OpenFlyers API is now in production. Based on the OAuth 2.0 protocol, it allows the implementation of single sign-on (SSO) for customers with a member area or a customer area requiring authentication as well as pulling data from generic and personalized reports.
Like what the big names on the net offer (Google or Facebook for example), OpenFlyers allows its customers to use the OpenFlyers API to set up a single authentication system from their member area. or customer area.
This API respects good security practices by using in particular the OAuth 2.0 protocol with additional mTLS and signing of HTTP headers layers in order to guarantee that the server which requests the API is an authenticated server and authorized by the structure.
The OpenFlyers OAuth 2.0 authentication system allows:
- to guarantee the confidentiality of the OpenFlyers user password which is not exchanged with the customer server
- have the user's trust by showing him an OpenFlyers login page with an OpenFlyers URL
- to have the guarantee that the user has carried out the entire identification process on the OpenFlyers side before being redirected to the customer website (entering username / password, acceptance of contractual documents, account balance alert, validity deadlines)
- to customize the customer server side access according to the user
- to redirect the user to the customer's OpenFlyers platform without having to identify himself again (SSO)
Also thanks to the OAuth2 protocol, the OpenFlyers API allows a third-party server owned by a customer to pull data from its OpenFlyers database by retrieving in CSV format the results of SQL queries from the reports library or custormer customized reports.
We provide a demo site that queries the OpenFlyers API as a third-party server and that simulates both single sign-on and report retrieval:
https://openflyers.com/oauth2-demo/index.php
This demonstration site is based on the PHP scripts made available in the API documentation:
https://openflyers.com/fr/doc/of4/API-OpenFlyers