Sign in with Nova ID: Permission Guide

When you use Sign in with Nova ID on a third-party app, you’ll be asked to review and approve specific permissions before granting access. These permissions define what the app can see or do with your account, and they’re grouped into clear categories to help you make informed choices.

? User Data

Access to basic information about your Nova ID profile.

user:read - Read basic user profile information

• The app can see your name, email address, and profile picture.

• Example: A social app displaying your name after login.

profile:read - Read detailed profile data

• The app can view your timezone, language preferences, and related settings.

• Example: A calendar app adjusting automatically to your timezone.

? Account Management

Permissions that allow an app to view or manage your account configuration.

accounts:read - View linked accounts

• The app can see what services (like Google or GitHub) you’ve connected.

• It can only view, not modify, these connections.

• Example: A dashboard showing all your connected accounts.

account:manage - Manage your account settings

• The app can change your Nova ID preferences or configurations on your behalf.

• Example: A settings manager app that updates your preferences across services.

?️ Security

Permissions related to your security and login management.

mfa:manage - Manage multi-factor authentication (MFA)

• The app can enable, disable, or modify your 2FA setup.

• Example: A security app that helps you manage 2FA across different platforms.

sessions:manage - Manage active sessions

• The app can view your active logins and sign you out remotely.

• Example: A security dashboard that lists where you’re currently logged in.

? Data Access

Permissions that let the app read or write data associated with your Nova ID account.

data:read - Read user data and content

• View your stored data, files, or content.

• This is read-only access, no modifications allowed.

• Example: A backup service reading your files to create a backup.

data:write - Create or modify user data

• The app can create new content, edit, or delete your existing data.

• Example: A productivity app that creates or edits your Nova Documents files.

⚠️ This is a powerful permission, only grant it to apps you trust.

? Integrations

Permissions for connecting and managing external services.

integrations:read - View existing integrations

• See what other services are currently connected to your account.

• Example: An analytics app showing which integrations you use.

integrations:manage - Manage connected integrations

• The app can add, remove, or modify integrations.

• Example: An automation tool that links Nova Docs with your calendar.

? Tips for Granting Permissions

• Only grant what’s needed: Uncheck permissions the app doesn’t actually require.

• Read-only is safer: Permissions ending with :read can’t modify your data.

• Manage carefully: Permissions ending with :manage give an app control to make changes.

• Revoke anytime: You can remove app access anytime in your Nova Accounts → Connected Apps settings.

• Trust matters: Always verify the app developer before approving high-level permissions like data:write or account:manage.