Smart Login
Overview
The Smart Login feature offers seamless access to Smart TVs, gaming consoles, and IoT devices, eliminating the need for traditional passwords by leveraging a secondary device for authentication. This passwordless solution is ideal for smartphone apps, TV apps, and gaming consoles like Xbox and PlayStation.
Common Use Case:
- Ease of Access: Smart TVs, gaming consoles, and IoT devices display QR codes or login links, allowing users to authenticate via their smartphones or PCs, avoiding the need for manual typing on devices without keyboards.
- The Smart Login process is designed for simplicity: IOT devices send secure email links for verification, and with LoginRadius, users can quickly authenticate on a secondary device like a smartphone or PC. This straightforward process ensures a user-friendly experience.
- Enhanced Security: LoginRadius uses secure, tokenized links and encrypted communication to verify safe identity for devices like gaming consoles.
- Cross-Device Compatibility: LoginRadius supports single sign-on, allowing users to authenticate with smartphones or PCs and sync their accounts seamlessly across smart devices
Configurations
Here's how to enable and configure it in your authentication settings:
- Smart Login Configuration
- Configure Email Template
- Navigate to Authentication Configuration > Authentication Method > Passwordless > Smart Login.
- Confirm the feature is enabled. If disabled, request activation via LoginRadius Support.
- Under the Smart Login section, click Configure Email Template.
- In the Smart Login Email Template settings, set the following parameters:
- Request Limit: Maximum number of login requests allowed.
- Disabled Period: Time restriction before allowing subsequent login requests.
- Email Token Validity: Define the token expiration duration.
- You can use the default Smart Login email template or create a new one. Refer to this documentation.
Integration Guide
How Smart Login works in LoginRadius
- Request Login on Smart Device:
Users enter their registered email on their Smart Device (e.g., Smart TV, gaming console, IoT device) to initiate the login process. - Smart Device Monitors Login Status:
The Smart Device continuously checks for updates to see if the login request has been verified. - Verification Email Sent:
A secure login link is sent to the user's registered email address. - User Clicks Login Link on Secondary Device:
Users open their email on another device, like a smartphone or computer, and click the login link to verify their login. - Verification of Token:
Once verified, the system sends the necessary details to log into the Smart Device. - Authentication Completed on Smart Device:
The Smart Device recognizes the verification and confirms the login. The user is now logged into the app and ready to use it.
Implementation Methods
This section offers a detailed walkthrough for integrating a robust and secure smart login process into your application using LoginRadius.
- Initiate Smart Login
- Ping Smart Login
- Smart Login Verification
To allow the customer to log in to their Smart device using email/username, refer to the following integration options:
Integration via API | Integration via V2.js Interface or Hosted Pages |
---|---|
Smart Login By Username API allows login and access/refresh token generation. | V2 JS login Interface This is for login and access/refresh token generation into the front-end application. |
Integration via SDK | Integration via JS SDK |
You can use any SDKs provided by LoginRadius based on your requirements for SDK implementation. LoginRadius GitHub Repositories | Smart Login JS SDK to trigger the smart login link via emailid/username |
Note:
- Both APIs require a GUID to be generated to identify the login attempt uniquely.
- This GUID will be used during the ping process.
After initiating the login request, the email verification process is triggered. A Verification Token is created and embedded in a Login Link as a query parameter. This link is then sent to the customer via email.
Once the customer initiates a login request, start pinging the LoginRadius API using the Smart Login Ping API. Pass the generated GUID in the request to check for valid email verification. If the login link is not clicked, the API will return error code 1139 to indicate the pending action.
Integration via API | Integration via V2.js |
---|---|
Smart Login Ping API: This API is used to ping and keep checking if the Smart Login link has been clicked or not | V2 JS Smart Login Interface: The v2.js smart login interface will automatically handle the ping |
Integration via SDK | Integration via JS SDK |
You can use any SDKs provided by LoginRadius based on your requirements for SDK implementation. LoginRadius GitHub Repositories | JS SDK This is used to do the smart Login to the front-end application using Javascript SDK. |
When the customer receives and clicks the Login Link in the email
https://<app-name>.hub.loginradius.com/autologin/verify?vtype=smartlogin&vtoken=&welcomeemailtemplate=&redirecturl=
Get the vtoken from the email to complete the login process. Below are the available APIs/SDKs to handle the verification within your application.
Integration via API | Integration via V2.js Interface |
---|---|
Smart Login Verify Token API: This API is used to ping and keep checking if the Smart Login link has been clicked or not | V2 JS Smart Login Interface: The v2.js smart login interface will automatically handle the verification |
Integration via SDK | Integration via JS SDK |
You can use any SDKs provided by LoginRadius based on your requirements for SDK implementation. LoginRadius GitHub Repositories | JS SDK This is used to do the smart Login to the front-end application using Javascript SDK. |
Best Practices
To ensure a secure and seamless Smart Login experience, follow these best practices:
- Unique GUID for Login Tracking: Generate a unique GUID for each Smart Login request to track and validate the process securely.
- Secure Communication: Ensure all interactions between the Smart Device and the LoginRadius API occur over HTTPS to protect sensitive data.
- Optimize Cross-Device Synchronization: Design the Smart Device app to actively monitor and update login status from the LoginRadius Smart Login API.
- Rate-Limiting: Implement controlled usage of the ping API to prevent rate-limiting errors.
- Fallback for Token Expiry: Allow users to resend the Smart Login email if the original token expires.