Login process

Prev Next

Available in Classic and VPC

In this section, we introduce the process through which the login and authentication features operate in B2B PRISM Live Studio, along with the necessary service APIs. B2B PRISM Live Studio handles the login and authentication process through OAuth2.0 authentication. For more information about OAuth2.0 integrations, see OAuth2.0 basic concepts and integrations.

Login and authentication process

Describes the login and authentication process. There are 3 features that must be built for login and authentication.
b2bpls-login_login-flow_ko

The descriptions of each feature are as follows:

  1. OAuth2.0 login/Authorization Code issuance URL
    • Provided in the form of a login page.
    • Service login is conducted through this URL, and when logged in successfully, it returns an Authorization Code.
    • Data validation can be performed using the Client ID and Redirect URI forwarded together when issuing the Authorization Code.
    • At this point, returning a Redirect response enables the client that receives a response to redirect to the Redirect URI forwarded by the Login URL.
  2. Renew Access Token API through Authorization Code and Refresh Token
    • Validates the Authorization Code issued through the OAuth login URL and exchanges the Authorization Code for an Access Token and an Refresh Token.
    • Or, validates the Refresh Token and issues a new Access Token.
  3. View user information API
    • Provides distinguishable unique user ID and nickname information.

Issue token

Describes how to issue tokens.

1. Call OAuth2.0 authorization code generation URL

Call the OAuth2.0 authorization code generation URL. The details are as follows:

  • If you are using a URL defined by the service, you need to register the URL in the NAVER Cloud Platform console.
  • If not registered, /oauth/authorize, the default format, is used.
  • You must register the PRISM server Redirect URI in your service.
    • https://global.apis.naver.com/prism/prism-auth-api/oauth/partner/{serviceId}
  • After logging in, issue an Authorization Code to the forwarded Redirect URI.

Example code

The request examples code is as follows:

curl -X GET https://service_domain/oauth/authorize
              ?response_type=code
              &client_id=your_client_id
              &redirect_uri=https://global.apis.naver.com/prism/prism-auth-api/oauth/partner/{serviceId}

2. Call Issue Access Token API

Call the Issue Access Token API with the authorization code obtained in Step 1.

Feature Shortcut
Issue Access Token API specification for OAuth2.0 authentication

Token renewal

Describes how to renew tokens.

Call Renew Access Token API

Submit a renewal request with the same API used for issuing an Access Token. Or, obtain a new Access Token using the Refresh Token.

Feature Shortcut
Renew Access Token API specification for OAuth2.0 authentication