@SABIO_Soporte yes, just added to the original post! Sorry I forgot to include to begin with.

Hi Lucinda, yes you should be able to integrate with OKTA - details are available here: https://help.appsheet.com/en/articles/2977736-user-access-control-via-okta

Great. Thank you.

There is no such feature.

Hi Gary, the usual reason to do this is to determine the application role for a user based on membership in an Okta group. Is that what you are looking to do? if so, we do have the ability to assign roles based on group membership. Then in expressions, you use USERROLE() to change behavior appropriately.

Thank you, it seems to return the appsheet role vs the Okta role. I can assign the Okta role to an appsheet role, but there are only two choices (admin & user). I’ve read the work arounds for managing more than two groups by using tables, but was hoping for something more direct. Not a blocker, but certainly nice to have.

Hi @Gary_Ault, you can indeed assign more than just those two roles — you can define custom AppSheet roles and assign users to them based on membership in Okta groups. it doesn’t need any workaround. Please see https://help.appsheet.com/en/articles/4427988-using-domain-groups-as-custom-roles-in-your-applicatio...

The reason we don’t want to directly have expressions that access group membership is this — expressions have to run in the apps on devices and on the backend. They have to run preferably offline. They need to be low latency. Checking group membership is high latency and needs connectivity.

In any case, most of the scenarios we have encountered so far are exactly for this purpose — to use group membership to assign application roles. So that’s why we’ve provided the feature directly.