I have a crm where it can send sms responses to webhook (created from apps script)
The webhook script is deployed as anyone with the link can access The webhook takes spreadsheet url as it's url parameter. This spreadsheet has permission anyone with link can edit
Hence a webhook looks like https://script.google..../exec?url=spreadsheeturl
All works good so far.
Now, I need the same webhook script to be used by all of my co workers and they have thier own crm logins which they need to specify their spreadsheet as parameter
Hence PersonA will write https://script.google..../exec?url=spreadsheeturlA
Person2 https://script.google..../exec?url=spreadsheeturlB
Person A and B are not willing to make the sheet anyone with link as edit as they are afraid of giving edit access to outsiders.
Is there a way where they can pass the login token as url parameter of personAs crm wrbhook url along with spreadsheetA url and validate to access the spreadsheetA instead of making spreadsheet anyone with link can edit?
UPDATE: I don't want myself to be added edit permissions by them.
Any feedback is greatly appreciated.
Thanks
