Single Sign On FAQ

Last updated:October 29, 2024

We are excited to announce the upcoming launch of the new version of our Single Sign-On (SSO) service. This migration guide is specifically for customers with their own applications using our SSO. Follow the steps below to ensure a smooth transition.

Updated Endpoints

Please update your application to use the following new endpoints:

Authorization Request Parameters

When making an authorization request to /sso/v2/authorize, please include the following parameters:

• scope: Specifies the access privileges. For OpenID Connect, use:
  • openid: Indicates the use of the OpenID Connect protocol to verify the user’s identity
  • profile: Requests additional profile information such as name and preferred_username (email).
• login_hint: (Recommended) Customizes the login prompt UI based on the CSS/JS styling set up at the indicated entity id.

User Info Response Parameters

When making a user information request to /sso/v2/userinfo, please note the change in the attached_to response parameter:

• Previous Format:

  {
    "attached_to":[
  	{
  	  "id":"/PSPName",
  	  "type":"[name: PSP, value: 0]"
  	},
  	{
  	  "path":"/PSPName/DivisionName/MerchantName",
  	  "type":"[name: Merchant, value: 0]"
  	}
    ]
  }

• Updated Format:

  {
    "attached_to":[
  	{
  	  "path":"/PSPName",
  	  "level":"PSP",
  	  "entityId":"[entity id]"
  	},
  	{
  	  "path":"/PSPName/DivisionName/MerchantName",
  	  "level":"MERCHANT",
  	  "entityId":"[entity id]"
  	}
    ]
  }

---

See also

• Single Sign On Guide