Is it possible to ensure that a user has received an SMS on their mobile phone using SMS authentication method and/or CustomerID mobile phone number verification process?
Step-by-step guide
Ubisecure SSO calls the URL listed in the SMS authentication method. Eg. http://hostname/sendSMS?id=23uhf3423s&from=+38111&to={mobile}&content={challenge}
...
For example, Orange SMS Gateway service returns a 200 status code even if the sending fails. An intermediate proxy is required to parse the XML response and determine if the message has been sent or not. Message sending can be prevented for example for technical reasons or billing reasons (lack of usage credits). Orange returns a transaction ID upon successful send request, which can then be used later to call a different REST interface to check for delivery status. A HTTP callback from the SMS gateway is also possible. As a general rule, user interface text should be modified according to customer requirements to describe what to do if SMS sending fails. (“If the problem persists, please use TUPAS”, “If the problem persists, please call support”) If the SMS gateway requires a different format than HTTP GET (WebService, POST, custom API), customer or integrator implementation of a simple proxy application is required. A sample implementation of a simple proxy for demonstration purposes is available upon request
Related articles
| Filter by label (Content by label) | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
...