We would like to roll out a Portal to our customers. However, for various reasons, we are concerned about the possibility of a customer sharing the link to our Portal with one of our competitors. We would like to prevent this from happening.
We know that there is a way to integrate the Portal into our product using single sign on. But from our research it seems like this integration would simply send us additional details about who accessed the Portal? It would not actually prevent a non-user from accessing the Portal.
I’d like to confirm that this is the case. If so, I think that this would be a very useful feature to add! I understand that private URL’s decrease the risk that the link will be found, but it does not actually protect our roadmap from someone actively trying to share it with people who should not have access.
Best answer by KamiView original
@mwinters, you are correct, Portals with private link will be accessible to anyone so it can be shared outside of your intended audience. Another functionality you could consider is password protected public roadmap which is more restrictive but focuses more on sharing the roadmap as opposed to collection feedback and validating ideas.
I’ll log your feedback now so that we may consider it in the future.
Thank you Kami! I appreciate your response.
Yes, unfortunately the current functionality doesn’t quite cover our use case, as someone could easily share the password as well as the link.
@scott.baldwin , yes what you describe is what we plan to do. However, as you say, embedding is not bulletproof. A reasonably determined person with basic technical skills could probably figure out how to get the link to the actual Portal, and then share with other folks.
This will work for now, but just wanted to call this out as a request for the future. The more secure this link is, the happier we’ll be!
Thanks. I would still like to get more specifics about your requirements and needs here so I can share with our team.
In the past, when I tried to get a portal going for customers, a fair number of the stakeholders were concerned about accessibility to non-customers. So just to give some ideas around what I was working with when speaking with leadership and the owner/board of directors:
Not sure about
@mwinters’ use-cases, but figured I’d drop some since the same thought came up internally when I was poised to create a customer-accessible portal.