The Customer Portal supports three types of authentications:
basic, with user(email) and password
Single-Sign-On with OpenID Connect
with token from email link
The sign-in page handles the first two authentication types.
Basic authentication.
Account creation.
Customers can create accounts using an email address. On the Sign in page there is a link to the Sign up form.
After a successful registration, a confirmation email is sent to the provided email address. The email contains an activation link. Once the link is used, the account is activated and ready to use.
Password reset.
User can request a password reset on the sign-in page using the “Forgot?” link. An email will be sent to the provided address with a reset link.
After using the reset link, user can set up a new password.
Single-Sign-On with OpenID Connect
The Customer Portal offers single-sign-on with OpenID Connect. It’s possible to use multiple identity providers at the same time.
OpenID Connect provides a way to authenticate users and obtain their consent for accessing their identity information. It extends OAuth 2.0 to include an identity layer.
OpenID Connect is widely adopted and plays a crucial role in modern authentication and authorization scenarios, especially in the context of single sign-on across multiple applications and services.
The list of OpenID authentication options is composed basing on the content of the control table.
The table is set up in the VSS->Service-> Service Resource Scheduling->Customer Portal->Authentication->Maintain OpenID Identity Providers Configuration IMG node.
Access with resource token.
Customers without an account can perform all actions on their service orders and appointments by using links from received order processing notifications (email, SMS, ...). The notifications are sent from the VSSCommunication Framework in response to various events. The links in the notifications contain resource tokens that allow interaction with a single order or appointment.