{"metadata":{"image":[],"title":"","description":""},"api":{"url":"","auth":"required","results":{"codes":[]},"settings":"","params":[]},"next":{"description":"","pages":[]},"title":"App Security Requirements","type":"basic","slug":"app-security-requirements","excerpt":"","body":"The following items are required or recommended for client apps and integrations that use the Yammer Platform. In addition, a data security survey is required for apps that are submitted for Global Access permission or inclusion in the Yammer App Directory. The survey link is shared after the app submission.\n\n**Required**\n\n  *  *** **   Encrypted in transit and storage: Yammer authorization tokens and PII\n\n  *  *** **   Access control on data storage, if customer information is kept\n\n  *  *** **   An SSL redirect URI\n</p>\n**Recommended**\n\n  *  *** **  Regular cadence of security testing on environment\n\n  *  *** **  Implement IDS (Intrusion Detection System)\n\n  *  *** **  Adequate logging of events","updates":[],"order":6,"isReference":false,"hidden":false,"sync_unique":"","link_url":"","link_external":false,"_id":"58b75dc52ac83125007f4926","__v":0,"project":"545137a814af501a00b50cf9","category":{"sync":{"isSync":false,"url":""},"pages":["545137a814af501a00b50cff","5451389e14af501a00b50d11","5451384514af501a00b50d04","546b8edb62515a14007ebc39","546b9214b47b5d1400109efa","546b922862515a14007ebc4f","546b9234b47b5d1400109efc","546b924762515a14007ebc51","546b925662515a14007ebc53","546fdac1691dc8080089521d","547374bd007eb108007e0380"],"title":"Documentation","slug":"documentation","order":0,"from_sync":false,"reference":false,"_id":"545137a814af501a00b50cfd","project":"545137a814af501a00b50cf9","version":"545137a814af501a00b50cfc","createdAt":"2014-10-29T18:53:28.598Z","__v":11},"createdAt":"2017-03-01T23:48:21.197Z","version":{"version":"1.0","version_clean":"1.0.0","codename":"","is_stable":true,"is_beta":true,"is_hidden":false,"is_deprecated":false,"categories":["545137a814af501a00b50cfd","545138eaa66f020800dbab4a","546b9072b47b5d1400109edf","546b9082b47b5d1400109ee0","546b9088b47b5d1400109ee1","546b909462515a14007ebc43","546b90a0b47b5d1400109ee2","546ced235884600e007a92f6","5481008eea7fd40b00cd7c2b","573b9d83ee2b3b220042291f","57be1efa15efc70e006a5f99","5ee004f52c97b4004c7a5876"],"_id":"545137a814af501a00b50cfc","project":"545137a814af501a00b50cf9","__v":12,"createdAt":"2014-10-29T18:53:28.525Z","releaseDate":"2014-10-29T18:53:28.525Z"},"githubsync":"","parentDoc":null,"user":"5638f69b22afbc0d001f23c1"}

App Security Requirements


The following items are required or recommended for client apps and integrations that use the Yammer Platform. In addition, a data security survey is required for apps that are submitted for Global Access permission or inclusion in the Yammer App Directory. The survey link is shared after the app submission. **Required** * *** ** Encrypted in transit and storage: Yammer authorization tokens and PII * *** ** Access control on data storage, if customer information is kept * *** ** An SSL redirect URI </p> **Recommended** * *** ** Regular cadence of security testing on environment * *** ** Implement IDS (Intrusion Detection System) * *** ** Adequate logging of events