...
Parameters that must be supplied:
URI and port number
QA environment: idp.qa.eu.noah-es.com:443
EU Production: idp.eu.noah-es.com:443
US Production: idp.us.noah-es.com:443
ClientId: Supplied by HIMSA
Scope: openid profile noah.cloud.app.users.api
If relevant for your app and app registration allows: offline_access
Flow: Authorization Code + PKCE
RedirectURI: IdP will redirect the client to this after successful authentication, with tokens for accessing the API. You must inform HIMSA about this, because we need to whitelist it
Extra options
culture-lcid: Culture LCID code for localizing the website
...
When the client is redirected to the RedirectURI, the response will contain:
auth_code: Must be exchanged afterwards for an access token
Id token
tenantid claim: The tenantId that the user selected
3. Exchange auth_code for an access token
Note: This is done automatically if you are using HIMSA's .NET Client.
| Note |
|---|
Access and refresh tokens may vary greatly in length. Make no assumptions about the contents. It can change at any point in time |
4. Connecting to API
URI and port number
QA environment: api.qa.eu.noah-es.com:443
EU Production: api.eu.noah-es.com:443
US Production: api.us.noah-es.com:443
HIMSA's .NET Client:
Either use the constructor that takes an access token or a refresh token as input
5. Renewal of access token
...