To authorize sharepoint to access our solution, I created an authorization and an invitation from the sharepoint site to our web solution. Today, the SharePoint Add-In works correctly, but in terms of security, all users who access our solution add-in can add, modify or delete the data in the sharepoint site.
How can I restrict access rights? How can I detect who is authorized to use the site and who is not? And how do I know what are their rights and their role?