Opening Links
ODIN Apps will open link in new browser window or iframe. On receiving request, third party website needs to authenticate provided session details by calling ODIN page and on success response, it should allow user to access the website.
ODIN APPS will open link with query string data as per link configuration in WebAdmin. Link & Product parameters will be dynamically added.
π Examplesβ
a) Base64 encoded data passed in Query String
http://www.google.com?UserId=REFSVw==&SessionId=MHgwMUI0NzA5MkVBM0JDQUM0RkfGMTY0MENGQUMzNzY=&Link=1&Calling_App=RIO=&Target_App=Q0xJRU5UU1VNTUFSWQ==&Product=ODIN%20AERO
b) Base64 encoded data passed in Inline Parameters
URL Format: http://www.google.com/{userId}/{sessionId}/{product}
http://www.google.com/REFSVw==/MHgwMUI0NzA5MkVBM0JDQUM0RkfGMTY0MENGQUMzNzY/ODIN%20AERO?link=1
c) Implementation - AES encryption for SSO-Third party Links - WebAdmin Configuration
- In Configuration, View/Edit Third party links menu, New Encode mode introduce as βAESβ and βEncryption keyβ column introduced so Broker can configure Encryption key to be used for each SSO link.
- Encryption key set will be stored in database in encrypted format.
π Example Table (Web Admin View/Edit):β
| SSO Column | SSO Link | User ID | Session ID | Parameter 1 | Parameter 2 | Encode | Menu Type | URL Parameters In | URL Container Type | Encryption Key |
|---|---|---|---|---|---|---|---|---|---|---|
| SSO 1 | https://www.nseir | UserId | SessionId | Calling_App=FT | target_App=CLIENTSUMMARY | NONE | Sub Menu | QueryString | IFrame | βββ |
| SSO 2 | https://www.nseir | UserId | SessionId | Calling_App=FT | target_App=CLIENTSUMMARY | AES | Sub Menu | QueryString | IFrame | βββ |
- BackOffice/Third Party Sample URL (for reference):
Member's Back Office URL -
https://boffice.xyz.com/DealerDashboard/MoReport/Holding?UserId=hT1hBBZ%2BLCgqKjAjJvOL4g%3D%3D&SessionId=AaHaGINMYsqJ%2BS6C4mhHWr2F4KNicYhCNwr%2FocdcThYex%2Biw5SfoffEFrNDrogvsK&Link=2&Calling_App=3WNhIf%2F2VAmx5RuHGKYypA%3D%3D&Target_App=lloUcYxcIeAww8ICBKMImw%3D%3D&Product=ODIN%20AERO
ποΈ Note : Parameters values are AES encrypted and then URL encoded (Uri.EscapeDataString).