Docs: Tiller Community Solutions Add-on

Is there any way to get to these sample templates without granting the Tiller add-on blanket access to all of my Drive spreadsheets? Full read/write access to all of my personal Google spreadsheets (which is what that first scope sure sounds like…) feels way too broad. Thank you. @randy

2 Likes

@vlanard @randy

Full access is my understanding but Randy will know for sure. Blake

Good question, @vlanard. Unfortunately, the Google v4 API copyTo function we use to add and remove templates from spreadsheets in the Tiller Labs add-on relies on a broad permission. To offer the sheet insertion and management functionality, “full access” via the https://www.googleapis.com/auth/spreadsheets scope is required.

We do not use this broad scope to access YOUR other spreadsheets. Rather, we use it to access OUR master templates and insert them into your active spreadsheet.

We anticipated that some users would be reluctant to grant this scope so we have bifurcated all core subscription services into the Tiller Money Feeds add-on which we strive to shoehorn into the much narrower https://www.googleapis.com/auth/spreadsheets.currentonly scope.

At this time, we are only able to offer the free & optional Tiller Labs add-on with the broader scope.

Randy

2 Likes

Thanks for the detailed answer. @randy @Blake
If there’s a future possibility of sharing sample sheets containing Template reports as a workaround for those folks who aren’t ready to grant full read/write scope, i’d be a fan. (Or some other document-limited scope)
Have a good one!

2 Likes

I hear you, @vlanard. The Google ecosystem is rapidly evolving. I’m hopeful that the scopes become more discrete and that we can leverage the copyTo capability without unnecessarily requesting scopes/access to all of a user’s spreadsheets… or that there are alternative/new methods for us to insert templates without making such broad requests. We will keep an eye on it.

We thought there MIGHT be users who were uncomfortable with the broader Tiller Labs permissions. Confirming this through your feedback (and perhaps other users) recognizes this issue as an opportunity to improve the platform. So, thanks for speaking up!

Randy

3 Likes

I’d echo the permissions concern. The only reasons I am comfortable using Tiller with Google Sheets is that it limits itself to the current spreadsheet. Requiring full account access to use Tiller Labs is a non-starter for me.

I’m happy to jump through a few hoops to get access to the sheets for various labs features I’d like to try out, if there is a manual-install alternative you could make available.

2 Likes

There isn’t a manual install option right now and the workaround we’ve recommended to others is to use a separate Google account they don’t care too much about giving more broad permissions to. We certainly aren’t using the permissions to access other sheets or data in your drive, it’s because of the way we “copy” solutions from our master template into customer sheets. There isn’t a way to do that without the use of the V4 API from Google and that’s what requires such broad permissions. Thanks for the feedback though.

1 Like

There are ways to accomplish the same experience that would not require such broad scopes. The broad scopes are a side-effect of our chosen implementation.

I would think we could make these sheets available to be manually copied fairly easily, though?

1 Like

You are right. We chose to do it this way because it’s way less complex/code intensive - we’re using an existing framework here vs trying re-invent the wheel. So once again, another chapter in our tradeoffs saga :slight_smile:

We’re trading reduction of add-on scopes for being able to rapidly release templates.

We experimented with how to insert the sheets not using the “Copy to” method, but weighed the dev complexity/overhead/maintenance/upgrade cost against the permissions and decided to just stick with the “copy to” approach for now knowing that some customers wouldn’t be happy about the permissions, but assuming many wouldn’t actually care or at least not care enough to research the implications of the specific permissions we’re asking for when they click that “allow” button as part of the add-on install.

The manual copy option is possible, yes. But it’s more manual management on the customer’s part to A) figure out whether or not the sheet is out of date (we’ve released a fix or upgrade) and they need to manually update it (copy in the latest version - which requires them to bookmark or otherwise search for where to find the master again) B) possibly “restore” multiple sheets if one that they’re “manually” upgrading is “upstream” of others that are “downstream” and have dependencies - we haven’t quite solved this UX in Labs, but the restore feature makes it quick and easy.

It is possible, but it’s kind of a headache and IMHO not a great user experience as compared to what we’ve built with the solution management here in Labs.

1 Like