Cidaas provides numerous options to ensure safe and diverse mechanisms for login. It is a good practise to enable multiple factors during login, to improve the login security of your users.
To improve convenience, cidaas offers passwordless mechanisms as well. Depending on the end user's comfort, you can offer any of the multi-factor authentication available in cidaas.
The first step of integrating the cidaas android sdk and to sue the verification feature is the initialisation process:
CidaasVerification cidaasNative = CidaasNative.getInstance(your Activity Context);
or
CidaasVerification cidaasVerification=new CidaasVerification(Your Application Context);For TOTP, Pattern, Touch ID, Smart Push, Face and Voice verification, you need to verify the device to provide more security. For that call setremoteMessage() from your MyFirebaseMessagingService's onMessageReceived method.
public void onMessageReceived(RemoteMessage remoteMessage) {
Cidaas de.cidaas=Cidaas.getInstance(this);
de.cidaas.setremoteMessage(remoteMessage.getData());
}To setup the passwordless login, where the user verifies himself via an email code, you will need to configure his email first and verify it. By default, when you verify an email during account verification, you are setup for passwordless login.
To receive a verification code via Email, call configureEmail().
de.cidaas.configureEmail("your sub", new Result < SetupEmailMFAResponseEntity > () {
@Override
public void success(SetupEmailMFAResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error)
//Your failure code here
}
});Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once the user has received his verification code via email, he will need to verify that code. For that verification, call enrollEmail().
de.cidaas.enrollEmail("your_code","your_status_id", new Result < EnrollEmailMFAResponseEntity > () {
@Override
public void success(EnrollEmailMFAResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//Your failure code here
}
});Response:
{
"success": true,
"status": 200,
"data": {
"sub": "7dfb2122-fa5e-4f7a-8494-dadac9b43f9d",
"trackingCode":"5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once the user has verified his email & configured it to be able to use it for login, he can also login with his email via the passwordless authentication process. To receive a verification code via email, call loginWithEmail().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithEmail(PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//Your failure code here
}
}); Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "6f7e672c-1e69-4108-92c4-3556f13eda74"
}
}Once the user received his verification code via Email, you will need to verify the code. For that verification, call verifyEmail().
de.cidaas.verifyEmail("your_code","your_statusId", new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
// Your Success code here
}
@Override
public void failure(WebAuthError error) {
// Your failure code here
}
}); Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}To use SMS for the passwordless login, the user will need to configure the SMS physical verification first and then verify his mobile number. If has already verified his mobile number using the SMS during account verification, it is by default setup for passwordless login.
To receive a verification code via SMS, call configureSMS().
de.cidaas.configureSMS(sub, new Result < SetupSMSMFAResponseEntity > () {
@Override
public void success(SetupSMSMFAResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//Your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once you have received the verification code via SMS, you need to verify the code. For that verification, call enrollSMS().
de.cidaas.enrollSMS("your_code","your_statusId", new Result < EnrollSMSMFAResponseEntity > () {
@Override
public void success(EnrollSMSMFAResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//Your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"sub": "7dfb2122-fa5e-4f7a-8494-dadac9b43f9d",
"trackingCode":"5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once you configured SMS, you can also login with SMS via passwordless authentication. To receive the verification code via SMS, call loginWithSMS().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithSMS(PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//Your failure code here
});
Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "6f7e672c-1e69-4108-92c4-3556f13eda74"
}
}Once you received your verification code via SMS, you need to verify the code. For that verification, call verifySMS().
de.cidaas.verifySMS("your_code","your_statusId", new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
// Your Success code here
}
@Override
public void failure(WebAuthError error) {
// Your failure code here
}
}); Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}To use IVR for the passwordless login, you need to configure the IVR physical verification first and verify the users mobile number. If you already have verified the users mobile number through the account verification via IVR, it is already configured.
To receive the verification code via IVR, call configureIVR().
de.cidaas.configureIVR(sub, new Result < SetupIVRMFAResponseEntity > () {
@Override
public void success(SetupIVRMFAResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//Your failure code here
}
}); Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once you have received the verification code via IVR verification call, you need to verify the code. For that verification, call enrollIVR().
de.cidaas.enrollIVR("your_code","your_statusId", new Result < EnrollIVRMFAResponseEntity > () {
@Override
public void success(EnrollIVRMFAResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//Your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"sub": "7dfb2122-fa5e-4f7a-8494-dadac9b43f9d",
"trackingCode":"5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once you configured IVR, you can also login with IVR via passwordless authentication. To receive the verification code via IVR verification call, call loginWithIVR().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithIVR(PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//Your failure code here
}
}); Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "6f7e672c-1e69-4108-92c4-3556f13eda74"
}
}Once you received the verification code via IVR, you need to verify the code. For that verification, call verifyIVR().
de.cidaas.verifyIVR("your_code","your_statusId", new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
// Your Success code here
}
@Override
public void failure(WebAuthError error) {
// Your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}To use a backupcode as a passwordless login, you need to configure backupcode physical verification first.
To configure or view the backupcode, call configureBackupcode().
de.cidaas.configureBackupcode(sub, new Result < SetupBackupcodeMFAResponseEntity > () {
@Override
public void success(SetupBackupcodeMFAResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//Your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "6f7e672c-1e69-4108-92c4-3556f13eda74",
"backupCodes": [{
"code": "63537876",
"used": false,
},
{
"code": "76482357",
"used": false,
}]
}
}Once you have configured backupcode, you can also login with backupcode with the passwordless authentication process. To login with backupcode, call loginWithBackupcode().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithBackupcode("yourverificationCode",PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//your success code here.
