ZenKey is a secure bridge between your users and the apps and services you provide. As the joint undertaking of the three major US wireless carriers — AT&T, Verizon, and T-Mobile — ZenKey leverages encryption technologies in a user's mobile phone and mobile network. The platform packages multiple factors of authentication into a streamlined experience for app and website providers, taking advantage of the unique capabilities and insights of the wireless carriers. It then applies those capabilities to provide an easy and secure way to register, login, and perform other types of authorizations within apps and services. The result for you is a better user experience and a more secure link to users.
ZenKey SDK supports the authorization code flow for web and native applications. In the flow, the user is redirected to the carrier for authorization. Upon successful authorization, the user is redirected to your backend with an authorization code, which your backend exchanges for an ID Token (
id_token). This flow enhances security, as neither the
user_id token are revealed to your client.
Because each mobile carrier operates its own authorization servers, ZenKey determines the user’s carrier prior to authentication through a process is called Carrier Discovery — an OIDC Discovery flow with extra parameters that ensure the discovery document from ZenKey originates from the right carrier.
The solution enables two main process flows: app and web. The app flow is for your native apps or browser-based websites that are used on the same device as ZenKey. The web flow shows secondary device support when your website is accessed from a device other than a user’s primary phone.
Updated 10 months ago
|Auth code flow and carrier discovery|