Settings
Console Settings
Comprehensive guide to configuring and managing social.plus Console settings
Console Settings
Administrators can modify various settings for the SDK and manage API access from this centralized settings panel. Access your SDK API keys, webhook configurations, and authentication tokens all in one place.
Overview
Webhook Management
Configure custom webhooks with secure authentication and real-time event handling
Push Notifications
Set up push notifications with certificate management for iOS and Android platforms
API Access
Generate and manage admin API access tokens for secure platform integration
Security Controls
Advanced security settings and access control management for your platform
Webhook Configuration
Adding Webhooks
1
Navigate to Webhooks
Go to Settings > Webhooks in the Console
2
Add Webhook URL
Enter your webhook endpoint URL in the Webhook section
3
Generate Secret Key
System automatically generates a secure secretKey for authentication
4
Configure Events
Select which events should trigger webhook notifications
Webhook Management
- Add Multiple URLs: Configure multiple webhook endpoints
- Delete Webhooks: Remove unused or outdated webhook URLs
- Secret Key Rotation: Regenerate secret keys for security
- Event Filtering: Choose specific events for each webhook
Push Notification Setup
Platform Configuration
Platform Configuration
iOS Configuration (APNs)
Certificate Requirements
Required Information
- Certificate Name (for admin tracking)
- Platform: iOS
- P12 Certificate File
- Certificate Password
- Upload APNs certificate (.p12 file)
- Enter certificate password
- Set certificate name for identification
- Activate certificate for production use
Android Configuration (FCM/Baidu)
Firebase Setup
Firebase Requirements
- Certificate Name
- Platform: Android
- Provider: Firebase
- Server Key (FCM)
Baidu Setup
Baidu Requirements
- Certificate Name
- Platform: Android
- Provider: Baidu
- API Key and Secret Key
Certificate Management
Certificate Management
Multiple Certificates
Certificate Flexibility: Upload multiple certificates per platform (e.g., staging and production for iOS), but only one certificate can be active per platform/provider at a time.
- Upload new certificates anytime
- Switch between staging and production
- View active certificate status
- Monitor certificate expiration dates
Certificate Requirements Table
| Field | iOS | Android (Firebase) | Android (Baidu) |
|---|---|---|---|
| Certificate Name | ✓ | ✓ | ✓ |
| Platform | iOS | Android | Android |
| Provider | N/A | Firebase | Baidu |
| API Key | N/A | Server Key | API Key & Secret |
| Upload File | P12 Certificate | N/A | N/A |
| Password | Certificate Password | N/A | N/A |
Notification Events
Notification Events
Event Configuration
Available Push Events- New posts in followed communities
- Comments on user’s posts
- Reactions to user’s content
- Community invitations
- Direct messages
- Moderation notifications
Custom Message Configuration
APNs Configuration
- Custom alert messages
- Badge count management
- Sound configuration
- Rich media support
- Action buttons setup
Admin API Access Management
Access Requirements: You must be logged in as an admin to generate an Admin Access token. The root/super-admin account cannot generate tokens as the Settings button is not available for that account level.
Token Generation Process
1
Login as Admin
Ensure you’re logged in with an admin account (not super-admin)
2
Navigate to Settings
Go to Settings > Admin Users in the Console
3
Access Token Options
Click the settings ’…’ button next to your admin profile
4
Generate Token
Select Admin Token from the dropdown menu
Token Management
Token Security
Token Security
Security Best Practices
- Store tokens securely in environment variables
- Never expose tokens in client-side code
- Implement proper token rotation policies
- Monitor token usage and access patterns
- Tokens have defined validity periods (shown in red)
- Tokens are invalidated if admin user is deleted
- Regular token rotation recommended
- Audit token usage regularly
API Integration
API Integration
Using Admin TokensToken Validation
- Verify token validity before API calls
- Handle token expiration gracefully
- Implement proper error handling
- Monitor API response codes
Token Validity: The validity period of admin tokens is displayed in red text under the token. Tokens become invalid if the associated admin user account is deleted.
Advanced Settings
Brand Settings
Customize platform branding, colors, and visual elements to match your organization’s identity
Security Settings
Configure advanced security policies, access controls, and authentication requirements
Image Moderation
Set up automated image moderation and content filtering policies for uploaded media
Admin Token Management
Manage administrative access tokens and API authentication for secure platform integration
Settings Categories
Webhook Configuration
- Real-time event notifications
- Custom endpoint management
- Event filtering and routing
- Security and authentication
- Admin token generation
- API key management
- Rate limiting configuration
- Access control policies
Troubleshooting
Webhook Issues
Webhook Issues
Common Problems
- Webhook endpoint not responding
- Invalid SSL certificate
- Authentication failures
- Event delivery delays
- Verify endpoint URL and SSL configuration
- Check secret key implementation
- Monitor webhook logs and responses
- Test with webhook debugging tools
Push Notification Problems
Push Notification Problems
iOS Issues
- Certificate expiration
- Invalid bundle ID
- Provisioning profile mismatch
- APNs connectivity issues
- Invalid FCM server key
- Package name mismatch
- Google Play Services issues
- Baidu configuration errors
API Token Problems
API Token Problems
Authentication Failures
- Expired tokens
- Invalid token format
- Insufficient permissions
- Account deactivation
- Regenerate expired tokens
- Verify token permissions
- Check admin account status
- Review API endpoint access
Best Practice: Regularly review and update your settings configuration to ensure optimal security and performance. Set up monitoring and alerts for critical integrations like webhooks and push notifications.