Authentication Context Parameters
New parameters have been introduced in the authorization flow to help contextualize each authorization request.
These parameters are not part of any standard OIDC specification and are specific to Corppass.
authentication_context_type
Yes
A value from a predefined list describing the type of transaction for which your user is performing the authentication. This is used for anti-fraud purposes. The list of supported values is provided below.
authentication_context_message
No
A string value providing context on what users are performing authentication for.
As part of future enhancements, this value will be displayed to users during authentication. Therefore, it is advised to provide a message that is comprehensible to the users.
Supported authentication_context_type values
Currently, Corppass only supports one possible value:
General authentication
APP_AUTHENTICATION_DEFAULT
Additional values may be added in the future as new use cases arise.
Guidance on authentication_context_type usage
authentication_context_type usageIf none of the predefined use cases above accurately describe your transaction, use the default value
APP_AUTHENTICATION_DEFAULTfor the general authentication use case.For general authentication to an e-service that performs a variety of actions, use the default value:
APP_AUTHENTICATION_DEFAULT. This is expected to cover the majority of e-services.For more sensitive or transaction-specific actions that require step-up verification, a more specific
authentication_context_typeshould be used.
Last updated