masstack

V1
API Overview Resources Schemas

CIBA

OpenID Connect Client-Initiated Backchannel Authentication Flow

Parameters

Name In Type Required Description
body body object false ‘none’

Request body - Content-Type: application/x-www-form-urlencoded

Custom schema example

1
2
3
4

login_hint: myemail@gmail.com
scope: string
binding_message: usuario@gmail.com
Name Type Required Description
login_hint string true A hint to the OpenID Provider regarding the end-user for whom authentication is being requested. The value may contain an email address or msisdn, which identifies the end-user to the OP
scope string false Scope of permissions
binding_message string false A human-readable identifier or message intended to be displayed on both the consumption device and the authentication device to interlock them together for the transaction by way of a visual cue for the end-user. This interlocking message enables the end-user to ensure that the action taken on the authentication device is related to the request initiated by the consumption device.

Request example

1
2
3
4
5
6


curl -X POST https://authn.masstack.com/v1/bc-authorize \
  -H "Content-Type: application/x-www-form-urlencoded" \
  -H "Accept: application/json" \
  -d "login_hint=myemail@gmail.com&scope=undefined&binding_message=usuario@gmail.com&"

Responses

Code Meaning Description Schema
200 OK OK bcAuthorizeResponse
400 Bad Request Bad Request errorAccessTokenResponse
401 Unauthorized Unauthorized errorAccessTokenResponse

Endpoints

TokenInfo

    OAuth2

      Magic Links

        CIBA

          WebAuthn

            Device Code