Platform SSO enables single sign-on for an operator or any enabled account. Using Xenioo SSO API, you can automatically login any user to a specific chatbot if the user is the current owner of the chatbot or is part of the team at any level.

Request

The following request will generate a SSO token for the user test@email.com for a given chatbot.

curl --location --request POST 'https://<NODE>.xenioo.com/authorization/sso' \
--header 'Content-Type: application/json' \
--data-raw '{
    "AccountAPIKey":"<...>",
    "BotAPIKey":"<...>",
    "BotAPISecret":"<...>",
    "Email":"test@email.com"
}'

Response

If successful, the response will contain a valid SSO API Token and the full link to the SSO url that can be used in the browser to automatically login the user. The generated toke will expire after 60 minutes..

{
    "Home":"https://<NODE>.xenioo.com/...",
    "Token":"<...>",
    "Expires": 60
}

The token generated cannot be used for any other type of Platform API requests.

Redirecting and Logout

The Home property of the response contains the full url root of the target chatbot interface. You can add, at the end of the url, the navigation fragments of the section you need to reach and, if the token contains sufficient permissions, Xenioo will automatically redirect the user there.

As an example, given the following Home value:

https://dev.xenioo.com/auth/sso/<token>

You could redirect your user to the selected bot conversation section adding the navigation section at the end:

https://dev.xenioo.com/auth/sso/<token>/conversation

If your SSO package also contains the embeddable option, the standard Xenioo header would not be visible. To logout the current user, just call the standard SSO token url adding /logout at the end like in the following example:

https://dev.xenioo.com/auth/sso/<token>/logout

Response Codes

This endpoint will reply with the following standard HTTP codes.