Limiting google directory groups APIs to caller's own groups

只愿长相守 提交于 2021-02-11 14:52:29

问题


We are doing a web app for our internal organization use. We need to check members and their roles for a particular group from our backend. Our google administrators are not providing us domain wide access to google admin APIs, mentioning it would be a security loop hole.

We would like to fetch the members and their roles only for the group(s) in which the authenticated user or service account is owner/manager. Is it possible without domain wide access?

Alternatively, in web front end is it possible to check a google logged in user's membership and role to a particular google group?

If there are other possible solutions or advice for our google admin, would be really appreciated.

GET https://www.googleapis.com/admin/directory/v1/groups/groupKey


回答1:


https://developers.google.com/apps-script/reference/groups/

Get a list of the users groups. if group member role == owner/manager get the list of group members.

you can also just get the role. https://developers.google.com/apps-script/reference/groups/role



来源:https://stackoverflow.com/questions/57524405/limiting-google-directory-groups-apis-to-callers-own-groups

易学教程内所有资源均来自网络或用户发布的内容,如有违反法律规定的内容欢迎反馈
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!