External authentication APIs
The external authentication API provides a framework for PingOne to pass the authentication steps to an external identity provider, track that external flow, and then resume the PingOne flow to complete the authorization request and return an access token.
The steps to complete an external authentication flow often include the following PingOne auth flow and the external auth flow.
-
Initiate a PingOne authorization request.
-
Initiate an external authorization request using the PingOne external authentication APIs. This action starts the sign-on flow on the external identity provider’s authorization server.
-
Complete the sign on actions on the external identity provider’s server.
-
Use the PingOne external authentication callback API to process the information returned by the identity provider and return the sign-on flow to PingOne.
-
Complete the PingOne sign-on actions and call the PingOne token endpoint to get the access token.
For detailed information about the External Authentication endpoints from the PingOne API Reference, refer to External Authentication.