less than a minute read • Updated 7 minutes ago
Single sign-on parameters reference
A lookup reference for the parameters passed between Foxy and your site during single sign-on authentication.
Parameters Foxy sends to your SSO endpoint
Parameter | Type | Description |
|---|---|---|
| string | The customer’s Foxy session ID. Required to maintain the session across domains, particularly when a store isn’t using a custom subdomain and the customer has third-party cookies disabled. |
| integer, epoch time | The current time on Foxy’s server. Used only to confirm your server’s clock is in sync with Foxy’s — don’t return this value as-is (see below). |
| string | The type of transaction involved. Passed conditionally. If present, your endpoint shouldn’t make a CURL request to the cart, or the cart will be emptied. |
Parameters your endpoint sends back to Foxy
Parameter | Type | Description |
|---|---|---|
| string (SHA-1 hash) | A hash of |
| string | The Foxy session ID, echoed back from the value Foxy sent to your endpoint. |
| integer | The customer’s Foxy customer ID, as set or retrieved via the API. Use |
| integer, epoch time | The future time at which this authentication token expires. Must match the timestamp used to generate |
Notes
fc_auth_tokenis invalid if it doesn’t match a hash of the samecustomer_id,timestamp, and secret key computed by Foxy, or iftimestamphas already passed. In either case, Foxy redirects the customer to the store’s configured URL.After four checkout attempts that don’t reach the checkout page, Foxy redirects the customer to the store’s homepage to prevent an infinite loop. Reaching checkout successfully resets this counter.