Third-Party Login

Some applications need to authenticate with intratool in a standard web environment — for example to implement single sign-on on a device.

The login mechanism described here uses a token associated with the user to perform a browser login. The response sets the same cookies that a manual login would set, so the user becomes logged in on the device where the route was called.

This feature is also referred to as "Auto Login URLs".

There are currently two ways to perform a token-based login:

UserLoginTokens are short-lived, user-specific tokens that allow a one-time login. Use them like this:

GET https://{tenant}.intratool.de/login/token/{userLoginToken}

Calling this URL logs in the associated User and redirects to the configured default route.

A UserLoginToken can be used only once or until it expires, whichever comes first.

The long-lived access tokens used for API authorization can also be used as login tokens by calling the same route with the access token:

GET https://{tenant}.intratool.de/login/token/{accessToken}

This logs in the associated User and redirects to the configured default route.

An access token is not revoked when used for login; it remains valid until its normal expiration.

PreviousGet a Token NextField Types and Validation

Last updated 1 month ago

Login By Token

Login By User Login Token

Login By Access Token