Before you continue, here are a few terms that we use and what they mean.
An iWelcome account that was created in our mobile application, having a verified e-mail address.
An entity that holds up billing information and all other associated entities with an account, such as applications, domains, custom mobile apps. When you create an organization, you are the owner and can delegate administrator access to other accounts.
When adding a domain, you are essentially proving that you own or have direct access to the domain, thus validating your intentions of creating an application on that domain. Domains can be in the following states:
- Verified - the domain can be used by an application to enter live mode and route approval requests.
- Pending - the domain is not yet verified and cannot be used to enter live mode.
- Sandbox - the domain is used for development only, the only ones that can perform approval requests are you and other admins.
The single entity that defines how approval requests are handled, using the login widget or doing server-to-server API calls. It also defines firewall rules and limitations on what information the application requires from the user. an application requires a verified domain to be used in live mode.
A generated white-labeled version of the iWelcome Authenticator mobile app, which you can distribute to your end users with customizable UI.
A push notification that is sent to the end user's device, requiring them to either approve or deny an action. We currently offer the following approval requests:
When a user wants to login to a page using their iWelcome Authenticator or custom generated app.
When a user is required to approve or deny a sensitive action that is initiated by your application.
When your application requests access to the user's personal encryption key, in order to decrypt his sensitive data.
When iWelcome Authenticator is used as the second factor and the user wants to enable the two-step verification on your application.
A request that is performed by the iWelcome Authenticator API to your application, in order to announce your application that an event occurred.