Skip to main content

Authentication

๐Ÿ” Authentication of Parameters (Callback to ODIN)โ€‹

This step needs to be performed by third party systems. To authenticate parameters, invoke ODIN URL with query string parameters as per below details.

๐Ÿ”„ Requestโ€‹

  • Method: GET
  • Page Name: ValidateBackOffice.aspx
  • Parameters: In query string. Parameter name should be same as configured in WebAdmin and parameter value should be same as received in URL.

a. UserId โ€“ User Id of the logged in User. This is a mandatory field.
b. SessionId โ€“ SessionId which has been received for the logged in User. This is a mandatory field.
c. Link โ€“ Link is nothing but the Id of the back-office menu.
d. CheckSession โ€“ this is a newly created Optional Parameter. โ€œLinkโ€ and โ€œCheckSessionโ€ field, only one of them is mandatory.

  • If any value is passed in โ€œCheckSessionโ€, then the Session Id & User Id will be non-encrypted.
  • If โ€œNullโ€ value is passed, then the โ€œLinkโ€ option (pt. c above) will have to be passed.

e. Mode - Newly created Optional Parameter to get the Userโ€™s Personal Information. If the value of the same is passed as 1 then in response you will get the Userโ€™s personal data such as PANno, EmailId, Mobileno, FullName and UCC.

URL Format:
https://172.25.90.96/Aero/NetNet/ValidateBackOffice.aspx?UserId=REFSVw==&SessionId=MHgwMUI0NzA5MkVBM0JDQUM0RkfGMTY0MENGQUMzNzY&CheckSession=1&Mode=1

Highlighted part of URL will be as per hosting of NetNet website at member end.

๐Ÿ“ค Response (without Mode)โ€‹

Content-Type: XML, complete response will also be encoded as per value of Encode Field in WebAdmin.
e.g. Base64 Encoded Response:
PFJlc3BvbnNlPjxDb2RlPjEwMDAwPC9Db2RlPjxNZXNzYWdlPkFVVEhFTlRJQ0FUSU9OIFNVQ0NFU1M8L01lc3NhZ2U+PC9SZXNwb25zZT4=

Success Response:
<Response><Code>10000</Code><Message>AUTHENTICATION SUCCESS</Message></Response>

Failure Response:
<Response><Code>10104</Code><Message>AUTHENTICATION FAILED</Message></Response>
<Response><Code>10103</Code><Message>INVALID NO OF PARAMETERS</Message></Response>

๐Ÿ“ฆ Response (when Mode=1)โ€‹

<Response><Code>10000</Code><Message>AUTHENTICATION SUCCESS</Message> <PAN>AEHPA1868D</PAN> <EMAILID>alok.singh@synapsewave.com</EMAILID> <MOBILENO>8882825188</MOBILENO> <FULLNAME>MGMT USER API</FULLNAME> <UCC>MGMT02</UCC> </Response>

๐Ÿ—‚๏ธ Notesโ€‹

  1. Third party system will have to manage its own Session. Logout from Breeze/Wave/Diet will not have any impact on third party systemโ€™s Session and vice versa.
  2. Name of links can be configurable from respective product menu master.
  3. Backoffice Integration Flow Diagram: Refer to Backoffice Integration Flow Diagram.pdf