Starting a Session

To start a session, you first need to define what happens when a person initiates it in your application.

There are two ways to start a session:

• Directly from the app
• On the server side, through your backend intermediary

Starting Directly From App

In this flow, the person initiates a session by performing an action in the app that is designated to trigger a session start (for example, tapping a button).

This action initializes the IDV component and establishes a direct connection from the app to the IDV Platform using one of the following authorization methods.

• Basic Authorization (not recommended). Learn more about Basic Authorization
• API Key (recommended). Learn more about API key

To proceed, follow the configuration instructions for your platform:

• iOS
• Android
• Web Components

Server-Side Start

In this flow, the person also performs an action that is designated to trigger a session start. However, instead of connecting directly to the Platform, your app sends a request to your backend.

On your backend, you can:

• Trigger the session start process.
• Authenticate with the IDV Platform.
• Build a hand-off link which is then returned to the app and used to start the session.

This method is useful because:

• You do not keep authentication credentials in the app.
• You can add metadata to the session that is available only on your backend and not in the app.

This method requires the use of the Token URL authentication process.

• How to set up token-based authentication process