I'm working on creating an application for a client that has to search Yammer for a term specified by a user. I'm using the Yammer JavaScript SDK to authenticate the user's login to acquire the access token which I then use to query the search REST API.
This is all working great, but I need to know about the user access rights using the SDK and REST API. Will the search endpoint restrict the search results to the groups and files that a user has access to? Or does the endpoint return everything that matches the search term regardless of the user's access to it?
Unfortunately I only have the one user account on the client's Yammer network to test with and can't really investigate the issue properly.
Any feedback will be appreciated!
It will return only what that user has access too
ie. If they can not see a hidden private group they would not be able to search for it
Try to think of the Javascript SDK emulating them logged into yammer.com
Related
I am integrating facebook leads in my CRM, like I can get leads from Facebook Pages on behalf of my client's.
I am encountering this error.
To subscribe to the leadgen field, one of these permissions is needed: leads_retrieval
I have standard access for 'leads_retrival'. Advanced access can be achieved after hitting the API at least one time.
you need a token that has advanced access to leads_retrival. To get such a token, you can go to the Facebook Graph API Explorer, and then you can add permissions of leads_retrival. Permission can be added in the right middle of the tool and you can add them for testing purposes as you can see in the picture. .
Once you add the permissions, then you can click on generate access token, and a popup will open from Facebook, you have to allow a few things and then you can use that access token for hitting the API for testing purposes. Then you can apply for advanced API access.
Working on adding course completion information to users that have authorized our system to write to their profile. Looking at the LinkedIn API, https://learn.microsoft.com/en-us/linkedin/compliance/ it looks this is possible if granted the w_compliance authorization but it doesn't seem to be available in the application setup.
I have been trying to contact developer support email provided but have had no response in the last week. Is there a path or setting that I am not seeing?
How does one get an authentication grant that includes the ability to update user profile course information?
In my mobile app, users are allowed to login over facebook (standard azur mobile service facebooklogin).
Now i want to take that to a next step. Based on the users facebook login, i want to access his profile over the facebook .net sdk.
After the login i want to call a "getUserInfo"- Method which returns the info from facebook. So the whole facebook access should happen on the backend side.
Is this possible with azure and if so, whats the best way to do so?
In your Mobile Services .NET backend, you can always get the Facebook token by calling (within a controller):
ServiceUser user = (ServiceUser)this.User;
FacebookCredentials creds = (await user.GetIdentitiesAsync()).OfType<FacebookCredentials>().FirstOrDefault();
string accessToken = creds.AccessToken;
Then you can communicate with the Facebook Graph API using that token.
If there is a particular set of capabilities you want to be able to access beyond the public profile, you may want to add permissions to your login request via the MS_FacebookScope application setting. The value is just a comma-separated list of the scopes you wish to use.
You may find this blog post helpful in explaining the above in more detail:
http://azure.microsoft.com/blog/2014/10/02/custom-login-scopes-single-sign-on-new-asp-net-web-api-updates-to-the-azure-mobile-services-net-backend/
Is it possible to do a Graph API search without requiring the user to login? (App token only?)
ie: I want my user to be able search for Facebook Users from my website without requiring them to allow access with my application. I simply want my web page to return a list of matching names.
AFAIK, you can't do that.
Allways you need at least an user token, so after he/she authenticate you can search "impersonating" that user,
I have written a web app/site that uses facebook login. I have set it up so it requests "User & Friend Permission" = "email". But when I log in with a trial account I am not asked for permission to give access to email (and thus the info is not provided).
I need to get access to the users email address since I validate them in my database as well.
I am using VS2012 and the built in openid/oath functionality.
-Markus
Does not look like the facebook client in VS2012 supports this. I will have to write my own client.
see: http://forums.asp.net/t/1847724.aspx/1