Introduction

This section explains how to integrate the web applications, allowing VNPASS user to authenticate from third party web application.

Below is the high-level flow:
 

Single Sign-On

VNPASS also offers web single sign on automatically in user’s browser agent. Once the authentication is successful, a browser SSO session is established automatically, i.e. if the user tries to open a new tab in same browser and tries to login with VNPASS in another web application, then the user is not asked for authentication again unless the session is expired or the user logs out specifically.

As an enhancement to VNPASS, Visitors will also be allowed to create verified profile and access services integrated with VNPASS.

SPs who will allow the Authentication for Visitor need to capture the response of a user profile from VNPASS and depending on the attributes received, SP needs to handle their business flow.