One Door Authentication
The Verify Token API allows third party systems and client platforms to authenticate users using the YourPropFirm token system. This lets external applications validate user identity without handling login logic themselves.
The token is stored in the browser cookie Access-Exchange-Key. Your system must read this cookie, and send it to the Verify Token API.
If the token is valid, the API returns the full user profile. If the token is missing or invalid, the API responds with an error.
Authentication & Login Redirect
One Door Authentication allows third-party applications to delegate user authentication to the dashboard. Once a user logs in, they are redirected back to the third-party site with a token that can be verified via the Verify Token API to confirm the user's identity.
This is achieved by appending a redirectUrl query parameter to the login page URL.
Important
One Door Authentication only works with domains registered under the same root domain as the dashboard.
Example:
Verify Token API
Method: POST
Description: Validates a YPF authentication token and returns the associated user profile.
Authentication: Basic Auth
Required Header:
Endpoint:
Request Format:
Cookie your system must read: Access-Exchange-Key
Request Body:
Response 200 Success:
Last updated