In the past, it has been understood that Yahoo accounts were not supported.
I have run into a situation where my clients have been able to setup users with Yahoo accounts and the users ARE indeed able to login to use teh AppSheet apps.
I think the users may be selecting Microsoft as the provider and maybe Microsoft allows their accounts to be setup using Yahoo emails?? Meaning these emails can be used and authenticated?
However, I am discovering today that no log entries are being written to ANY of the log files for users with Yahoo email addresses. One would think that if there is any blocking of Yahoo emails, it would be at login time NOT at the point of writing log file entries.
AppSheet….can you adjust your log management to allow these user log entries to be written?
4 Likes
1 -
Spot on! This sounds like a classic mapping issue in the logging layer. If Microsoft is acting as the Identity Provider (IdP) for these Yahoo aliases, AppSheet should technically treat them as Microsoft users. The fact that they can login but can’t be logged in the audit files suggests a mismatch between the ‘Auth Token’ and the ‘Logging Service’ configuration. AppSheet team, this definitely needs a fix!
2 -
I’ve seen this happen when the logging service expects a specific domain format that Yahoo doesn’t satisfy. However, since the authentication is successful via Microsoft, the logs should follow. It’s inconsistent to allow access but skip the audit trail. Hope the AppSheet team addresses this inconsistency soon
3 -
Logging should be agnostic to the email domain if the Provider has already cleared the user. This gap in the log files is a security concern for app admins. If the front door (Login) is open, the security camera (Logs) should be recording!
1 Like