Asking customers for credentials

jameswright · December 16, 2023, 1:01pm

I have a general question about setting up workflows for others.

I have a workflow that reads emails from a hosted Office365 email account. When it’s my own account this is not a problem. But if I’m asking a third party (e.g. a customer), to share with me their login credentials this might make them nervous.

Now, if I control the workflow it doesn’t really matter if they are nervous or not, because technically once I have their credentials to run the workflow I can access their emails anyway.

But, what about the case of someone using 2FA.

How do you get someone else’s credentials into n8n when 2FA is involved?

Do we have to expose n8n to them, or is there another way?

Thanks

n8n · December 16, 2023, 1:01pm

It looks like your topic is missing some important information. Could you provide the following if applicable.

n8n version:
Database (default: SQLite):
n8n EXECUTIONS_PROCESS setting (default: own, main):
Running n8n via (Docker, npm, n8n cloud, desktop app):
Operating system:

Jon · December 17, 2023, 12:39pm

Hey @jameswright,

I believe as you are using a third parties credentials you may be crossing over the line and may need a special license if you don’t already have one.

We don’t yet have a way to expose the credential endpoint to users so they would need access to n8n or you would need to use something like nango and the n8n api. As Microsoft365 uses OAuth the user will be asked for their MFA code when signing in and once the tokens are issued it will keep refreshing with no issue.

jameswright · December 17, 2023, 2:43pm

Jon,

Ah, thanks for pointing that out, I’ll re-read your licence and make sure I’m complying with both the letter and the spirit.

Regards

James.

system · March 16, 2024, 2:44pm

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.