idaas.nl platform uniquely combines flexibility with standard adoption.
The following (industry) standards are supported.
Including the modern CORS enabled authorization code grant for single-page applications, and advanced functionalities like
Proof Key for Code Exchange(PKCE) for mobile app logins.
Including the possibility to request authentication controls using the lesser known but powerful
acr_valuesattribute. Not only login but also logout has been implemented.
The standard for identity management. We not only support creating and updating users, but also groups. This allows organizing users and assigning access rights.
A farily old specification for single-sign on, but still widely used in enterprise applications. The most common features are supported. SAML single logout has also been implemented.
With regards to flexibility, the following features set idaas apart.
Pluggable Login UI
idaas.nlplatform obviously runs on the
idaas.nldomainname. An important aspect in branding is to serve the login page from your domainname with your house style applied. We support this without requiring DNS changes or implementing server-side logic like reverse proxies.
You want flexibility and customers want choice. Our platform allows configuring different authencation modules per application and allows providing users choice about the first and second authentication factors they would like to use.
Popup authentication module
Popup authentiction leveraging OAuth 2.0 Web Message Response Mode
Same functionalities with GUI and API
Idaas.nl is a true API-first platform. Everything can be configured via API's and all information can be extracted with it. Where applicable, API's are based on open specifications, primarily SCIM.
Integrate with other services
Webhook and Rule functionality to integrate with CRM, fraud detection solutions, risk engines, CMS, CDP, DMP, and proofing services.