Authentication API - A universal API for Single Sign On

A couple of steps and you are ready to go

Add this to your front end

Call StartLogin providing the identity provider (google, microsoft or facebook) you want to use, along with an optional email address, and redirect the user to LogonLabs to broker the login.

JavaScript

<!DOCTYPE html>
<html>
  <head>
    <title>LogonLabs Sample</title>
    <style> .logonlabs { width: 300px; } </style>
    <script>
      window.logonAsync = function() {
        LogonClient.configure({ app_id: 'YOUR_APP_ID' });
        LogonClient.ui.button('logonlabs-buttons');
        LogonClient.ui.button('logonlabs-icons', {theme: 'icon'});
      };
    </script>
    <script async defer src="https://cdn.logonlabs.com/dist/logonlabs.min.js"/>
  </head>
  <body>
    <h2>LogonLabs Sample</h2>
    <div id="logonlabs-buttons" class="logonlabs"></div>
    <div id="logonlabs-icons" class="logonlabs"></div>
  </body>
</html>

Add this to your back end

When the user has completed authenticating with the identity provider, they are redirected to your web application's Callback URL (Configured in LogonLabs App Settings). In the query string of the Callback URL there is a token that acts as a key to access the user's login attempt. Your application should now call ValidateLogin with the provided token to retrieve the login results securely. At this point your code can proceed with your applications normal login workflow (ie, assigning the user session, etc).

PHP

.NET

JAVA

PYTHON

NODE JS

<?php
require(__DIR__ . '/vendor/autoload.php');

use LogonLabs\IdPx\API\LogonClient as LogonClient;
use LogonLabs\IdentityProviders as IdentityProviders;

$logonClient = new LogonClient(array(
    'app_id' => 'YOUR_APP_ID',
    'app_secret' => 'YOUR_APP_SECRET',
    'app_path' => 'https://api.logonlabs.com'
	
));

$token = $_REQUEST['token'];

$loginData = $logonClient->validateLogin($token);

if ($loginData['body']['event_success']) {
    //success!
}

var logonClient = new LogonLabs.IdPx.API.LogonClient(
"fe28e1869626443f909204a76cd622d3", 
"https://api.logonlabs.com", 
"YOUR_APP_SECRET"
);
//NOTE: Depending on what flavor of .NET you are using (Asp.Net Core, .NET Framework), 
// the way Request" is accessed could be slightly different
var token = this.Request.Query[Constants.QueryString.token];

var loginData = logonClient.ValidateLogin(token);

if (loginData.event_success)
{
//success!
}

import com.logonlabs.LogonClient;
import com.logonlabs.dtos.ValidateLoginResponse;
import com.logonlabs.dtos.SsoValidationDetails;

LogonClient client = new LogonClient("fe28e1869626443f909204a76cd622d3", "YOUR_APP_SECRET","https://api.logonlabs.com");

String queryToken = client.parseToken(callbackUrl);

ValidateLoginResponse response = client.validateLogin(queryToken);

String eventId = response.getEventId(); //used to update the SSO event later via UpdateEvent

if(response.isEventSuccess()) {
    //authentication and validation succeeded. proceed with post-auth workflows for your system

}

from logonlabs.client import Logonlabs

logonClient = Logonlabs('fe28e1869626443f909204a76cd622d3', 'YOUR_APP_SECRET', 'https://api.logonlabs.com')

request_headers = self.headers
token = request_headers["token"]
response = logonClient.validateLogin(token)
data = response.json()
if data['event_success']:
    #success

const client = require('logonlabs-nodejs')('fe28e1869626443f909204a76cd622d3', 'YOUR_APP_SECRET', 'https://api.logonlabs.com');

const callback_url = 'https://your_callback_url/?token=some_validation_token';

let token = client.parseToken(callback_url);

let response = client.validateLogin(token);

let eventId = response.get('event_id'); //can be used to update the SSO event later via updateEvent

//can also call response.isCallSuccess to check if it is a valid response
if(response.isEventSuccess()) {
    //authentication and validation succeeded. proceed with post-auth workflows for your system

}