Verification (User authentication)
Authentication is one of the major parts of security; it is the process by which we recognize the authenticity of the entity. Since cidaas offers a variety of authentication options, such as pattern, face, and many more, we take the utmost care about the originality of the identity.
In this section, you will get to know how you can log in using the configured authentication methods as well as how to authenticate using any of the methods below.
Technical Integration
| API | Description | Link |
|---|---|---|
| Get the configured authentication methods | Displays the configured authentication methods on the user login page, e.g., after configuring a pattern; The user gets the pattern MFA on the login page. | Link to API |
| Initiate the authentication | This API is used to initiate the configured authentications, e.g., when a user clicks on the Touch ID authentication, it initiates the Touch ID authentication. | Link to API |
| Perform the authentication | After successfully authenticating via, e.g., the authenticator app, the enrollment completion will finally enroll the user. | Link to API |
| Continue Login After Authentication | After successfully authenticating, this API completes the login process and redirects to the redirect_uri with a code or access token. | Link to API |
More In-Depth View per Method
| cidaas Authentication mechanism | Description | Authentication |
|---|---|---|
| You enter the code sent to your registered email address. | How to use Email | |
| Magic Link | The application sends a so-called Magic Link and keeps polling as long as the user successfully clicked on the link that was sent to the mail account. When this succeeds and the status switches to Verified, it can continue the authentication process | How to use Email |
| Text message | Identification via a code that is sent to your phone via SMS. | How to use Text message |
| FIDO2/Passkeys/FIDO U2F | This standard uses a private and public key to validate your identity. | How to use FIDO |
| TOTP Verification | Time-based One-time Password (TOTP) is a temporary passcode (six-or-eight digit) generated by an algorithm, used for authentication based on your time and device. | How to use TOTP |
| Smart Push notification | Technique that uses the Push notification feature of a mobile device and prompts you to choose the right code (as displayed on the web app) among a set of codes | How to use push |
| Touch ID Recognition | Biometric procedure to verify identity that is based on fingerprint | How to use touch-id |
| Pattern Recognition | Identity verification that requires you to confirm a pattern, like those commonly used in mobile lock patterns. | How to use pattern |
| IVR Recognition | You enter the code that is prompted via a phone call as proof of your identity. | How to use IVR |
| Backup Code | An 8-digit backup code can be used to sign in to your account. | How to use Backupcode |
| Face Recognition | Identity verification using advanced biometric methods where the face is uniquely identified. | How to use face-recognition |
Authentication in the Default Hosted Page
Log In
Log in to your cidaas account and enter your credentials.
Choose the authentication method
Once you click on the desired authentication method,
- A push notification is triggered (in the case of pattern, touch, face, and push).
- A verification code is sent via text message or email (in the case of text message and email).
- a call that prompts the code (in the case of IVR)
- Enter the backup code (in case of a backup code).
Authenticate the MFA
-
Click on the notification sent to your phone or check your phone for a verification code.
-
Enter the required authenticity parameter.
-
For face, pattern, push, and touch, you need to enter the same parameter as entered during configuration.
-
For text, IVR, and email, you need to enter the verification code.
-
For the backup code, you need to enter the eight-digit code collected during configuration.
-
For FIDO, you just need to touch the fingerprint sensor
| API | Description | Link |
|---|---|---|
| Initiate FIDO | This API is used to initiate the FIDO authentication | Link to API |
| Perform the FIDO authentication | After successfully authenticating via, e.g., the authenticator app, the enrollment completion will finally enroll the user. | Link to API |
Success message
A success message will pop up, and you will be logged into your account using the desired MFA.
Need Support?
Please contact us directly on our support page.