Versions Compared

Old Version 18

changes.mady.by.user Mustafa Korkmaz

Saved on

compared with

New Version Current

changes.mady.by.user Mustafa Korkmaz

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

The Common Identity API helps authenticate against private resources or sign documents digitally.

...

Route parameter name

Description

authenticationId

Location header value claimed after succesful [POST] /api/authentications request

partnerId

Desired NEXT PartnerId

3. [GET] /api/authentications/{partnerId}/{authenticationId} (GetAuthenticationAsync

...

)

It could be called anytime once an authentication is created. The best case for you your business to call this endpoint would be the place where you check verify whether the user authentication is complete or not. You can easily understand it by checking the success response property value. true means the authentication workflow is completed successfully. (Step 9) (Step 9)

Route parameter name

Description

authenticationId

Location header value claimed after succesful [POST] /api/authentications request

partnerId

Desired NEXT PartnerId

2. Signing

Workflow Diagram

...

API Endpoints

1. [POST] /api/signing (PostSigningAsync)

Creates a new signing. (Step 2)

If succeeds, returns signingId as a GUID in the location header. (Step 3)

Payload parameter name

Description

partnerId

Desired NEXT PartnerId

...

method

Signing method to use:

nbid, nbid-mobil Norwegian BankID / Mobile

sbid, sbid-mobil Swedish BankID / Mobile

content

Base64 encoded string content to be signed

contentType

application/pdf or text/plain

nationalId

National Id for user allowed to sign (social security number). Leave empty if any user can sign.

phone

Phone number for user allowed to sign. Leave empty if any user can sign.

callbackUrl

Your url that user will be redirected back to. (Step 8)

SigningId value will be appended as a query string parameter with id name when Identity API calls you back.

2. [GET] /bankid/{partnerId}/{signingId}/sign (GetBankIdSigningUrlAsync)

End user should be opening this page upon a new signing is created and signingId is claimed. (Step 4)

Info

Upon opening this page, end user will be redirected to the corresponding service provider’s signing page. (Step 5)

3. [GET] /api/signing/{partnerId}/{signingId} (GetSigningAsync)

It could be called anytime once a signing is created. The best case for your business to call this endpoint would be the place where you verify whether the user signing is complete or not. You can easily understand it by checking the success response property value. true means the signing worflow is completed successfully. (Step 9)

4. [GET] /api/signing/{partnerId}/document/{documentId} (GetDocumentAsync)

Optionally you may want to see the content for the document as Base64 encoded string. The documentId route parameter can be found in the response of [GET] /api/signing/{partnerId}/{signingId} method.

Swagger Documentations

Below you will find a ready-to-use Swagger collection file files for those 3 7 endpoints above grouped by workflow.

View file
nameIdentity API - Authentication Workflow.postman_collection.json

2. Signing

...

View file
nameIdentity API - Signing Workflow.postman_collection.json

Note

Callbacks are executed from Identity API servers towards your URLs provided in [POST] /api/authentications or [POST] /api/signing request payloads.

If the server behind your callbackUrl has a firewall protection, you should whitelist these outbound IPs below.

23.97.163.47, 23.97.163.156, 23.97.163.227, 23.97.163.3, 40.115.63.9, 40.115.63.88, 13.93.43.47, 40.115.63.31, 40.115.63.94, 20.238.219.90, 20.238.220.168, 20.238.221.115, 20.238.221.130, 20.238.222.82, 20.238.222.87, 13.69.68.26