Modify a Domain Allow List

Endpoint URL: {socialLoginDomain} /api/v2/set_domain_patterns

Description

Use the set_domain_patterns call to replace the current allow list for an application.

Respects the API Client Allow List: No

Accepted Content-types

application/x-www-form-urlencoded
multipart/form-data

Authentication

This endpoint uses your social login API key for authentication. This key can be found on the Settings page of the Social Login Dashboard.

Base URL

The base URL for this endpoint is your application domain followed by /api/v2; for example:

https://educationcenter.rpxnow.com/api/v2

You can find your application domain in the Social Login (Engage Dashboard) on the Settings page:

Example Request

This command assigns two domains (*.rpxnow.com and *.akamai.com) to the allow list for the social login application 1234567891234567891234567891234567891234. When configured, only those domains listed on the allow list are able to communicate with your social login application. Among other things, that means you can only login or register from domains on the list.


curl -X POST \
  --data-urlencode apiKey=1234567891234567891234567891234567891234 \
  --data-urlencode domains='*.rpxnow.com,*.akamai.com' \
  https://janrain-docs.rpxnow.com/api/v2/set_domain_patterns

Running this command in Postman

Example Response


{
  "stat": "ok"
}

Query Parameters

Parameter	Type	Required	Description
apiKey	string	Yes	Social Login API key. This key can be found on the Social Login Dashboard.
domains	string	Yes	Comma-separated list of domains that serves as the website allow list.

How to Create an Authentication String

To create an authentication string, combine your API client ID, a colon (:), and your client secret into a single value. For example, if your client ID is abcdefg and your client secret is hijklmnop, that value would look like this:

abcdefg:hijklmnop

Next, take the string and base64 encode it. For example, on a Mac, you can base encode the string using this command:

echo -n "abcdefg:hijklmnop" | base64

If you’re running Microsoft Windows, you can encode the string by using a Windows PowerShell command similar to this:

[Convert]::ToBase64String([System.Text.Encoding]::UTF8.GetBytes("abcdefg:hijklmn"))

The resulting value (e.g., YWJjZGVmZzpoaWprbG1ub3A=) should be used in your authentication header.

If you are making API calls using Postman, select Basic Auth as your identification type, then use the client ID as the username and the client secret as the password.

Before you actually try your authentication string, make sure that your API client has the all the permissions (for example, the right to read user profile information) needed to complete the API call.