Skip to main content
There is no required framework, language, or folder structure for building a Custom App. You can use any stack that works for your team. What matters is that your app has the right pieces for Blnk Cloud to install it, launch it, and let it talk to the selected Cloud instance safely. For a security checklist before production, see Best practices. This page explains how to set up your codebase before you start building the full workflow, using the Stripe Sync app as an example:

What your codebase needs

Every Custom App is made up of four parts: The backend is the only part that holds your secrets. Ideally, the portal UI should never talks to Blnk directly; it should always go through your backend.

Set up app routes

Your app needs routes that Cloud can call to install, uninstall, and launch your app. You can name the routes however you want. The important thing is that each route exists and returns a response. For our demo Stripe Sync app, we’ll use Express to set up the routes:
routes.ts

Store app install data

When a user installs your app, Blnk Cloud sends installation details to your callback route. Your app needs a persistent place to store that data because it will need it later when the app is launched or when it makes API calls.
Note: You can use any database you want. For our Stripe Sync example, we’ll go with a simple SQLite instance.
At minimum, your app should store the following data from the install payload:
Do not store install data only in memory. If your server restarts, the app still needs to know which instance it is connected to and which key to use.

Security and best practices

Custom Apps receive scoped access to a Cloud instance during installation. Design your app so that access is stored safely, used only on the server, and checked before every action.
  1. Keep the API keys on the server: The api_key from the install payload should only be used by your backend. Do not expose it in browser code, local storage, cookies, portal URLs, client-side responses, or logs.
  2. Let your backend call Cloud: When the app portal needs data, it should not make requests to Blnk directly. Instead, it should call your backend first, then your backend speaks to Blnk.
  3. Encrypt API keys at rest: Store the full api_key encrypted. You can store api_key_prefix in plain text because it only helps identify the key. Do not use the prefix to authenticate requests.
  4. Use short-lived portal sessions: When Cloud launches your app, return a fresh portal_url. Do not return a permanent URL that always opens the app. If a session expires, ask the user to launch the app again from Cloud.
  5. Sign portal sessions: Use a SESSION_SECRET to sign portal sessions.
  6. Check permissions before actions: Store granted_permissions from the install payload. Before your app performs an action, check that the required permission was granted. For example, an app with only data:read should not perform write actions.
  7. Validate the install before launch: Before creating a portal session, confirm that the install exists, is active, and matches the installed_app_id, app_id, and instance_id in the portal request.

Run the example Stripe Sync app

Reference Stripe sync implementation.