You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 21 Next »

The BankID IDP in the OIDC Provider is a multi-tennant service having the capability to host several BankID merchant certificates. In its default configuration all OIDC Clients share a common BankID merchant certificate associated with the BankID OIDC Service itself. Alterntively, an OIDC Client may be configured with its own BankID merchant certificate. The BankID IDP supports each of the BankID B2C Services (netcentric and mobile).

BankID via the OIDC Provider is currently restricted to authentication. Future support for BankID signing may be added.

There are several benefits for merchants integrating BankID over OIDC rather than using a legacy integration via a locally installed BankID-server:

  • The integration interface is the same for each of the BankID B2C Services  (netcentric and mobile).
  • The merchant does not need to implement any GUI for BankID on mobile since it is taken care of by the OIDC Provider itself
  • The merchant does not need to implement a selector dialog for netcentric vs. mobil since the OIDC Provider offers such a selector dialogue.
  • The integration interface is based on an industry-standard REST API being much more convenient than implementing via the legacy BankID-server.
  • The merchant may have access to Supplementary Services that are not available via the legacy BankID server.

An OpenID Client make use of BankID either via login hints directly in the REST API or via integration with the JavaScript BankID Connector as described in the following.

Login hints

The exact behaviour for the BankID IPD can be controlled by the OIDC Client by suppling the proper values to the login_hint parameter in requests to the Authorize endpoint: 

login_hintDescription
""An empty value implies that the end user is presented with a selector dialog to determine of BankID netcentric (BID) og BankID on Mobile (BIM) is used. In either case the user has to type inn his userID in the first dialogue (ie. f.nr. for BID and mobilnr/f.dato for BIM)
"BID"BankID netcentric is pre-selected and shown to the user. The user has to type inn his userID in the first dialogue (ie. f.nr)
"BID:07025312345" 
"BIM" 
"BIM:48058567:070253" 
":07025312345"rompted for choice of BankID version, but Norwegian national number is used for BID and birthday is used for BIM (first 6 digits).

JavaScript Connector

A JavaScript Connector for the BankID IDP is currently not supported. Future support will be added.

 

 

 

 

  • No labels