Authenticated Messaging - custom claims/scopes

Anton_Vroon · June 15, 2023, 12:59am

Couple of questions

Can we use a a custom claim/scope to pass additional customer identifiers in the token rather than through the sdk database function for added security, and have this accessible in Genesys. And how do we accomplish this?

We've read (https://developer.genesys.cloud/forum/t/authenticated-web-messaging-custom-atributes/19794) but
in our case we have multiple identifiers, and need additional IDs passed to the agent, however we want this done as securely as possible, which raises question 2.

How secure is the database function for passing a customer identifier. Eg if a user logs in as themselves to the website, but then manipulates the data to send across someone else's identifier if client side is compromised?

Angelo_Cicchitto · June 15, 2023, 6:53am

Hi @Anton_Vroon please vote this Idea which seems to match what you need https://genesyscloud.ideas.aha.io/ideas/DXWMM-I-57

Database function is just a convenient way to pass unstructured Participant Data: the security you need would be provided by Authentication. In your case, you can probably gather the Email or unique Identifier of the user (the sub claim) and use those attribute in GC backend to further refine data retrieval via Data Actions.

Anton_Vroon · June 15, 2023, 11:32pm

Thanks Angelo

Voted on the idea, We will see what we can do with some DataActions in the mean time.

system · July 15, 2023, 11:33pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.