Your suggested change has been received. Thank you.

close
Thales Logo

All

  • All
back

User registration

Registration with third-party mobile applications

search
printsuggest an edit

Registration with third-party mobile applications

copy link to clipboardIntroduction

Registration with third-party mobile application is possible using two step custom registration.

copy link to clipboardPrerequisites

Number of properties needs to be setup on the backend side, so be sure that it is properly configured. Proper two step custom registration IDP with scripts for both init and complete steps needs to be set up. Third-party app needs to be installed on the device and be ready to receive and emit App Links.

copy link to clipboardFlow overview

  1. App initiates custom registration with init request.
  2. Init response with sessionId and app link.
  3. App opens the third party app using app link.
  4. Third party app authenticates user and navigates back to the app using app link.
  5. App extracts artefactId from the app link and sends it to the backend along with sessionId.
  6. Registration finishes and app receives access/refresh token.
  7. Proceed with PIN creation flow.

copy link to clipboardExample of the flow

Your app needs to be able to receive App Links from third party app. Be sure to register correct app link in your manifest file.

copy link to clipboardImplement OneginiCustomTwoStepRegistrationAction interface.

public class App2AppRegistrationAction implements OneginiCustomTwoStepRegistrationAction {

  public static OneginiCustomRegistrationCallback CALLBACK;


  public App2AppRegistrationAction() {
  }

  @Override
  public void initRegistration(final OneginiCustomRegistrationCallback callback, final CustomInfo customInfo) {
    __ Init registration with null data
    callback.returnSuccess(null);
  }

  @Override
  public void finishRegistration(final OneginiCustomRegistrationCallback callback, final CustomInfo customInfo) {
    __ Extract "sessionID" and "app link" from json.
    JsonObject jsonObject = new JsonParser().parse(customInfo.getData()).getAsJsonObject();
    __ Save sessionId - you will need it later.
    String sessionId = jsonObject.get("sessionID").getAsString();
    String appLink = jsonObject.get("thirdPartyAppLink").getAsString();
        __Start third-party app
    context.startActivity(new Intent(Intent.ACTION_VIEW, Uri.parse(appLink)));
  }
}

On successful authentication in third-party app, it will run app link back into your app with json response. Unpack response value, parse it with sessionId into new json and send it back do the backend via callback.onSuccess(json) from finishRegistration method.

copy link to clipboardImplement OneginiCustomIdentityProvider interface.

public class App2AppIdentityProvider implements OneginiCustomIdentityProvider {

  private final OneginiCustomTwoStepRegistrationAction registrationAction;

  public App2AppIdentityProvider() {
    this.registrationAction = new App2AppRegistrationAction();
  }

  @NonNull
  @Override
  public OneginiCustomRegistrationAction getRegistrationAction() {
    return registrationAction;
  }

  @NonNull
  @Override
  public String getId() {
    return "app2app";
  }
}

In example above, IDP id is app2app , be sure to use an id of the IDP which is set in your backend.

copy link to clipboardAdd Custom Identity Provider

return new OneginiClientBuilder(applicationContext, createPinRequestHandler, pinAuthenticationRequestHandler)
  ...
  .addCustomIdentityProvider(new App2AppIdentityProvider())

copy link to clipboardImplement Registration Handler

final OneginiRegistrationHandler registrationHandler = new OneginiRegistrationHandler() {

    @Override
    public void onSuccess(final UserProfile userProfile, final CustomInfo customInfo) {
      __ Handle registration success
    }

    @Override
    public void onError(@NonNull final OneginiRegistrationError oneginiRegistrationError) {
     __ Handle registration error
    }
  };

copy link to clipboardRegister user

oneginiClient.getUserClient().registerUser(identityProvider, registrationHandler);

On this page