Create a Session
Creating a new Incode Onboarding Session
Considerations
- You will need a
flowIdfrom a previously created Incode Flow. - Onboarding Sessions must be created in your application back-end (never directly from the front-end application) using the Incode Omni API, specifically the
/omni/startendpoint.
Session creation flow
Let’s take a look at the basic process for creating a new Incode Session:
The /omni/start endpoint.
/omni/start endpoint.This endpoint is responsible for creating new Incode sessions.
As you can see in the diagram, the /omni/start endpoint is requested immediately after the page is opened through a custom endpoint in your application backend.
The /omni/start returns a JSON response that contains metadata about the newly created Incode session.
Check the start onboarding API endpoint for a complete reference of the endpoint's inputs and output.
/omni/start Requests examples:
/omni/start Requests examples:Be aware of the headers and the request body needed for this request:
Headers:
| Header | Value |
|---|---|
api-version | "1.0" |
x-api-key | The API Key provided by Incode |
JSON Request Body:
| Key | Value |
|---|---|
configurationId | The Incode Flow identifier for all your new sessions |
externalCustomerId | Optional: Id that links the new onboarding session to this specific id; you can query all the sessions related to this id on the Incode Dashboard. |
redirectUrl | Optional: when used in conjunction with /omni/onboarding-url, the webflow will redirect to this URL at the end of the flow. You can also configure this on the dashboard |
Handling the /omni/start response
/omni/start responseYou must process the response in your application backend after creating a new Incode Onboarding Session.
The /omni/start response will return multiple values. For now, we will focus on the values needed for your web application.
The interviewId
interviewIdA unique interviewId string (or session id) is assigned when a new session is created. Store each interviewId you create in your application backend.
The session token
tokenThe Web SDK needs a valid session token to communicate with the Incode API. The /omni/start will return a new token each time you create a new session.
Send back only the token and the interviewId to the frontend
token and the interviewId to the frontendtoken and interviewId are the only keys to the omni/start response, and the SDKs need to work with the Incode Omni API.
Best Practices
Always use a configurationId
It is mandatory to use a configurationId when a session is created. This ID links the new onboarding session to that specific flow, and all the configurations set on that flow (thresholds) are used when the verifications are executed by the Incode APIs.
Create a new session for every onboarding attempt
It is mandatory to create a new onboarding session every time that an onboarding attempt it is executed even if it is related to the same user, it is required due the following.
- To preserve the session integrity.
- To get more performant analytics.
Onboarding Token
The Onboarding Token or Session Token is a JSON Web Token returned by the [omni/startAPI](start interview) endpoint when a new session is created. This token is used to call the Omni APIs required as part of the onboarding process. Learn more about Session Tokens here ↗.
Sample Servers
We have developed example servers for the most common languages. These sample servers include useful endpoints for starting a session and can be used as a reference to help speed up development cycles.
One more thing
The second most common task within the backend is fetching an onboarding URL for web flows. That's why all our example token servers also have that feature. You can remove it or keep it as needed in your own implementation.
Updated about 1 month ago
Congrats! Now, you know how to create and handle new onboarding sessions.