question

Aayush Mediratta Koreai avatar image
Aayush Mediratta Koreai asked

Access B2C or B2B apis with out prompting user to provide credentials

We have requirement where a end user over voice call will get to know his account balance.

  • We started with B2C apis and work as expected interactively using oAuth2 - Authorization code protocol
  • Apparently, as giving input password / username via voice is not possible over voice, we are exploring the feasibility of back channel authorization like oAuth2- Client credentials
  • We will ensure user authorizes by other checks like 2Factor etc.

Questions:

  1. Does B2C apis provide such back channel authorization like oAuth2- Client credentials or RSA key based or any similar flavors
  2. We learnt B2B does provide, how ever, we could not able to find test data like customerId, accountId or iBan value etc.


Request Finestra team provide some guidance

Please let me know if any more info is needed.

Thanks in advance.


Authenticationaccounts b2c
10 |600
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

2 Answers

Ahmed Hibot Finastra avatar image
Ahmed Hibot Finastra answered

An OAuth2 client credentials flow can be made using the B2B channel credentials of your FFDC App.
Regarding the missing test data, can you please provide the API you are using ?

1 comment
10 |600
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Mitch Miller avatar image Mitch Miller commented ·
Can you provide some documentation on how this is done? I seem to be able to use client id and client secret to access B2B API's in my app - but not B2C
0 Likes 0 ·
Francois Lasne avatar image
Francois Lasne answered

The authentication mechanism is based on Oauth2 . This mechanism does not prescribe any Authentication mechanism. For our sandbox we defaulted to the most traditional one display a login / password screen. but we could have put in place a more secure one 2 factor via SMS, biometrics identification (finger print, faceId ... or voice !)
This user Authentication would be driven by our customer , they host the Identity provider.
That said if you are partnering already with a Biometric Voice Identity provider, we would be please to work with them .

10 |600
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.