Introduction
Plugins allow you to extend the functionality of tadatodo. Once you have registered a plugin and it has been reviewed, people will be able to add it to a entity under their login. Plugins can store data in the keystore and they have access to all the ReST API endpoints that the user who added the plugin is authorized for.
All plugin code will run on the tadatodo infrastructure so you don't have to worry about hosting your own servers. Tadatodo provides an API for storing and retrieving data from the keystore, as well as a way to authenticate users who have added your plugin to an entity.
Plugin Registration
Currently, plugin registration is only available to select partners. If you are interested in registering a plugin, please contact us at info@tadatodo.com.
User Authentication with Plugins
When a user adds a plugin to an entity, the plugin will be able to access the ReST API endpoints that the user is authorized for. The plugin will be able to access the user's data and perform actions on the user's behalf.
If your plugin needs to ensure that an API call to your server is coming from a user who has added your plugin to an entity, you can use the X-User-Token header to authenticate the user. The X-User-Token header will contain the user's authentication token which you can retireve from the tadatodo API /exchange-key endpoint.