Our platform sends users emails & SMS with links back to the the application. These emails & SMS are related to scheduling appointments etc. (meeting requests, meeting reminders, new lead from contact form etc.). If the user is currently logged in to system they will not have issues clicking on the link and arriving at the correct destination. However, if the user is not logged in then normally we would expect the user to enter their email and password to login.
In this case, you have to follow the next steps:
Step 1
curl --location --request LINK 'http://Partner.com/vcita/sso_login?redirect_to=https://Partner.admin.com/app/events/event_uid?action=add_clients&email_token=aaabbbccc111222&from_email=true&flow=Email_Action&flow_origin=event_scheduled&flow_action=add_clients'
Partner will initially provide to us:
- A route to redirect to for these users that will handle the SSO login process
The SSO process will consist of:
- Users that are not logged in that arrive at the Partner white label domain will be redirected back to a URL to be provided by Partner. We will add the original URL of the request as a parameter.
You can try it by clicking the next button!
Step 2
curl --location --request LINK 'https://api.vcita.com/v1/partners/sso/login?business_uid=xxxzzz111&sso_token=aaabbbccc111222&redirect_to=https://Partner.admin.com/app/events/event_uid?action=add_clients&email_token=aaabbbccc111222&from_email=true&flow=Email_Action&flow_origin=event_scheduled&flow_action=add_clients'
Partner will use the steps outlined in to generate an SSO login path and will add the original URL as a parameter. Partner will then redirect the user to that path.
The user will then get logged in and redirected to the original URL requested.
You can try it by clicking the next button!