Using OneSpan email invitations in addition to session token URLs - will this work?
Thursday, May 5, 2022 at 02:21pmHello,
In this question I am not looking for any technical details or answers to how to integrate as I am fairly comfortable with our ability to do what is needed. Instead, I am just looking for someone who might have done this before or someone from OneSpan to look over what we want to do and tell me if the OneSpan Sign SaaS solution will allow this or not and tell us if there will be unforeseen constraints going about it this way.
Background
We have an internal business client who is building a "document exchange" type website. This site will allow a customer to see at a glance all pending esign processes they need to complete. The customer will be able to click into any one of them, at which point the website will redirect them into the OneSpan signing experience. Ideally, we would also have the systems in place to handle customer communications, however at this point in time this business system is not able to handle the customer communications. To this end, we want to continue utilizing OneSpan Sign for its email invitation capabilities, which come with the added benefit of enforcing signer order workflows.
The Flow
At a high level, the flow would be something like this:
- During account configuration, we would customize the email templates in the OneSpan account to remove the signing url that comes as default and replacing it with a static link into our own 'document exchange' website.
- When a business system creates a new OneSpan transaction in this account, OneSpan will send out emails to the signers containing our link instead of the signing URL.
- Behind the scenes, our systems will communicate that a transaction was created and sent to the signers. This will be used later by the document exchange when the customer logs in
- The signer will open the email they got from OneSpan and click the link, which will route them to the document exchange website. There they will be required to authenticate
- Once logged in, the signer will see an entry for each of their pending signing transactions - from step 2 above
- When the signer clicks into a transaction, the document exchange will request a single use session token from OneSpan, construct the signing URL with it, and redirecting the signer where they can complete their signing
Thank you!
Reply to: Using OneSpan email invitations in addition to session token URLs - will this work?
Thursday, May 5, 2022 at 03:05pmHi Ron,
Thanks for your detailed information! To the best of my knowledge, I think it's completely feasible to implement the flow. Just one thing that might help facilitate your integration is that when customizing the email template, you can take advantage of the "$PACKAGE_MESSAGE;" variable (package level or signer level message) and build such a link that your system would know which transaction this signer is trying to access, for example:
https://your.document.exchange/login?transactionId=$PACKAGE_MESSAGE;
Duo
Duo Liang OneSpan Evangelism and Partner Integrations Developer
Reply to: Using OneSpan email invitations in addition to session token URLs - will this work?
Tuesday, May 31, 2022 at 09:57amHello,
Thanks for the answer on this. Quick follow-up related to this... Assume that we have an account setup which has emails configured to send for invite, reminder, etc. Is it possible via the REST API to create a transaction with this account in a way that causes those emails to be suppressed for that transaction only? A flag of some sort that would instruct your system not to send them?
Thanks!
Reply to: Using OneSpan email invitations in addition to session token URLs - will this work?
Tuesday, May 31, 2022 at 09:57amHello,
Thanks for the answer on this. Quick follow-up related to this... Assume that we have an account setup which has emails configured to send for invite, reminder, etc. Is it possible via the REST API to create a transaction with this account in a way that causes those emails to be suppressed for that transaction only? A flag of some sort that would instruct your system not to send them?
Thanks!
Reply to: Using OneSpan email invitations in addition to session token URLs - will this work?
Tuesday, May 31, 2022 at 10:08amHi Ron,
For some of the Email notifications that reach out to external signers:
Activate email: The only way I know to suppress activation email per transaction is to flag the transaction as an in-person signing transaction and there's a Backoffice setting to disable activation notification in such scenario.
PS: External signers can't initiate an in-person signing, hence it won't affect the signer experience.
Reminder email: You can turn on/off reminder at the transaction level.
Completion email: I don't think you can control whether to send completion email at transaction level at this point.
Duo
Duo Liang OneSpan Evangelism and Partner Integrations Developer