Glossary
This section defines the key terms used in this technical documentation. General-purpose terms are not included unless their meaning sufficiently differs from their ordinary definition.
Full integration - the complete set of available integration modules. Brokers may deploy modules incrementally. Full integration represents the full-suite end-state.
Broker's client area/CRM system/backend - a software suite belonging to a broker. In general, such systems allow managers to perform several actions embedded into the broker's business flows including making withdrawals/deposits, creating accounts and passing KYC checks. Performing these actions is only permitted to existing authorised users.
cTrader/cTrader backend - a piece of software designed and distributed by Spotware Systems. This backend suite allows for managing, creating and authorising users within the cTrader environment.
SSO (OAuth) - a series of flows enabling traders to engage in user creation/authorisation without leaving cTrader. Spotware's SSO (OAuth) solution still uses brokers' client areas as user creation/authorisation servers.
Application/platform - these terms denote cTrader mobile applications (both iOS and Android), the cTrader web client and the cTrader desktop suite.
One-time (OT) token - a one-time access token generated by a broker's client area in response to a request sent by the cTrader backend. OT tokens can also be generated by brokers' backend systems automatically when authorising existing users or creating new users.
Long-term access token (accessToken) - a long-term access token generated by a broker's backend when responding to a request from the cTrader backend. Alternatively, in the automatic re-login flow, brokers' CRM systems are tasked with validating an already existing long-term token. Long-term tokens are issued for an indefinite period determined by individual brokers.
Note that the long-term token is only issued if a user selects the Keep me logged in (or a similarly named) option during creation/authorisation.
Partner/IB - an individual stakeholder whose main responsibility is to attract new traders to brokers; successful trader acquisitions typically result in the provision of monetary rewards.
cTrader Invite - the name for the Partner/Trader Attribution integration. Enables referral programmes and trader attribution via the cTrader platform.
In-app controls - a set of UI controls available to end users. Interacting with an in-app control should result in the platform performing an associated in-app action (defined below). In-app controls are included in the SSO (OAuth) package.
In-app action - an action that, from a user's perspective, needs to be taken within the trading platform but is, nevertheless, carried out within a broker's client area/CRM.
One-time token handoff - a minimal integration approach using short-lived one-time tokens to transfer user identity between cTrader and broker systems without full OAuth implementation.
SSO user creation and authorisation - complete OAuth implementation where the broker's CRM owns and manages user identity, providing unified authentication across all platforms.
Module composition - the strategic combination of identity and feature modules to create tailored deployment packages for specific business needs.
Conformance testing - mandatory validation procedures conducted by Spotware to ensure compliance with SSO (OAuth) integration standards and requirements.