Our agents are logging into Zendesk using SSO. We want to create a server-side app running in our own account and use the token generated when agents log in to Zendesk for authentication so they can access the server-side app. How can we allow the server-side app to access the token generated for the parent Zendesk application?
Thanks, Simon
The app would not be able to access the token received when authenticating the agent session. But you can use ZAF JWT to ensure that the server-side app's remote URL is being requested by your Zendesk instance (which could only happen during an active agent session). This accomplishes the goal of securing the server-side app. Would this fit your use case?