Daon Connector
The Daon connector lets you use Daon IdentityX for multi-factor authentication (MFA) in your PingOne DaVinci flow.
The connector triggers authentication on a user’s mobile device using an app that was built with the Daon mobile SDK. DaVinci can get the result of the authentication process by polling Daon or by listening for a webhook response.
Setup
Requirement
To use the connector, you’ll need:
-
An existing integration between your mobile app and Daon IdentityX
-
Your Daon access information, including:
-
Admin credentials
-
The URL for your IdentityX application programming interface (API) service
-
Configuring the Daon connector
Add the connector in DaVinci as shown in Adding a connector, then configure it as follows.
Connector configuration
API Base URL
The URL for your Daon IdentityX API. For example, https://api.identityx-cloud.com/yourcompany/IdentityXServices/rest/v1
Using the connector in a flow
Authenticating users with results via webhook
This flow asks the user to enter their username in an HTML form. The connector gets their Daon user ID and initiates the authentication process on the user’s mobile device.
The user sees a "Check your device" message that stays on screen until as long as the flow challenge remains unresolved.
In a secondary branch, the connector listens for a transaction result that Daon sends using a webhook. When DaVinci receives the result, the flow challenge is updated and the waiting message changes to show the result of the authentication process.
-
Download the Daon - Authentication with results via webhook flow template. For help, see Using DaVinci flow templates.
-
Configure the Create Authentication Request node by adding your Daon authentication policy in the Policy URL field.
-
Test the flow by clicking Save, Deploy, and Try Flow.
Authenticating users with results via polling
This flow asks the user to enter their username in an HTML form. The connector gets their Daon user ID and initiates the authentication process on the user’s mobile device.
The user sees a "Check your device" message, and the flow begins polling Daon until the authentication result is available. When DaVinci gets the result, the flow updates the waiting message to show the result of the authentication process.
-
Download the Daon - Authentication with results via webhook flow template. For help, see Using DaVinci flow templates.
-
Configure the Create Authentication Request node by adding your Daon authentication policy in the Policy URL field.
-
Test the flow by clicking Save, Deploy, and Try Flow.
Capabilities
Get User by Username
Retrieve a user record with the user’s login
Show details
Properties
- User Login
textField
-
The userId of the user you want to retrieve. E.g. user@example.com
Input Schema
- default
object
-
- apiUrl
string
required
- username
string
required
- password
string
required
- userLogin
string
required
- apiUrl
- Output Schema
- output
object
-
- rawResponse
object
- userId
string
- rawResponse
Create Authentication Request
Create an authentication request on the Identity X server for a user
Show details
Properties
- User ID
textField
-
The ID of the user.
- Authentication Description
textField
-
A description of the authentication request - if using the IdentityX Authenticator, this will be provided to the user.
- Authentication Type
dropDown
-
Specifies the protocol type of the authentication request.
-
Fido 1 (Default)
-
Fido Offline
-
IdX
-
REST
-
OTP
-
Fido 2 W3C
-
- Policy URL
textField
-
The policy associated with the authentication request.
- Push Notification Type
dropDown
-
Provides operation instructions to the mobile application how to behave when a push notification is received.
-
Refresh
-
Verify Without Confirmation
-
Verify With Confirmation (Default)
-
- Secure Transaction Content Type
dropDown
-
Describes the value of the secureTransactionContent and secureTextTransactionContent property.
-
text/plain (Default)
-
image/png
-
text/plain;image/png
-
- Secure Text Transaction Content
textField
-
Text to be displayed securely to a user. The secureTransactionContentType property must be "text/plain" or "text/plain;image/png".
- Secure Image Transaction Content
textField
-
Image to be displayed securely to a user. The secureTransactionContentType property must be "image/png" or "text/plain;image/png".
Input Schema
- default
object
-
- apiUrl
string
required
- username
string
required
- password
string
required
- userId
string
required
- description
string
required
- type
string
required
- pushNotificationType
string
required
- secureTextTransactionContent
string
- secureTransactionContent
string
- secureTransactionContentType
string
required
- policyUrl
string
required
- apiUrl
- Output Schema
- output
object
-
- rawResponse
object
- status
string
- id
string
- rawResponse
Get Authentication Request
Retrieve an authentication request
Show details
Properties
- Authentication Request Id
textField
-
The identifier of the authentication request to be retrieved.
Input Schema
- default
object
-
- apiUrl
string
required
- username
string
required
- password
string
required
- authId
string
required
- apiUrl
- Output Schema
- output
object
-
- rawResponse
object
- complete
boolean
- verificationResult
string
- fidoResponseCode
number
- fidoResponseMessage
string
- status
string
- rawResponse