How to activate the Single Sign On (SSO) protocol ?

This article is intended for the following people:

Insurers/Bankers Brokers/Distributors Sellers

For more information on roles on Plug, please see this article.

Particeep allows on its solutions to delegate authentication to a third party solution and therefore to activate a Single Sign On (SSO) protocol

We use a secure distributed authentication process for this.

How does it work ?

  • The user logs in on the third-party solution
  • From the third-party solution he is redirected to the Particeep website
  • Add in the connection url a shared token encrypted by a secret containing the user's key connection information
  • Analysis of the token via a cryptographic function
  • Validation of the token and authentication on the platform.

The secret is a random string known only to the solution and the authentication server.

This authentication system is based on the protocol developed by Google : Macaroons 

For more information: https://ai.google/research/pubs/pub41892

How the token is generated ?

Several token generation libraries exist 

It is then essential to define the rules of generation of the token (ex : IP etc…)

To generate a token:  https://github.com/rescrv/libmacaroons

Still need help? Contact Us Contact Us