In Onna, admins can connect enterprise data sources using their enterprise credentials. There may be a case, however, where some admins won't have the proper origin account type to do so. As an Onna admin, you're now able to share admin permissions for enterprise sources with other Onna admins using an Authorized Connection.
Adding Admin Credentials
The Authorized Connections section (found under User Preferences in your User Panel) is a secure place where Onna admins can share source permissions for new sources added to the platform. Currently, we support the following sources can be saved as authorized connections
- Slack Enterprise
- Quip Enterprise
- Dropbox Business
- Box Enterprise
- Google Suite
In the future, admins will have the ability to share all enterprise source permissions as Authorized Connections.
Note: Currently, this feature is only available for Onna admins
To add source credentials, access your Authorized Connections by navigating to your User Panel, clicking User Preferences, and finally Authorized connections. On this screen, you will see any Enterprise Sources that have been added. You can also add additional enterprise sources by clicking Add Admin Credentials, selecting the source you wish to add, and then hit Connect.
Once you hit connect, Onna will redirect to the source OAuth flow. You would need require specific credentials depending on the source you selected. For example, for Slack Enterprise, we require Slack Org Owner credentials.
Sharing Admin credentials with other users.
As an admin, you can do several actions. An ellipses will appear when you hover your mouse over the source on the top right corner. Clicking on the three dots will provide you the following options:
- Share credentials - Allows you to share admin credentials with another user.
- Revoke all - Revokes all credentials that have been shared with another user.
Note: By revoking credentials, the source that has been collected using those credentials will stop syncing data into Onna.
To share credentials with another admin, select Share Credentials. You'll be presented with the following window.
You'll have the option to either add a single admin or multiple admins to share your credentials. Once you have selected the admins you wish to share your credentials with, click Share. Once the credentials have been shared, the authorized connections will be updated as follows:
The number of sources, below the user's name, reflects the number of sources that user has created so far using this connection they have access too. As an admin, you can modify what actions each user can perform using the authorized source via the drop-down menu.
They're three permission levels you can set for each user:
- Granted access -Users can only Add and Sync a source with the shared credentials
- Declined adding - Users can no longer add and sync any new source. However, the sources that the user has created will continue syncing.
- Revoked - Users cannot add or sync any source. All sources that have been created by the user using the shared credentials will stop syncing.
Connecting a source using shared admin credentials
As an admin user, once you have gained access to the source credentials, you're now able to add an enterprise source using the shared credentials. To use the share credentials, Add a new source.
Select the source you'd like to add. In this case, we will select Slack Enterprise.
Note: Currently, we only support Slack Enterprise, Quip Enterprise and Dropbox Business authorization to be shared.
You will now see the option to add the source by continuing as the admin holder of the account, as indicated above, with the button that says, "Continue as firstname.lastname@example.org." If you select that option you'll be taken straight through to the account details and not need to go through OAuth.
Alternatively, you'll see the option to Switch accounts, which will allow you to switch the account you'd like to use to add the source. Connecting with another account will take you through the standard OAuth Slack flow for that account.
Once the source has been added, the original credential holder will be able to see the number of sources you have added to the source using their credentials, as indicated in the screenshot below.
Sharing Account Permissions with Authorized Connections FAQ's
If the password of an account is changed will I have to update it in Authorized connections?
No, Onna does not store your password information. It creates a token that allows access to the account. You will not need to update the password unless you go through the OAuth flow again.
Is there an Expiration Date for an Authorized Connection?
No, currently an Authorized Connection will be in place until you manually revoke the permission in Onna.