Entitlement: Preconditions for connecting with Purple
6min
purple manager summary in this article, you get an overview of all the necessary information, that is needed by sprylab, to connect your external entitlement system with purple as soon as we have received all your input, we will do the steps needed to make your external entitlement system work with purple if you are in doubt about any point in the list, get in touch with your project manager requirements for the estimation phase description of access logic what types of access are needed? is it a netflix model? are contents unlocked on a publication date / publication / single content basis? type of api? rest api or oauth 2 0 / openid sso saml2 is not supported documentation of interfaces for custom rest apis description and examples for all request and response parameters status codes response bodies for oauth 2 0 / openid is provider auto configuration supported? if not description of all endpoints, request and response parameters, status codes and response bodies any other individual logic (limitations of login counts, login via deep links etc) requirements for the implementation phase all of the requirements from the estimation phase prepare and provide information on the test environment for oauth 2 0 / openid allow all redirect urls from entitlement integrations docid\ siw6wkdufl38beqbm8ahh urls of endpoints client id / secrets for rest apis urls of endpoints credentials, e g basic auth, client certificates or api keys (if needed) test users for all possible combinations of access examples user with access user without access (or expired access) user with an expired subscription but who should still have access to past issues user with access to specific contents only (ie certain publications) we can only integrate with external systems when certain performance thresholds are met our systems have strict limits for requests to external systems any request taking longer than 3s will be cancelled furthermore our systems will automatically disable an integration, if more than 50% of all requests within a timeframe are slower than 2s it will stay disabled until requests are faster again we reserve the right to adjust these limits in case we notice negative impact on our systems and/or other customers we strongly recommend that the refresh tokens used for oauth 2 0 based entitlements are usable more than once this is needed to avoid unexpected logouts due to network problems (slow responses, interruptions etc) when the refresh flow fails to return the new refresh token to the client but internally invalidated the used token any further use of the now invalidated token will lead to a automatic logout for the enduser it is best practice, that the test users remain stable and do not expire this is important for later tests! we also offer our custom interface purple standard entitlement interface https //docs purplepublish com/developers/standard entitlement interface