This service is meant to validate de Session in SSO for Mexico supported backend
Paths
/v1/x-global/sso/session/validate
Validate the session in a specific backend.
This API is meant to validate the session for a specific system and promote the scope to Customer
A 128 bit universally unique identifier (UUID) that you generate for every request and is used for tracking. It is recommended to use the output from Java UUID class or an equivalent.If not provided by, PSG will automatically inject one.
{
"default": "a7d1e304-83a9-4413-af97-62615e57eae66807840"
}Content-Types that are acceptable for the response. Currently we support application/json by default.
{
"default": "application\/json"
}application/json.If not provided, PSG will automatically inject default (application/json)
{
"default": "application\/json"
}HTTP Accept-Language header.If not provided, PSG will automatically inject default (application/json)
{
"default": "en-US"
}2 character ISO country code.If not provided, PSG will automatically inject default (MX)
{
"default": "MX"
}3 character business code.If not provided, PSG will automatically inject default (GCB)
{
"default": "GCB"
}channel Id used by the user.
The client ID you received during application registration in the developer portal
Bearer token aquired from APIM token endpoint
Request object with the data to validate the session
Session Validated successfully
(BAD REQUEST) - Request was not processed
| Type | Code | Details |
| invalid | invalidRequest | Missing or invalid Parameters |
| invalid | invalidHMAC | 629-HMAC comparison failed |
| invalid | invalidServerRandom | 630-EventID/Server random comparison failed |
| error | cannotDecryptData | 620-Cannot decrypt, please re-check the encrypted value. |
(FORBIDDEN) - Unauthorized to perform the requested operation on resource
| Type | Code | Details | More Info |
| invalid | accessNotConfigured | The request operation is not configured to access this resource | Channel/Country/Business provided in the request is not supported currently |
(INTERNAL SERVER ERROR) - API Server Error
| Type | Code | Details |
| fatal | serverUnavailable | The request failed due to an internal error/server unavailability |
| error | hostSystemNotSupported | Host backend system not supported. |
Definitions
{
"type": "object",
"required": [
"customerId",
"sessionContext"
],
"properties": {
"customerId": {
"type": "string",
"description": "this is the customer Id of client"
},
"sessionContext": {
"type": "string",
"description": "this is the session context with a length 49 positions"
}
}
}
{
"required": [
"code",
"type"
],
"properties": {
"type": {
"type": "string",
"description": "
invalid - Request did not confirm to the specification and was unprocessed & rejected. Please fix the value and try again
warn - Request was partially processed. E.g. some of the fields are missing in response to the system issues, request was accepted successfully but will be processed asynchronously
error - The request was accepted but could not be processed successfully
fatal - There was an internal system error while processing the request. These are technical errors and will be resolved by Citi, and the consumer should retry after some time. Business errors will not be categorized as fatal ",
"enum": [
"error",
"warn",
"invalid",
"fatal"
]
},
"code": {
"type": "string",
"description": "Error code which qualifies the error"
},
"details": {
"type": "string",
"description": "Human readable explanation specific to the occurrence of the problem"
}
}
}