Authorized applications

There are two ways for data owners to setup/accept data sharing with applications (external parties).

Manually configured data sharing

One method is for the system administrator of the data owner to create API token configurations and Webhook configurations manually, and manually exchange the security keys with the application developer.

Automatic or semi-automatic data sharing

If the application developer have implemented the Oauth2-based application connection concept, and registered their application with IOL, then the process is much simpler for the data owner. In such case, the application display a data sharing request to the data owner (this is normally a clickable link sent in an email from the application to the data owner, or a button in the application requesting the data owner to accept data sharing with the application.

When the system administrator of the data owner click the data sharing request link (either in an email from the application or as a button in the application) a data sharing accept panel is displayed.

Here, the data owner can edit the name of the application connection and review what data the application requests from the data owners IOL account, and the data owner can optionally lock down the data sharing by adding data filters or by hiding certain fields.

Once the data owner has reviewed the data sharing request details, and optionally locked down the data sharing with data filters or hiding fields, the user can click the ACCEPT button to accept the data sharing, or click DENY to abort the data sharing process. Sometimes one or two radio buttons must be selected to enable the ACCEPT button, which is to highlight to the user how data sharing is to be made.

For TransportInstructions and TransportRequests, there are typically two use cases. You either want to share them with only one specific carrier (TransportInstructions) or a subset of carriers (TransportStatus). But other types of applications – say analytics applications – may need to get all TransportInstructions and all TransportRequests, no matter which carrier they were intended for.

When an application has been granted access to data in your IOL account, the application connection is displayed in the Authorized panel of the IOL system administrators portal.

Here, the data owner (with system administrator entitlements) can revoke the data sharing to prevent the application from get any more data.