POST
/
profiles
/
generateJWT
Available on Business, Enterprise plans.

Generate a JSON Web Token (JWT) for use with single sign on.

See the Generate JWT Overview for more details.

The JWT URL is valid for 5 minutes. After 5 minutes you must generate a new JWT URL. See the Max Pack expireIn for additional options.

Header Parameters

Authorization
string
required
API Key of the Primary Profile.

Format: Authorization: Bearer API_KEY

Body Parameters

domain
string
required

Domain of app. Please use the exact domain given during onboarding.

privateKey
string
required

Private Key used for encryption.

profileKey
string
required

User Profile Key. The API Key cannot be used in this field.

logout
boolean
default:
false

Automatically logout the current session. Recommend not to use in production since it affects the performance.

See Automatic Logout of a Profile Session for more information.

redirect
string

Specify a URL to redirect to when the “Done” button or logo image is clicked. The URL will be automatically shortened in the returned JWT url. Redirect the origin opener window by adding the query parameter origin=true to the redirect URL.

verify
boolean
default:
false

Verify that the generated token is valid. Recommend to only use in non-production environment.

See Opening and Closing the Social Linking URL for more information.

base64
boolean
default:
false

If the private key is base64 encoded, set to true.

Encode the private.key file in base64 and pass the single line String in the privateKey field.

E.g in Linux: cat private.key | base64

expiresIn
number
default:
5

Set the longevity of the token in minutes. Range: 1 minute to 2880 minutes.

See JWT Expire In for more information.

email
object
default:
5

Send a Connect Accounts email with a link for users to directly access their social linkage page.

See Connect Accounts Email for more information.