Criipto, a Copenhagen-based company, offers advanced electronic identity (eID) solutions that provide secure user authentication and digital signatures. Integrating Criipto into your app simplifies the onboarding process, enhances security, and improves user experience.

This software instruction will guide you through the steps necessary to integrate Criipto's eID solutions into your app, offering clear instructions and best practices to ensure a smooth implementation!

What Is Criipto?

Criipto provides authentication services using national eID systems like BankID and NemID for secure user verification, digital signatures, and multi-factor authentication. Criipto solutions are used in finance, government, and healthcare solutions.

Who Needs Criipto Integration

Integrating Criipto's eID solutions into your app is crucial for various stakeholders who prioritize security, efficiency, and user experience. Here are some key groups that can greatly benefit from this integration:

Financial Institutions

Banks, credit unions, and other financial service providers need robust authentication methods to protect sensitive customer information and comply with regulatory requirements. Criipto's secure eID solutions streamline the onboarding process, allowing customers to quickly and securely access financial services without the typical bureaucratic delays.

Government Agencies

Government entities that handle personal data and provide online services can enhance security and trust by integrating Criipto's eID solutions. This integration helps verify the identity of users accessing sensitive information or completing official transactions, ensuring compliance with data protection laws and enhancing public trust in digital government services.

E-commerce Platforms

Online retailers and marketplaces that process transactions and store customer information can use Criipto to provide secure and smooth user authentication. This not only protects against fraud but also improves the overall shopping experience by enabling quick and secure sign-ins and checkouts.

Healthcare Providers

Hospitals, clinics, and telemedicine providers handling sensitive patient data can benefit from Criipto's eID solutions by ensuring that only authorized individuals can access health records and services. This integration supports compliance with healthcare regulations and enhances patient trust in digital health platforms.

Enterprises with Remote Workforce

Companies with remote employees need secure authentication solutions to protect access to corporate systems and data. Criipto's eID solutions provide a secure way for employees to authenticate their identity remotely, reducing the risk of unauthorized access and ensuring business continuity.

Legal and Professional Services

Law firms and professional service providers managing confidential client information can use Criipto to ensure secure client interactions and digital document signing. This not only safeguards sensitive data but also streamlines workflows and enhances client confidence in their digital services.

HAVE A PROJECT FOR US?
Share your idea and we will contact you within 24 hours.

Contact us

How To Integrate Criipto Into Your App?

This guide will be oriented toward using the digital signature feature of Criipto.

Step 1. Registration in Criipto

First, you must sign up for the Criipto service and create an application. Registration is conducted through its website.

After that, in the left menu, navigate to the domains section.

Create a default domain using some unique name and proceed to the applications section.

Write the application name and select the domain created in the previous step.

In the next section, select all authentication methods that should be supported in your application.

After the creation of the application, copy and store the client ID and secret in a safe place.

Step 2. Integrate Criipto into your application

Criipto signature orders work through GraphQL requests, so ensure you can send HTTP requests.

For example, you can use graphql-java-kickstart library


<dependency>
   <groupId>com.graphql-java-kickstart</groupId>
   <artifactId>graphql-webclient-spring-boot-starter</artifactId>
   <version>2.0.1</version>
</dependency>

To work with Criipto, you need to configure the GraphQL client and provide client credentials in the header of every request.


@Bean
public GraphQLWebClient criiptoGraphQLWebClient(@Value("${criipto.url}") String url,
                                               @Value("${criipto.client-id}") String clientId,
                                               @Value("${criipto.client-secret}") String clientSecret,
                                               @Autowired ObjectMapper objectMapper) {
   final int size = 10 * 1024 * 1024;
   final ExchangeStrategies strategies = ExchangeStrategies.builder()
           .codecs(codecs -> codecs.defaultCodecs().maxInMemorySize(size))
           .build();
   var webClient = WebClient.builder()
           .exchangeStrategies(strategies)
           .baseUrl(url)
           .defaultHeaders(header -> header.setBasicAuth(clientId, clientSecret))
           .build();
   return GraphQLWebClient.newInstance(webClient, objectMapper);
}

Now, create a test producer for signature orders. This producer will take a pdf file and send it to Criipto with information about signatories and webhook URL, to receive events related to signature order.


var input = new CreateSignatureOrderInput();
ClassLoader classLoader = Warmup.class.getClassLoader();
byte[] array;
try (var stream = classLoader.getResourceAsStream("photo.pdf")) {
   array = stream.readAllBytes();
}
String blob = new String(Base64.getEncoder().encode(array));
input.getDocuments().add(new DocumentInput(new PadesDocumentInput("test document", blob, DocumentStorageMode.Temporary)));
input.getSignatories().add(new CreateSignatureOrderSignatoryInput("test company"));
input.setWebhook(new CreateSignatureOrderWebhookInput(WEBHOOK_URL));
input.getEvidenceProviders().add(new EvidenceProviderInput(new CriiptoVerifyProviderInput("key")));
input.setMaxSignatories(1);
Map<String, Object> variables = new HashMap<>();
variables.put("input", input);
var request = GraphQLRequest.builder()
       .resource("createSignatureOrder.graphql")
       .variables(variables)
       .build();
var a = criiptoGraphQLWebClient.post(request).blockOptional();

After sending the request, you will receive a response with a signature URL that should be provided to signatories. You can find the URL in x.createSignatureOrder.signatureOrder.signatories[0].href

This URL will redirect you to the Criipto page with your PDF and sign options.


The signatory can choose the sign method by clicking on the bottom button. The available methods depend on which integration you pick on application creation in Step 1.

After signing a request to your webhook url will be sent. In the request body, you will see information about the signature, for example:

Conclusion

Thus, integrating Criipto allows secure authentication and document signing. In this study case, we outlined a basic integration of Criipto. However, there are other useful features of this technology, such as editing and signing orders, deleting orders, etc. Also, Criipto user authentication feature can be used as the main and secure auth provider in your application.

If you need a consultation on your project or integration case, don’t hesitate to contact us!

Software development Team

[1]

Need estimation?

Leave your contacts and get clear and realistic estimations in the next 24 hours.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
coin image
Estimate Your Mobile App
Take a quick poll and get a clear price estimation

TRY NOW