}
@Override
public void failure(WebAuthError error) {
//your failure code here.
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}You can configure passwordless login with an OTP that has to be valid only for a fixed duration. To use the TOTP as a passwordless login, you need to configure TOTP physical verification first.
To configure the TOTP verification, call configureTOTP().
de.cidaas.configureTOTP("Your Sub", new Result < EnrollTOTPMFAResponseEntity > () {
@Override
public void success(EnrollTOTPMFAResponseEntity result) {
//your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once you have configured TOTP, you can also login with TOTP via the passwordless authentication. To login, call loginWithTOTP().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithTOTP(PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}If you want to offer a passwordless login after securing it with the secure pattern that user can define on their device, you can use this option. To use the pattern recognition as a passwordless login, you need to configure it first.
To configure the pattern recognition, call configurePatternRecognition().
de.cidaas.configurePatternRecognition("RED[1,2,3]", "Your Sub", new Result < EnrollPatternMFAResponseEntity > () {
@Override
public void success(EnrollPatternPMFAResponseEntity result) {
//your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once you have configured pattern recognition, you can login with pattern recognition via the passwordless authentication. To login, call loginWithPatternRecognition().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithPatternRecognition("RED[1,2,3]", PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}You may want to allow users to use their fingerprint on their mobile devices or computer peripheral to be used for passwordless login. To do this fingerprint verification for the passwordless login, you need to configure it first.
To configure the fingerprint verification, call configureFingerprint().
de.cidaas.configureFingerprint("Your Sub", new Result < EnrollFingerprintMFAResponseEntity > () {
@Override
public void success(EnrollFingerprintPMFAResponseEntity result) {
//your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once you have configured fingerprint verification, you can also login with the fingerprint Id Verification via passwordless authentication. To login, call loginWithFingerprint().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithFingerprint(PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
}); Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}SmartPush notification can be used when you would like users to receive a number on their device and use this to authenticate instead of using a password. To use the smart push notification as a passwordless login, you need to configure it first.
To configure smart push Notification, call configureSmartPush().
de.cidaas.configureSmartPush("Your Sub", new Result < EnrollSmartPushMFAResponseEntity > () {
@Override
public void success(EnrollSmartPushPMFAResponseEntity result) {
//your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once you have configured the smart push notification, you can also login with smart push notification via passwordless authentication. To login, call loginWithSmartPush().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithSmartPush(PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}Biometrics plays an important role in the modern world. Cidaas can register the user's face, extract unique features from it, and use that to identify when they present their face for identification. To use face recognition as a passwordless login, you need to configure it first.
To configure Face Recognition, call configureFaceRecognition().
de.cidaas.configureFaceRecognition(File photo, "Your Sub", new Result < EnrollFaceRecognitionMFAResponseEntity > () {
@Override
public void success(EnrollFaceRecognitionPMFAResponseEntity result) {
//your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once the user has configured the face recognition, he can login with face recognition via passwordless authentication. To login, call loginWithFaceRecognition().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithFaceRecognition(File photo, PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}Biometric plays an important role in the modern world. Cidaas can record your user's voice, extract unique features and use that to verify. To use voice recognition as a passwordless login, you need to configure it first.
To configure voice recognition, call configureVoiceRecognition().
de.cidaas.configureVoiceRecognition(File voice, "Your Sub", new Result < EnrollVoiceRecognitionMFAResponseEntity > () {
@Override
public void success(EnrollFaceRecognitionPMFAResponseEntity result) {
//your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"statusId": "5f5cbb84-4ceb-4975-b347-4bfac61e9248"
}
}Once you have configured the voice recognition, you can login with voice recognition via passwordless authentication. To login, call loginWithVoiceRecognition().
PasswordlessEntity passwordlessEntity=new PasswordlessEntity();
passwordlessEntity.setUsageType(UsageType.MFA);
passwordlessEntity.setTrackId(trackid);
passwordlessEntity.setRequestId(result.getData().getRequestId());
passwordlessEntity.setSub(sub);
de.cidaas.loginWithVoiceRecognition(File voice,PasswordlessEntity passwordlessEntity, new Result < LoginCredentialsResponseEntity > () {
@Override
public void success(LoginCredentialsResponseEntity result) {
//Your success code here
}
@Override
public void failure(WebAuthError error) {
//your failure code here
}
});
Response:
{
"success": true,
"status": 200,
"data": {
"token_type": "Bearer",
"expires_in": 86400,
"access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUxNWYxMGE5LTV",
"session_state": "CNT7TF6Og-cCNq4Y68",
"viewtype": "login",
"grant_type": "login"
}
}To know the Login history of a user you can call the following methods:
UserLoginInfoEntity userLoginInfoEntity=new UserLoginInfoEntity();
userLoginInfoEntity.setStartDate("2019-03-04T00:00:00.000Z");
userLoginInfoEntity.setEndDate("2019-03-11T00:00:00.000Z");
userLoginInfoEntity.setVerificationType("Your Verification type");
userLoginInfoEntity.setSub(your sub);
cidaas.getUserLoginInfo(userLoginInfoEntity, new EventResult<UserLoginInfoResponseEntity>() {
@Override
public void success(UserLoginInfoResponseEntity result) {
//Your Success Code
}
@Override
public void failure(WebAuthError error) {
//Your Failure code
}
});