Introduction

With Logaflow’s SSO Auth Token, you can authenticate your users logged into your application to identify them on the Logaflow dashboard.

This step is optional, but we recommend implementing it to better manage each user’s feedback. Since they are already authenticated, users with SSO Token will not see the Name and Email fields when opening the Logaflow widget.

Requirements

Location of your project secret

How to implement SSO auth

1

Generate a JWT Token with your project's secret

On your server, you will need to generate a JWT token signed with your Logaflow project’s secret. Below is an example of how to generate this token:

import jwt from 'jsonwebtoken';

const LOGAFLOW_PROJECT_SECRET = "YOUR_LOGAFLOW_PROJECT_SSO_SECRET";

interface User {
    id?: string;
    name: string;
    email: string;
    avatar?: string;
}

function generateLogaflowUserSSOToken(u: User): string {
    const payload = {
        id: u.id || '',           // optional
        name: u.name,             // required
        email: u.email,           // required
        avatar: u.avatar || ''    // optional
    };

    return jwt.sign(payload, LOGAFLOW_PROJECT_SECRET, { algorithm: 'HS256' });
}
2

Authenticate your user in the Widget

To authenticate your user in the widget, you need to pass the generated token to the Logaflow widget:

<!DOCTYPE html>
<html lang="en">
<head>
    ...
    <!-- Logaflow widget script -->
    <script
        type="module"
        crossorigin="true"
        async
        src="https://widget.logaflow.com/addons/logaflow-widget.umd.js?version=1.0.3"
    ></script>
</head>

<body>
    <!-- Add Logaflow widget web component to the top of your -->
    <logaflow-widget
        project-key="YOUR_LOGAFLOW_PROJECT_TOKEN_HERE"
        trigger-text="Example"
        sso-token="USER_SSO_TOKEN" <!-- Pass user SSO Token here -->
    ></logaflow-widget>

    ...
</body>
</html>
3

All set!

After these steps, your user will be authenticated and you will be able to identify them in the feedback sent by them on the feedback details page:

User identification with SSO


Token payload

The JWT token generated in your application must contain the following information:

id
string

This field is optional, however, and will only be used to send to your registered webhooks

name
string
required

This field is mandatory and will be used to identify your user within Logaflow and for your registered webhooks

email
string
required

This field is mandatory and will be used to identify your user within Logaflow and for your registered webhooks

avatar
string

This field is optional and will only be used to improve the experience in Logaflow and will also be sent to your registered webhooks