Features

The idaas.nl platform uniquely combines flexibility with standard adoption.

The following (industry) standards are supported.

  • OAuth 2.0

    Including the modern CORS enabled authorization code grant for single-page applications, and advanced functionalities like Proof Key for Code Exchange (PKCE) for mobile app logins.

  • OpenID Connect

    Including the possibility to request authentication controls using the lesser known but powerful acr_values attribute. Not only login but also logout has been implemented.

  • SCIM 2.0

    The standard for identity management. We not only support creating and updating users, but also groups. This allows organizing users and assigning access rights.

  • SAML 2.0

    A farily old specification for single-sign on, but still widely used in enterprise applications. The most common features are supported. SAML single logout has also been implemented.

With regards to flexibility, the following features set idaas apart.

  • Pluggable Login UI

    The idaas.nl platform obviously runs on the idaas.nl domainname. An important aspect in branding is to serve the login page from your domainname with your house style applied. We support this without requiring DNS changes or implementing server-side logic like reverse proxies.

  • Authentication Graph

    You want flexibility and customers want choice. Our platform allows configuring different authencation modules per application and allows providing users choice about the first and second authentication factors they would like to use.

  • Popup authentication module

    Popup authentiction leveraging OAuth 2.0 Web Message Response Mode

  • Same functionalities with GUI and API

  • Integrate with other services

    Webhook and Rule functionality to integrate with CRM, fraud detection solutions, risk engines, CMS, CDP, DMP, and proofing services.