This flow only applies to users who have been previously authorized using the same application and the same device they are using in their latest session. Additionally, the user must have previously selected the ‘Keep Me Logged In’ option and the application must have the accessToken
in local storage.
The automatic re-login flow consists of the below stages.
The user launches cTrader.
The application finds the stored accessToken
.
The application opens a new connection with the cTrader backend and sends an authorisation request including the accessToken
as a parameter.
The cTrader backend sends a POST request to authorise the user via the provided accessToken
(API call 4.3.).
The broker’s CRM system checks the provided accessToken
and responds with the relevant userId
(API call 4.3.).
The cTrader backend authorises the current session under the provided userId
.
The application starts authorised communications with the cTrader backend.