Genesys Cloud - Main

Does anyone in the community have experience with Web Messaging Guest API and authenticated sessions?

Summary

We have a backend service that is using Web messaging Guest API to establish a WebSocket connection with Genesys and transfer a chat session to a live agent.

Problem statement

To comply with security requirements, we need to have an authenticated session with Genesys.

Problem details

For proof of concept, we are using ConfigureSession action which does not have authentication: https://developer.dev-genesys.cloud/commdigital/digital/webmessaging/websocketapi#configure-a-guest-session

With these parameters:
{

    "action": "configureSession",

    "tracingId": "{{tracingId}}",

    "deploymentId": "{{deploymentId}}",

    "token": "{{token}}"

}

What we want to use is ConfigureAuthenticatedSession action: https://developer.dev-genesys.cloud/commdigital/digital/webmessaging/websocketapi#configure-an-authenticated-session

It has an additional parameter "Code"

• code (required) A JWT token retrieved from Genesys platform API URLs during user authentication.

Given that the authentication has to happen between two services (aka Service-to-Service authentication) how can our service get the "Code" parameter to be passed to ConfigureAuthenticatedSession  action?

That token should come from the Open ID server that is required for authenticated web messaging.

Does anyone in the community have experience with Web Messaging Guest API and authenticated sessions?

Summary

We have a backend service that is using Web messaging Guest API to establish a WebSocket connection with Genesys and transfer a chat session to a live agent.

Problem statement

To comply with security requirements, we need to have an authenticated session with Genesys.

Problem details

For proof of concept, we are using ConfigureSession action which does not have authentication: https://developer.dev-genesys.cloud/commdigital/digital/webmessaging/websocketapi#configure-a-guest-session

With these parameters:
{

    "action": "configureSession",

    "tracingId": "{{tracingId}}",

    "deploymentId": "{{deploymentId}}",

    "token": "{{token}}"

}

What we want to use is ConfigureAuthenticatedSession action: https://developer.dev-genesys.cloud/commdigital/digital/webmessaging/websocketapi#configure-an-authenticated-session

It has an additional parameter "Code"

• code (required) A JWT token retrieved from Genesys platform API URLs during user authentication.

Given that the authentication has to happen between two services (aka Service-to-Service authentication) how can our service get the "Code" parameter to be passed to ConfigureAuthenticatedSession  action?

Thanks for the quick response,

Yes, I agree that's what it seem to say. However, we can't see how to engage the Open ID server as part of the Web Sockets connection. The documentation isn't very clear as to how that process happens.

Our application is server to server, there is no end user to perform this function mentioned in the documentation:

• code (required) A JWT token retrieved from Genesys platform API URLs during user authentication.

We are simply wanting to secure the Web Sockets sessions, not apply end user authentication to the Web Messaging.

That token should come from the Open ID server that is required for authenticated web messaging.

Does anyone in the community have experience with Web Messaging Guest API and authenticated sessions?

Summary

We have a backend service that is using Web messaging Guest API to establish a WebSocket connection with Genesys and transfer a chat session to a live agent.

Problem statement

To comply with security requirements, we need to have an authenticated session with Genesys.

Problem details

For proof of concept, we are using ConfigureSession action which does not have authentication: https://developer.dev-genesys.cloud/commdigital/digital/webmessaging/websocketapi#configure-a-guest-session

With these parameters:
{

    "action": "configureSession",

    "tracingId": "{{tracingId}}",

    "deploymentId": "{{deploymentId}}",

    "token": "{{token}}"

}

What we want to use is ConfigureAuthenticatedSession action: https://developer.dev-genesys.cloud/commdigital/digital/webmessaging/websocketapi#configure-an-authenticated-session

It has an additional parameter "Code"

• code (required) A JWT token retrieved from Genesys platform API URLs during user authentication.

Given that the authentication has to happen between two services (aka Service-to-Service authentication) how can our service get the "Code" parameter to be passed to ConfigureAuthenticatedSession  action?