UAE PASS
  • UAE PASS
  • Overview
  • Getting Onboarded with UAE PASS
    • Onboarding Process for UAE PASS Service Providers
      • Initiation Phase
      • Development Phase
      • Assessment Phase
      • Go live Phase
  • Quick Start Guide - UAE PASS Staging Environment
    • User Account Types
    • Create Staging UAE PASS Account
    • Upgrade Staging UAE PASS Account
    • Testing Credentials for POC
    • Conduct a POC with UAE PASS Authentication
  • Feature Guides
    • Authentication
      • Web Integration
        • Introduction
        • Pre-Requisites
        • Endpoints
        • 1. Authorization Code
        • 2. Access Token
        • 3. User Information
        • 4. Logout
        • Login Button
        • Authentication Postman Walkthrough
      • Mobile Integration
        • Introduction
        • Pre-Requisites
        • Requirements
        • Guide
          • SDK
          • API
        • SDK Integration
      • Token Validation API
        • Introduction
        • Pre-Requistes
        • Endpoints
        • Integration Steps
          • 1. Verify access token API using Basic Authentication
          • 2. Obtaining Authenticated User Information from the Access Token
        • Validation Decisions
      • User Linking
        • Automatic Linking
        • Manual Linking
        • Corporate Account
    • Digital Signature
      • Digital Signature (Single Document)
        • Signing Guide
          • Endpoints
          • Document Signing Steps
            • 1. Token
            • 2. Create Signer Process
            • 3. Sign Document
            • 4. Obtaining Document
            • 5. LTV Configuration
              • Integration Web Services
              • Postman Collection for LTV
            • 6. Deleting Document
          • Document Signature verification Process
          • Postman Collection for Digital Signature
            • Digital Signature Postman Walkthrough
        • Verification API Integration
          • Web Service Details
          • Postman Collection for Signature Verification API
      • Digital Signature (Multiple Document)
        • Signing Guide
          • Endpoints
          • Document Signing Steps
            • 1. Token
            • 2.Create Documents
            • 3. Create Signer Process
            • 4. Sign Document
            • 5. Obtaining Document
            • 6. LTV Configuration
              • Integration Web Services
              • Postman Collection for LTV
            • 7. Deleting Document
          • Document Signature verification Process
          • Postman Collection for Multiple Document Signing.
    • e-Seal
      • Introduction
      • DESC Process for Dubai Entities
        • Process overview
        • Detailed DESC process description
      • ICA Process for Non-Dubai Entities
        • Onboarding Process
        • Obtaining Credentials and Certificates
      • Integration Web Service
        • PAdES eSeal Signing
        • CAdES eSeal Signing
        • eSeal verification
        • eSeal error codes
      • Postman Collection
    • Hash Signing
      • Introduction
      • Hash Signing (Single Document)
        • Hash Signing (Java SDK Set Up)
          • Quick Setup
          • Hash Signing Process
            • 1. Start the Process
            • 2. Initiate Signing Process
            • 3. Sign PDF Document
          • Endpoints
          • Postman Collection
          • Utility Files
      • Bulk Hash Signing (Multiple Documents)
        • Quick Setup
        • Hash Signing Process
          • 1. Start Signing Process
          • 2. Initiate Signing Process
          • 3. Sign PDF Document
        • Endpoints
        • Postman Collection
  • Web Registration
    • Introduction
    • Steps to create account
    • Endpoints
      • 1. Access Code
      • 2. Access Token
      • 3. User Information
  • Facial Biometric Transactions Confirmation
    • Web Integration
      • Endpoints
      • Integration Steps
        • Obtain Authorization Code
        • Obtain Access Token
        • Obtain User Info
        • Log out User
    • Mobile Integration
      • Mobile Integration Guidelines
  • Guidelines
    • Use-Case Guidelines
      • Standard Authentication Scenarios for Service Provider Use Cases
      • Standard Digital Signature Scenarios for Service Provider Use Cases
      • Standard Implementation Guidelines
    • Design Guidelines
      • UAEPASS Button Guideline
      • Text Message Guidelines
  • Resources
    • Attributes List
    • Sample Apps
    • Staging Apps
    • Assets
  • FAQ
    • Common Integration Issues
  • Versioning
Powered by GitBook
On this page
  • UAEPASS User Linking Flow
  • Use Cases
  • Use Case 1
  • Use Case 2
  • Use Case 3

Was this helpful?

  1. Feature Guides
  2. Authentication

User Linking

PreviousValidation DecisionsNextAutomatic Linking

Last updated 8 months ago

Was this helpful?

UAEPASS User Linking Flow

Use Cases

We are detailing here few use cases and SP can handle accordingly:

Use Case 1

User logged in using his UAEPASS Account and the user is having an existing account in SP application, then allow the user to connect its SP user account with UAEPASS account {Integrating parties should support two modes as applicable.}

Automatic Linking

In case Automatic Accounts Linking is adopted "this is applicable if the relying party maintains the IDNnumber of the Emirates ID (or any other common attributes) for local users and in this case the link happens depending on the IDN."

Other attributes like date of birth, passport number or any shared attribute between the User Profile in UAEPASS and Relying Party are also recommended to be used to uniquely identify user if applicable.

Note: For linking, it is recommended to use “uuid” attribute returned by UAEPASS for user linking purposes for subsequent visits.

Manual Linking

In case Manual Linking is adopted, the user should be challenged by the Relying Party application with his Relying Party's account username and password (or any other authentication mechanism) and on successful authentication, the linking can be achieved by storing the linking attributes (e.g.uuid, idnetc.) at Relying Party side. This is one time activity and should be done only on first linking attempt.

Note: For linking, it is recommended to use “uuid” attribute returned by UAEPASS for user linking purposes for subsequent visits.

Use Case 2

User has logged in using his UAEPASS Account and the user is non-existing user in Relying Party application, then allow the user to register and create account using the User Information retrieved from UAEPASS.

Auto Populate Form

User is creating an account with entity and he has not logged in using UAEPASS, entity should give the end user the option to auto populate entity User Form using the UAEPASS Authentication Service.

Register using UAE PASS option

UAEPASS can be used to populate Local User Registration Form for Relying Party Registration.

Use Case 3

On Successful authentication at UAEPASS, the control is sent back to SP irrespective of user type. The SP should handle the authorization or flow at their end as per the user types and their business.

SOP1 : In case of SOP1, UAEPASS will not return the Emirates ID number attribute as the user has still not verified his/her emirates ID at this stage. SP should handle such case by showing an appropriate error message to SOP1 Users.

Automatic Linking
Manual Linking
Corporate Account
User Linking Flow