This is the content of the topic you selected.
Login integration through our identity services gives your customers:
Secure and GDPR compliant login to your application, including 2-factor authentication
Out-of-the-box integration with the customer login system where applicable
Seamless experience when accessing Youforce and your application
Out-of-the-box provisioning of users in your application. No manual activities needed when an employee joins or leaves
Youforce can act as the identity provider of your application based on the industry standards SAML or OpenID Connect.
This means that users log in using either:
A Youforce account based on a username, password and 2nd factor
The identity system of our joint customer e.g. Active Directory
Note: Your integration is not impacted when users change the way a user logs in. (see ‘What do you use as the user identification?’)
All people that registered in Youforce can log in to your service. This includes:
The Youforce customer admin controls who can log in and when.
Upon login we return you a signed token based on SAML or OIDC containing the identification of the user that is accessing your application, using the UID - Unique User ID
Your application should support SAML and OpenID Connect (OIDC) for Single Sign-On.
Your application has a single SSO referrer end-point for all your customers
You should have access to the UID of employees
Communication should happen over TLS 1.2 or higher
Please log a ticket to get started. See Support
We are using a UID - Unique User ID as the identifier of a user. The UID is a globally unique id that will not change during the lifecycle of the user. The customer can change the way it’s users login, without impacting the integration with your application.
Most APIs return the UID of the employees when retrieving the employees from their endpoints. Besides that, we have an endpoint to retrieve the UID based on a personal code.
Publishing Date : 8/3/2020