Skip to main content
Version: v5

Overview

Incognia integrates with Auth0 by evaluating every authentication attempt passed through its platform to assess risk. The risk assessment relies on device identifiers, user-provided information, and location behavior collected by the Incognia SDK, which needs to be integrated with your mobile app to support the protection of your mobile logins.

The integration consists of a custom Auth0 Rule that gets executed and communicates with the Incognia APIs. Auth0 Rules run at the end of the authentication process and have access to request related information provided by your app.

Requirements#

Step-by-step#

Forwarding the device's Installation ID to Auth0#

The Incognia SDK collects location and device data to build a behavioral profile for mobile users. This data is tagged with an identifier called Installation ID, which is automatically generated by the SDK.

It is necessary to forward the installation_id to the authentication request. Below is an example of how to do this using Auth0 Lock SDK for Android:

val loginParams = HashMap<String, String>()
loginParams["incognia_installation_id"] = Incognia.getInstallationId()
// Setup the WebAuthProvider, using the custom scheme and scopeWebAuthProvider.login(account)    .withParameters(loginParams)    .withScope("...")    .withAudience("...")    .start(this, object : Callback<Credentials, AuthenticationException> {        override fun onFailure(exception: AuthenticationException) {            Incognia.clearAccountId()        }
        override fun onSuccess(credentials: Credentials) {            // Links this device to the account            val jwt = JWT(credentials.idToken)            Incognia.setAccountId(jwt.subject)        }    })

Choose the integration type#

There are two integrations available on Auth0: Onboarding and Authentication. Which one to use depends on your use case:

Incognia Onboarding#

The Incognia Onboarding integration leverages device intelligence and location behavior to deliver precise address verification. This integration relies on the Incognia Onboarding API and is recommended for verifying new users.

Incognia Authentication#

The Incognia Authentication integration verifies login attempts by analyzing the location behavioral pattern of each user and matching it to their login history. Transactions initiated at unfamiliar locations will result in a higher risk score. This integration relies on Incognia Transaction API.

With this integration, the authentication process can be customized to trigger or bypass MFA challenges, depending on the risk assessment.

Configure the Rule#

  1. Click on Add Integration from the Incognia partner page on Auth0 (Incognia Authentication or Incognia Onboarding)
  2. Save the Rule
  3. Go to the Rules Section on the Auth0 dashboard
  4. Scroll down to the Settings section
  5. Add the Incognia API credentials
  6. In case you chose Brazil as the country of your organization during signup
    • INCOGNIA_REGION must be added with br as the region.

Then proceed to finish the integration: