Hey there,
I’m working on an external React app that I want to protect behind a Monday authentication step. Two main reasons:
- This would mean that only people that have access to our Monday organisation can access the app
- Once authenticated we can use their access token to make any necessary queries to Monday API
The question here is what is the best method to make this possible? At the moment I have created an App in Monday developers section and it works fine but one thing I am not certain on is whether this will only work for our organisation or in theory anyone with a Monday account can authorise with the app? Is there a way to make sure that the only people that can authorise with the app are from my organisation?