For one Marketo account client Id and client secret same or different from user to user in that account | Community
Skip to main content
A
Anonymous
February 24, 2017
Question

For one Marketo account client Id and client secret same or different from user to user in that account

  • February 24, 2017
  • 1 reply
  • 4223 views

Hi Team ,

For One Marketo account clientId and clientsecret is same or different from user to user in that acount .

Means If I am generating acesstoken  using clientId and clientsecret and Identity url , then that acesstoken is only valid for that user1 . But If  user2 of same account wants to generate acesstoken then he should provide his clientId and clientSecret or he can use that same acesstoken  of user1 of same account .

Thanks

Anil Kumar Nayak

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

1 reply

SanfordWhiteman
SanfordWhiteman
Level 10
February 24, 2017

REST API service users should be allocated per app. The concept behind having different users is that counts can be totaled per user, and perhaps most important, one user can be removed without affecting other apps.

A
Anonymous
February 27, 2017

Hi Sanford ,

Thanks for your response , can you please explain more description about it .

Thanks

Anil Kumar Nayak

SanfordWhiteman
SanfordWhiteman
Level 10
February 27, 2017

What's not clear?

All your connected apps should have their own REST API users (and therefore their own client credentials, and their own access tokens).

These are basic rules of security: isolate users, permissions, and sessions, so that authentication/authorization/accounting can be individually controlled. No user's actions should have side effects on other users (there may be shared counters, like total API calls per day, which make complete isolation impossible, but you strive for the closest you can get to complete isolation).

Terms & ConditionsAccessibility statement

Loading footer...