Single Sign On

How to use the Single Sign On (SSO) once you receive a one time token (by API)

## What Is vcita SSO
SSO services permit a user to use one set of login credentials (e.g., name/email and password) to access multiple applications. The service authenticates the end user only once for all the applications the user has been given rights to and eliminates further prompts when the user switches applications during the same session.

For example, if you login to a Google service such as Gmail, you are automatically authenticated to YouTube, AdSense, Google Analytics, and other Google apps. Likewise, if you log out of your Gmail or other Google apps, you are automatically logged out of all the apps; this is known as Single Logout.

## What Are The Benefits
SSO provides a seamless experience for users when using your applications and services. Instead of having to remember separate sets of credentials for each application or service, users can simply login once and access your full suite of applications.

## The User Experience
Whenever users go to a domain that requires authentication, they are redirected to the authentication domain where they may be asked to log in. If the user is already logged in at the authentication domain, they can be immediately redirected to the original domain without signing in again.

## How To Use vcita SSO
For each session you've to receive one time token key that uses you for login the system.

Note: The login link will only be valid for 30 minutes.

** More information you can find at the Sinle Sign On section at the API reference.

## Phases & Responsibillities

Phase (1) - vcita

  • vcita built the SSO API that described at the Single Sign On part at the API reference.
  • vcita will provide the SSO Token, API Token, and the SSO login route to Partner.

Phase (2) - Partner

  • Partner will use the SSO API from Phase (1) to build the SSO flow to support sending users from Partner to vcita.
  • Partner will build a page/route that will handle the SSO flow for users clicking through links in their emails
  • Partner will provide the URL for that route to vcita

Phase (3) - vcita

  • vcita will implement the functionality that redirects logged out users to Partner for SSO.

If you have any question, please contact us at [email protected]

Did this page help you?