Single Sign-On

Owned by Renata Rusecka
Last updated: Oct 16, 2023 by Björn Östberg
1 min read

To integrate the single sign-on you will need to request two parameters from Customer Alliance:
Access key (key) and Secret key (key).


This document provides information on how to integrate the single sign-on from your application to Customer Alliance. Users of your application won’t need to provide credentials again when using Customer Alliance portal.

The JWT single sign-on process

When a user authenticates using SSO they go through the following process:

  1. The user navigates to your private portal.

  2. When the user clicks in your portal that want to access to Customer Alliance.

  3. Your application builds a JWT authentication link.

  4. Customer Alliance validates the JWT link provided.

  5. After a successful validation the user is granted access to the private Customer Alliance portal.

Requirements

To build the link that can authenticate your users you need two parameters from Customer Alliance:

  • Access key (key)

  • Secret key (key)

Authentication link example

https://go.customer-alliance.com/sso/jwt?access_key={access_key}?token={token}

Curl call example:

curl --location --request GET 'https://go.customer-alliance.com/sso/jwt?access_key={access_key}?token={token}'

Building the Json Web Token (JWT)

Payload

{ iat: iat, //Unix Timestamp email: "user.email@example.com", //The user to authenticate in Customer Alliance }

The JWT HS256-encoded will be signed with the Secret Key provided.