add a single admin or multiple admins to share your credentials. Once you have selected the admins you wish to share your credentials with, click Share. Once the credentials have been shared, the authorized connections will be updated as follows:
The number of sources, below the user's name, reflects the number of sources that user has created so far using this connection they have access too. As an admin, you can modify what actions each user can perform using the authorized source via the drop-down menu.
They're three permission levels you can set for each user:
- Granted access -Users can only Add and Sync a source with the shared credentials
- Declined adding - Users can no longer add and sync any new source. However, the sources that the user has created will continue syncing.
- Revoked - Users cannot add or sync any source. All sources that have been created by the user using the shared credentials will stop syncing.
Connecting a source using shared admin credentials
As an admin user, once you have gained access to the source credentials, you're now able to add an enterprise source using the shared credentials. To use the share credentials, Add a new source.
Select the source you'd like to add. In this case, we will select Slack Enterprise.
Note: Currently, we only support Slack Enterprise, Quip Enterprise and Dropbox Business authorization to be shared.
You will now see the option to add the source by continuing as the admin holder of the account, as indicated above, with the button that says, "Continue as firstname.lastname@example.org." If you select that option you'll be taken straight through to the account details and not need to go through OAuth.
Alternatively, you'll see the option to Switch accounts, which will allow you to switch the account you'd like to use to add the source. Connecting with another account will take you through the standard OAuth Slack flow for that account.
Once the source has been added, the original credential holder will be able to see the number of sources you have added to the source using their credentials, as indicated in the screenshot below.