Background:
Our support team offers zoom meetings and invite our end users to attend. We wanted to embed zoom in our mobile app to provide better experience and have better attendance tracking for end users. Our support team would still use the official Zoom clients, so the zoom embed is just for a participant attending zoom meetings in our account.
Steps:
1- Create a Marketplace app of type ‘General App’
2- Keep all configuration and settings as default
3- Only enable Meeting Embed (and download/integrate the mobile SDKs)
4- Use the credentials (Client ID and Secret) in generating JWT
5- Use the JWT in native mobile apps
Questions:
1- Is there any difference between the development and production credentials? in terms of performance, security, etc.
2- Is it safe to assume that because we are using the app only to attend meetings created by our account, we don’t’ need to fully configure and submit the app for approval?
3- With the steps above, can the JWT be used to do anything other than a) attending a meeting provided the meeting number (and password if required). b) hosting a meeting if the user is logged in or identified. In other words, this JWT can not be abused/misused to do any other actions because we didn’t add any scope/features when configuring the app in Marketplace?
Thanks in advance for your help clarifying