Getting Started
Whether you’re a seasoned developer or interested in trying out “vibe coding” (creating your own applications using emerging AI tools), we’re here to help! Let’s start by defining some basic terms… Admin API (Application Programming Interface): On Mighty, our Admin API lets you (as a Host) connect 3rd-party services to your Mighty Network, then push and pull information. Example: syncing your community’s member data with Salesforce or another CRM. Headless API: Our Headless API (currently invite-only) lets you create custom applications that your members can connect and interact with as themselves. Example: embedding a custom “personality quiz” for members to take, then share their results. Embeds (iframes): The way 3rd-party applications and websites can be embedded directly into your Mighty Network. When coupled with either API and our “authenticated iframes” feature, custom applications can now seamlessly integrate with your community. Note: For the most seamless iframe experience across all platforms, you’ll need to ensure that you’re on the following builds or later:- iOS: 8.274.80
- Android: 8.274.43
.png?fit=max&auto=format&n=yttUQtD_2_BfVa1C&q=85&s=80717ee92c2e69f4e3e83df6955f16f8)
- Basic OAuth Sample
- Member Map Sample
- Leaderboard Sample
- Mini-Website Sample
- Survey Sample
- Personality Quiz Sample
- Habit Tracker Sample
Customizing
While editing a sample template (or creating your own from scratch), there are a few pieces of information you may need to provide, depending on the template you pick. Here’s where to find everything: Admin API Key: You’ll grab this when you create a new API key on the Admin API page within the Admin area. We recommend using a different Admin API Key per application you create. Headless IDs, Secrets and Redirect URI(s): You can get these when you create a new OAuth Application on the OAuth Applications page within the Admin area (note that you’ll need to apply for early access to the Headless API before seeing this option). The Redirect URI(s) for Lovable will typically be in this format (and Lovable will provide them for you, one for your published app and one so it can work inside the Lovable preview area): https://YOURLOVABLEURL/api/mighty/callback https://YOURLOVABLEPREVIEWURL/api/mighty/callback Network ID: You can easily grab this on the Admin API page within the Admin area. Space ID(s): If you want to teach your application to do something in a specific Space, just open the relevant Space in a desktop browser and grab the number near the end of the URL (that’s the Space ID). Once you publish your application, you’re then ready to embed it into your community! While you can add it in multiple places as an embed, we recommend starting with the “Page” feature within a Space. If your application only uses the Admin API, you can embed it with a standard iframe snippet like this one: <iframe src=“YOURURL” width=“100%” height=“500” title=“My Application” style=“border:none;”></iframe> Just add your Lovable application’s full URL. You can also adjust the “title” and height to your liking. Additionally, if you click on the embed’s preview before saving, you can now decide if you’d like the embed to be narrow or wide (when viewed on desktop computers). If your application uses the Headless API, you’ll want to check the “This embed uses a Mighty OAuth application” checkbox (visible once you’ve created your first OAuth Application within the Admin area), as this will ensure that authentication is handled properly across all platforms. Important Notes and Tips- When enabled, the “Authenticated iframes” feature will help streamline the connection experience to your custom application for members across all devices, but please note that by default your members (if on a shared device) will need to sign out of your custom app in addition to your overall Mighty Network.
- When creating a new OAuth Application, you can decide how much access (and for which roles) to offer, and we always suggest keeping it scoped as narrowly as possible (only ask for what your app will need). Additionally, keep the “Confidential client” option checked and the “Skip consent screen” unchecked (these are the defaults anyway) unless needed for your specific case.
- When customizing your application, always be sure to prompt Lovable to properly store secrets (like API keys/secrets) or sensitive information (it should never appear in the code, and Lovable will help you with this).
- Before publishing and launching, ask Lovable to do a security review on your project.
- We’ll continue adding and updating our sample projects, so please check back often!
Happy vibe coding!