Daon Connector - PingOne Cloud Platform - PingOne Services - PingOne

Page created: 1 Jun 2022 |

Page updated: 5 Apr 2023

| 4 min read

Content Type Connector PingOne DaVinci Product PingOne Cloud Platform PingOne PingOne Services Home Page Doc Tools

The Daon connector lets you use Daon IdentityX for multi-factor authentication (MFA) in your PingOne DaVinci flow.

The connector triggers authentication on a user's mobile device using an app that was built with the Daon mobile SDK. DaVinci can get the result of the authentication process by polling Daon or by listening for a webhook response.

Setup

Resources

For information and setup help, see the following documentation:

DaVinci documentation:
- Adding a connector
- Using DaVinci flow templates

Requirements

To use the connector, you'll need:

An existing integration between your mobile app and Daon IdentityX
Your Daon access information, including:
- Admin credentials
- The URL for your IdentityX API service

Configuring the Daon connector

Add the connector in DaVinci as shown in Adding a connector, then configure it as follows.

Connector configuration

API Base URL

The URL for your Daon IdentityX API. For example, https://api.identityx-cloud.com/yourcompany/IdentityXServices/rest/v1

Admin Username

The username for your Daon administrator account.

Admin Password

The password for your Daon administrator account.

Using the connector in a flow

Authenticating users with results via webhook

A screen capture of the complete authentication flow.

This flow asks the user to enter their username in an HTML form. The connector gets their Daon user ID and initiates the authentication process on the user's mobile device.

The user sees a "Check your device" message that stays on screen until as long as the flow challenge remains unresolved.

In a secondary branch, the connector listens for a transaction result that Daon sends using a webhook. When DaVinci receives the result, the flow challenge is updated and the waiting message changes to show the result of the authentication process.

Download the Daon - Authentication with results via webhook flow template. For help, see Using DaVinci flow templates.
Configure the Create Authentication Request node by adding your Daon authentication policy in the Policy URL field.
Test the flow by clicking Save, Deploy, and Try Flow.

Authenticating users with results via polling

This flow asks the user to enter their username in an HTML form. The connector gets their Daon user ID and initiates the authentication process on the user's mobile device.

The user sees a "Check your device" message, and the flow begins polling Daon until the authentication result is available. When DaVinci gets the result, the flow updates the waiting message to show the result of the authentication process.

Download the Daon - Authentication with results via polling flow template. For help, see Using DaVinci flow templates.
Configure the Create Authentication Request node by adding your Daon authentication policy in the Policy URL field.
Test the flow by clicking Save, Deploy, and Try Flow.

Capabilities

Get User by Username

Retrieve a user record with the user's login

Properties

User Login textField: The userId of the user you want to retrieve. E.g. user@example.com

Input Schema

default object

apiUrl string required
username string required
password string required
userLogin string required

Output Schema

output object

rawResponse object
userId string

Create Authentication Request

Create an authentication request on the Identity X server for a user

Properties

User ID textField

The ID of the user.

Authentication Description textField

A description of the authentication request - if using the IdentityX Authenticator, this will be provided to the user.

Authentication Type dropDown

Specifies the protocol type of the authentication request.

Fido 1 (Default)
Fido Offline
IdX
REST
OTP
Fido 2 W3C

Policy URL textField

The policy associated with the authentication request.

Push Notification Type dropDown

Provides operation instructions to the mobile application how to behave when a push notification is received.

Refresh
Verify Without Confirmation
Verify With Confirmation (Default)

Secure Transaction Content Type dropDown

Describes the value of the secureTransactionContent and secureTextTransactionContent property.

text/plain (Default)
image/png
text/plain;image/png

Secure Text Transaction Content textField

Text to be displayed securely to a user. The secureTransactionContentType property must be "text/plain" or "text/plain;image/png".

Secure Image Transaction Content textField

Image to be displayed securely to a user. The secureTransactionContentType property must be "image/png" or "text/plain;image/png".

Input Schema

default object

apiUrl string required
username string required
password string required
userId string required
description string required
type string required
pushNotificationType string required
secureTextTransactionContent string
secureTransactionContent string
secureTransactionContentType string required
policyUrl string required

Output Schema

output object

rawResponse object
status string
id string

Get Authentication Request

Retrieve an authentication request

Properties

Authentication Request Id textField: The identifier of the authentication request to be retrieved.

Input Schema

default object

apiUrl string required
username string required
password string required
authId string required

Output Schema

output object

rawResponse object
complete boolean
verificationResult string
fidoResponseCode number
fidoResponseMessage string
status string

Webhook Handler

Listen for an authentication response webhook

Output Schema

output object

restId string
transactionIdentifier string
transactionStatus string