This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 73%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Hi,
We are building a personal tab to render our web application inside Teams. Our web application serves customers from different domains.
So, We have to add all the domains manually under the validDomains list to support all the customers.
And every time, if we add a new customer, we would have to add their domain to the validDomains list and submit the Teams App. Since this process is repeating and time-consuming, is there any workaround to solve it, without submitting the Teams App multiple times?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 78%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
There is no way to dynamically set validDomains list in app manifest. However you can update the app with new manifest in app catalog section in Teams, so that you don't have to submit it multiple times.
Thanks,
Prasad Das
If the response is helpful, please click "Accept Answer" and upvote it. You can share your feedback via Microsoft Teams Developer Feedback link.
Hi Prasad Das,
Can we update the manifest of the already approved app from the app catalog section?
You can update the app on the Manage apps page in the Microsoft Teams admin center. To do this, in the left navigation of the Microsoft Teams admin center, go to Teams apps > Manage apps. Click the app name, and then click Update. Doing this replaces the existing app, and all app permission policies and app setup policies remain enforced for the updated app.
https://learn.microsoft.com/en-us/MicrosoftTeams/upload-custom-apps#update
Hi Prasad Das,
The Update option is not available for the approved App. It is only available for non-approved Apps. Can you confirm the same?
Thanks for responding back. Then i guess there is no such way to do so
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 13%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
It's 2025, and there seems to be no out of the box solution or an online documentation advising how to manage multi-tenant applications just like the OP's scenario. I know a lot of time has passed, but I wanted to registerd on here just to provide a solution for future devs in the same situation.
Our custom application (tab on an existing bot app) required users to login to their own platform. this required SSO, and SSO is usually blocked due to CORS when navigating within the iFrame that the tab renders.
To go about this, we launch a popup microsoftTeams.authentication.authenticate where the targetURL was on a domain that's found under the ValidDomains (same as the tab's url). this targetURL was a redirect page that passed all necessary parameters to the actual page we wanted (since the actual destination was not part of the ValidDomains, so notifySuccess() wouldn't have worked after a login). Then, once the SSO login was complete, the page sends the data encrypted to a "finish.html" script that called the notifySuccess or notifyFailure callback back to microsoftTeams.authentication.authenticate.
So, in our case, we went around the validDomains manifest submission for over 500+ domains.
