Introducing enhanced JWT authentication mechanism
Hi all,
Greetings!
We are excited to introduce the enhanced version of the JWT authentication mechanism for ASAP add-ons.
ASAP
The ASAP (App Support Across Platforms) add-on in Zoho Desk is a stand-alone app that provides in-app self-service to the end-users. It works in tandem with your business, empowering it with the help center functionality right within the product. With ASAP, your customers do not have to navigate to a different page on your website to access help articles, seek help from customer service, or interact with fellow users. They can find the answers they need right within your business website.
There are two authentication methods available while configuring ASAP in the Desk portal:
- Anonymous
- JWT
Anonymous: Anonymous users are end-users who choose not to log into the ASAP add-on. They can access your help article, submit tickets, view posts in the user community, and chat with your support agents. They can't perform other actions, such as editing or closing support tickets, and interacting with the user community.
JWT: In the JWT authentication method, the end-users are known as authenticated users because they choose to log into the ASAP add-on. They can perform nearly all the available actions within the ASAP add-on. The JWT authentication method is the most secure, and preferred means of authentication.
Existing authentication mechanism
The existing authentication method uses a server endpoint, known as the JWT endpoint. End-users must set up this endpoint before configuring JWT authentication for the ASAP add-on. This endpoint contains the code that generates the JWT. From there, the IAM server sends the GET request containing the user token to the endpoint. Users are required to provide a valid URL for the JWT endpoint when setting up the ASAP add-on in Zoho Desk.
Improved JWT authentication mechanism
To provide a better, safer, and simpler authentication process, we have enhanced the existing mechanism. The enhanced mechanism verifies the authenticity of your end-users and grants them permission to use the ASAP-driven help center.
The improved mechanism eliminates the necessity of the JWT endpoint. Now, when end-users attempt to log into ASAP, the IAM server will decrypt the JWT secret key that is sent from the application side and verifies the end user's authentication. This process allows only valid users to log into ASAP.
To learn about the complete authentication flow and the technical aspects of JWT, see our JWT mechanism for authenticating users in the ASAP add-ons (new flow) help doc.
Impact of the new authentication mechanism on existing web and mobile SDK users
For users who activate new or additional ASAP in future, the new authentication mechanism will be in effect.
Note: The existing flow will be tentatively deprecated only for the web users within three months time. We will keep you posted regarding the deprecation of the existing authentication flow.
The enhanced method of JWT authentication has been officially released and is available to all users.
Give it a try, and share your suggestions and feedback here.
Have a great day!
Regards,
Varsha P
Access your files securely from anywhere
Zoho Developer Community
New to Zoho LandingPage?
Zoho LandingPage Resources
New to Zoho Survey?
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Bigin?
Topic Participants
Varsha P
Sticky Posts
Live Webinar - Work smarter with Zoho Desk and Zoho Workplace integration
Hello customers! Zoho Desk and Zoho Workplace are coming together for a webinar on 14th May, 2024. Zoho Workplace is a suite of productivity apps for email, chat, docs, calls, and more at one single place. Zoho Desk is closely integrated with a few toolsApple iOS 17 and iPadOS 17 updates for Zoho Desk users
Hello Zoho Desk users! Apple recently announced the release of iOS 17 and iPad OS 17. These latest OS updates will help you stay productive and efficient, through interactive and seamless user experiences. Zoho Desk has incorporated the updates to helpZoho Desk Partners with Microsoft's M365 Copilot for seamless customer service experiences
Hello Zoho Desk users, We are happy to announce that Zoho Desk has partnered with Microsoft's M365 to empower customer service teams with enhanced capabilities and seamless experiences for agents. Microsoft announced their partnership during their keynoteZoho Desk Cheat Sheet For The Year-End
Check out these Zoho Desk best practices to end this year on a high and have a great one ahead! #1 Set Business (Holiday) Hours - If you have limited working hours, please make sure you restrict your business hours or set them as holidays for the coming days. Let your customers know when you will, and won't, be available. #2 Update the Annual Holiday List - Check the holidays for the new year and update the holiday schedule. Usually, holidays from the current year will be carried over for the nextDeprecation of older versions of ASAP Mobile SDK | Zoho Desk
Hello, everyone. Greetings from Zoho Desk ASAP! In order to continue to deliver the best and most secure experience to our mobile SDK users. On account of the recent enhancements and updates to the mobile SDKs, we have planned to mark the older versions
New to Zoho TeamInbox?
Zoho TeamInbox Resources
Zoho DataPrep Resources
Zoho CRM Plus Resources
Zoho Books Resources
Zoho Subscriptions Resources
Zoho Projects Resources
Zoho Sprints Resources
Qntrl Resources
Zoho Creator Resources
Zoho Campaigns Resources
Zoho CRM Resources
Design. Discuss. Deliver.
Zoho Show Resources
Get Started. Write Away!
Writer is a powerful online word processor, designed for collaborative work.
Zoho CRM コンテンツ
-
オンラインヘルプ
-
Webセミナー
-
機能活用動画
-
よくある質問
-
Ebook
-
-
Zoho Campaigns
- Zoho サービスのWebセミナー