Developer FAQs #
What is a sandbox? Why should I use one?
Can I create custom roles as an admin?
When should I consider using an existing sandbox vs creating a new one?
When should I consider using an existing domain vs creating a new one?
What is a client? Why do I need to create one?
Where to find logs for different environments/zones?
Environment/Zone | URL |
---|---|
Stage | https://kibana.internal.mum1-pp.zetaapps.in/app/kibana#/discover |
Preprod | https://kibana.internal.mum1-pp.zetaapps.in/app/kibana#/discover |
Prod | https://kibana.internal.mum1.zetaapps.in/app/kibana#/discover |
Axon Stage | https://kibana.internal.ohio1-axonstage.zetaapps.in/app/kibana#/discover |
Sodexo UK | https://kibana.internal.lon1.zetaapps.in/app/kibana#/discover |
What are Proteus Base URLs?
If you want to make API calls over a public network, please use the below set of URLs:
Environment/Zone | URL |
---|---|
Stage | https://sb1-god-cipher.mum1-stage.zetaapps.in/proteus |
Preprod | https://sb1-god-cipher.mum1-pp.zetaapps.in/proteus |
Prod | https://sb1-god-cipher.mum1.zetaapps.in/proteus |
Axon Stage | https://sb1-god-cipher.ohio1-axonstage.zetaapps.in/proteus |
Axon Stage | https://api.ohio1-axonstage.zetaapps.in/ |
Sodexo UK | https://api.lon1.zetaapps.in |
Sodexo UK | https://sb1-god-cipher.lon1.zetaapps.in/proteus |
Environment/Zone | URL |
---|---|
Production | https://cipher.internal.mum1.zetaapps.in/proteus/ |
Preprod | https://cipher.internal.mum1-pp.zetaapps.in/proteus/ |
Stage | https://cipher.internal.mum1-stage.zetaapps.in/proteus/ |
What are SSO Base URLs?
Environment/Zone | URL |
---|---|
Stage | https://sso-stage.zetaapps.in/ |
Preprod | https://sso-pp.zetaapps.in/ |
Prod | https://sso.zetaapps.in/ |
Axon Stage | https://sso.ohio1-axonstage.zetaapps.in/ |
Sodexo UK | https://sso.lon1.zetaapps.in/ |
What are Cerberus OAuth Base URLs?
Environment/Zone | URL |
---|---|
Stage | https://oauth-stage.zetaapps.in/ |
Preprod | https://oauth-pp.zetaapps.in/ |
Prod | https://oauth.zetaapps.in/ |
Axon Stage | https://oauth.ohio1-axonstage.zetaapps.in/ |
Sodexo UK | https://oauth.lon1.zetaapps.in/ |
Where can I find the Auth Center base URL for a particular tenant?
How to get access to DB where session related data is stored?
In case you need it for any specific purpose, please raise a ticket with the devops team to get relevant information with proper approval from your manager. Refer this link for sample ticket.
Can a zetauser token be created for a system user?
How to enable authentication center for a domain and sandbox?
1. You can either use the Hercules platform. Please check out this link for more details.
OR
2. You can reach out to Cipher PSE team.
How to configure CIAM roles in a sandbox without elenchos?
How to update the IDP Id of the identityConfig?
Idp Id of the identityConfig can be updated using the update identityConfig API as mentioned below:
curl --location --request PATCH '/cerberus2/domains//config/identities/'
--header 'Content-Type: application/json' \
--header 'Authorization: Bearer' \
--data-raw '{
"idpId":,
"idpDomainId":,
}'
--header 'Content-Type: application/json' \
--header 'Authorization: Bearer
--data-raw '{
"idpId":
"idpDomainId":
}'
Copy
How to find URLs of Cipher applications in new zones?
1. You can either use Cipher Index Pages for searching the application URL. Please refer this link for more details.
OR
2. You can check the SSOT document that has been created by the DevOps team for your zone. If you can’t find it there, please raise it with Plutus devops team and ask them to add it.
Can we use the zone config token for accessing any API?
b. You can also integrate CRUX for generating the bot token as an alternative.
How is blocking an auth profile different from disabling it?
But if an auth profile is disabled, admin can re-enable it again in future based on the business requirement. Please refer this link for more details
Which Cipher oncall should I reach out to in case of any query?
b. If the issues are not resolved with these FAQs:
i. Issues related to authentication/authorization - Cipher IAM
ii. Issues related to payment - Cipher 3DS
iii Issues related to front end services - Cipher FE
How to check Cipher CIAM event topics?
If you want to know which roles are assigned to any employee or revoked from any employee by the administrator, then you follow the below steps:
1. Sign in to Olympus portal (link) and select the respective zone from the top right corner.
2. In the right hand side, navigate to Logs section and select Kafka.
3. Search the topic "_system_0_privilege" if you want to look the data for all tenants.
4. Search the topic "_tenant_(tenantId)_privilege" if you want to look the data for any specific tenants
If you want to know which actions were performed on the employee profile by the administrator, then you follow the below steps:
1. Sign in to Olympus portal (link) and select the respective zone from the top right corner.
2. In the right hand side, navigate to Logs section and select Kafka.
3. Search the topic "_system_0_authProfile" if you want to look the data for all tenants.
4. Search the topic "_tenant_(tenantId)_authProfile" if you want to look the data for any specific tenants
What limits are present on auth token, refresh token and http session generated using Cipher?
1. Upper limit on validity in minutes beyond which session validity can’t be configured is 120 Minutes
2. Lower limit on validity in minutes below which session validity can’t be configured is 30 Minutes
3. Default value is 30 Minutes
Details of refresh token are as follows:
1. Upper limit on validity in minutes beyond which session validity can’t be configured is 1 Year
2. Lower limit on validity in minutes below which session validity can’t be configured is 60 minutes
3. Default value is 1 Year
Details of http session are as follows:
1. Upper limit on validity in minutes beyond which session validity can’t be configured is 2 Days
2. Lower limit on validity in minutes below which session validity can’t be configured is 5 Minutes
3. Default value is 2 days
How do I get the resource and secret as mentioned in https://bitbucket.org/zetaengg/cipher-jars/src/master/?
2. Resource will be 1 for the first time, else it will be nonce_value + 1.
3. Query: select secret_key, nonce_value from sessions.public.resource_data where user_id = “