When using bronID's White-label Forms, the links that are generated are known as signed URLs. A signed URL provides limited permissions and is only valid for a certain amount of time (30 days). Signed URLs contain authentication information in their query string, which significantly reduces the likelihood of brute-force attacks or guessed URLs. These links can only be created from an account that has the bronID credentials.
It's important to note that the White-label URL will expire after 30 days or 10 attempts to access (view) the Form. To avoid your customers accessing an expired signed URL, you must unlock the Form when your customer is ready to submit the verification. This can be achieved when your customer clicks on the "Verify ID" button on your platform. At this point, you should execute the unlock API call and redirect them to the resulting link.
If required, you can also manually unlock the Form via the bronID Portal. Follow these simple steps:
- Log in to the bronID Portal.
- Click on "KYC" and select "Results."
- Click on the row with the organisation's name.
- In the right side slider, you will see the generated link. Click "Unlock" to unlock the URL.
Note that the URL will be valid for another 30 days or 10 attempts to access (view) the Form, after which it will expire. By following these steps, you can ensure that your customers can access the White-label Form easily and securely.
