Page History

...

Please use the client_id as part of the authentication request. The client_id is a name of another application ,that user wants to use additionally. When user authenticate to another service using SSO, it opens browser UI login page again, it uses cookies and issues token without re-entering credentials. A token will be generated based on the new client_id and cookies which will allow single-signon logins at the same time and increase security because credentials are not entered and transferred many times and the token is only valid for this device and client (Browser, Mobile App).

...

Column
Image Removed

Column
Image Removed

Section

Column
Image Added

Column
Image Added

Deck of Cards

id	bimAuthenticateToken

Card

label	HTTP Method

POST

Card

label	URL / Resource / JSON Structure

Resource: authorize

URL: https://api-stage.bimplus.net/v2/authorize

JSON Structure:

Name	Mandatory / Optional	Type	Description
user_id	mandatory	string	The email address of the user
password	mandatory	string	The user's password
client_id	optional	string	The identifier of the used client
application_id	optional	string	The id of the application

Card

label	Description

Authenticate by requesting and receiving a token.

Card

label	Request

Code Block

Content-Type: application/json

Code Block

{
 "user_id" : "test@bimplus.net",
 "password" : "test"
}

Card

default	true
label	Response

Code Block

Status: 200 OK

Code Block

{
access_token: "e3271e89d8ea474c82745039bc2bed0d"
expires_in: 2591999
client_id: "9fd0bb9d-570b-4719-bfae-93e2f879c19a"
token_type: "BimPlus"
}

...

Math Editor