Identity Orchestration Nodes

This document provides a detailed overview of the LoginRadius IO Nodes. Nodes are essential components that define and control the system's workflows. They represent discrete tasks or functions, such as user authentication and session management.

As modular elements in the Identity Orchestration workflow builder, nodes allow you to define specific processes for identity management. These nodes are categorized based on their functions, allowing you to configure highly customizable workflows and tailor the system to meet your needs.

Configuration

1. Log in to your Admin Console
2. Follow the steps in the IO Workflow Guide.
3. Use the left-side panel in the Workflow Builder to explore and add nodes to your workflow.

Authentication Nodes

Authentication Nodes are essential for identity-related operations, ensuring robust and scalable user authentication workflows.

• Auth: Facilitates user login via email and password authentication.
• Social Auth: Enables login through social media platforms like Google or Facebook.
• OAuth Auth: Configures OAuth-based third-party authentication methods.
• JWT Auth: Establishes JSON Web Token-based login for secure and scalable authentication.
• SAML Auth: Integrates Security Assertion Markup Language (SAML) for enterprise-level identity exchange.
• Create/Update/Delete User: Manages user profiles, offering creation, modification, or deletion operations.
• Assign Role: Allocates role-based permissions to enhance access control.
• User Exists: Verifies if a user profile already exists within the system.
• Breached Password: Checks user credentials against breached password databases.
• Privacy Status: Updates and tracks user privacy consent preferences.
• Data Query: Executes custom queries to retrieve or manipulate user data.
• Update Pin / Verify Pin: Manages secure PIN creation and validation for added security.
• Identity Lookup / External Identity Lookup: Fetches user details from internal or external sources.
• Store Custom Object: Stores additional custom information for personalized workflows.

Service Nodes

Service Nodes facilitate session management, user interactions, and communication services. These nodes are integral to creating workflows that handle backend operations effectively.

• Webpage: Processes webpage-based requests and interactions.
• Message: Sends alerts via SMS, email, or other communication methods.
• Has Session: Detects active user sessions.
• Pin Session: Establishes session management using secure PINs.
• Get/Set Custom Cookie: Retrieves or assigns application-specific cookies for advanced control.
• Get/Set Session Data: Manages session variables for streamlined authentication flows.
• Send Email / Send Suspended Email: Dispatches triggered or account-related emails to users.
• Send SMS / Verify Email/SMS OTP: Manages OTP delivery and validation for two-step verification.
• Verify Authenticator / Security Question / Backup Code: Confirms multifactor authentication and recovery credentials.

Auth Security Nodes

Auth Security Nodes provide tools to strengthen user account security and enforce access control measures.

• Account Active: Ensures the user's account status is active.
• Suspend/Lock/Unlock Account: Disable or unlock user accounts as needed.
• Force Logout / Logout: Ends user sessions immediately for enhanced security.
• Configure MFA: Guides users in setting up Multi-Factor Authentication.
• MFA State / Unconfigured State: Tracks whether MFA is enabled or pending configuration.
• Configure Authenticator / Security Question: Establishes authenticator apps and security questions for recovery.
• MFA Update Phone: Updates contact information for MFA communication.
• Download Backup Code: Provides fallback codes for authentication challenges.
• Reset Authenticator: Resets previously configured MFA methods.
• Update Security Answer: Revises user responses to security questions.
• RBA (Risk-Based Authentication): Implements adaptive authentication policies to mitigate potential risks.

Page Nodes

Page Nodes manage user-facing elements like input collection, verification prompts, and consent agreements. They are designed to enhance the user experience during authentication and make developers feel at ease with the system's user-friendly design.

• Identity: Initiates the user identity verification process.
• Email/Phone/UserName: Captures corresponding user credentials during authentication.
• Password: Manages secure password input and validation.
• Form: Accommodates generic input forms for tailored user needs.
• OTP Input / Pin Input: Facilitates verification using One-Time Passwords or secure PINs.
• Backup Code Input: Allows recovery through predefined backup codes.
• Remember Me: Supports persistent login sessions.
• Privacy/Consent Prompt: Collects user preferences on privacy policies and consent requirements.
• Captcha: Adds human verification to counter bots and spam.
• Choice: Creates decision branching within workflows for dynamic flow adjustments.
• Google Authenticator Input: Incorporates Google Authenticator codes for MFA.
• Security Question Input: Verifies answers to user-set security questions.
• Social Login Nodes: Includes integration for platforms like Facebook, Twitter, and LinkedIn.
• Custom Object Input: Supports additional inputs for custom authentication objects.
• Inbound SAML/OAuth/JWT: Handles inbound third-party identity verification protocols.

Helper Nodes

Helper Nodes provide advanced customization capabilities, enabling developers to integrate external services or execute complex logic within workflows.

• Webhook: Allows data syncing with external services via HTTP requests.
• Child Workflow: Embeds and executes a workflow within another workflow.
• Auto Lookup: Enables automatic retrieval and processing of user-related data.
• Scripts: Provides the flexibility to run custom scripts for advanced use cases.

Related Resources

Enhance your understanding with these additional references:

• IO Workflow Guide
• IO Overview
• IO Workflow Examples
• IO Theme Customization