[Admin Tools] Restrict Canvas Access Token Creation or Provide Better Messaging on Page

Status: Added to Theme Submitted by on ‎10-05-2021 02:45 AM

The New access token window does not offer adequate warning that whoever is generating an access token may be inadvertently allowing access to data subject to GDPR regulations by a third party. There is no way of editing the message within this page.

We would like to request the capacity to restrict/allow for approval by system admin of a token generation request by a Canvas user.

If this is not possible, we would like to have the ability to edit the language on this window.

If that is not possible, we would like instructure to review the language of the message, improve its visibility, and underscore the data protection risks that can come form sharing a token.

 Access token.png

Added to Theme

Improved UI Controls and Usability - Added or clearer alerts and confirmations and notifications Theme Status: Identified

4 Comments
p_a_hudson
Community Participant
‎10-07-2021 04:52 AM

This was flagged up as a big GDPR risk when we implemented Canvas. We've used javascript to hide any option we feel might allow staff to create a token. But we would prefer more admin control over this facility

ctitmus
Instructure Alumni
Instructure Alumni
‎10-08-2021 02:03 PM
Status changed to: Open
 
KristinL
Community Team
Community Team
‎02-01-2023 01:05 PM
Status changed to: New
 
KristinL
Community Team
Community Team
‎02-01-2023 01:06 PM
Status changed to: Added to Theme