Qodex.ai

Configure a PingOne App to Use a DaVinci Flow Policy

Number of APIs: 4

You need to begin in DaVinci, and create the DaVinci application, the DaVinci flow, and the flow policy on the application. See How to create a flow for instructions. You'll need the DaVinci flow policy ID to define the PingOne application's flow policy assignment property.

DaVinci flow settings configuration

DaVinci flows invoked using a PingOne authorize request require special configuration. In DaVinci, when you create your flow, on the flow's Settings screen, you must toggle on the PingOne Flow property located on the General tab.

PingOne DaVinci flow

Setting this property indicates that the flow is a PingOne flow, enabling it to be included in PingOne flow policies and launched directly from PingOne.

PingOne endpoints

This activity shows you how to create a PingOne application, find and associate a DaVinci flow policy with the application, and initiate the flow using a PingOne authorize request. This scenario illustrates the following common operations supported by the PingOne APIs:

  • Create the application.
  • Assign a DaVinci flow policy to the application.
  • Create the PingOne authorize request.

To create the application and flow policy, the following tasks must be completed successfully:

  1. Make a POST request to /environments/{{envID}}/applications to add a new application to the specified environment.

  2. Make a GET request to /environments/{{envID}}/flowPolicies to return the list of DaVinci flow policies that can be associated with the PingOne application.

  3. Make a POST request to /environments/{{envID}}/applications/{{appID}}/flowPolicyAssignments to assicn a DaVinci flow policy to the application.

  4. Make a GET request to /{{envID}}/as/authorize to obtain an authorization grant. This request starts the authorization flow using the DaVinci flow policy you assigned to the PingOne application.

Click the Run in Qodex button below to download the Qodex collection for this use case.

  1. Step 1: Create a PingOne web application POST {{apiPath}}/environments/{{envID}}/applications

  2. Step 2: Read all flow policies GET {{apiPath}}/environments/{{envID}}/flowPolicies

  3. Step 3: Create the flow policy assignment POST {{apiPath}}/environments/{{envID}}/applications/{{dvFlowAppID}}/flowPolicyAssignments

  4. Step 4: Send an authorization request GET {{authPath}}/{{envID}}/as/authorize?response_type=code&client_id={{dvFlowAppID}}&redirect_uri=http://localhost:3000/login/callback&scope=openid