How to Expose Digital User Journeys to Unauthenticated Users

Banking and financial institutions might want to provide their consumers with unauthenticated access to specific contracts and agreements with the click of a button (widget) on their website. Starting with FintechOS 18.1.9, they can do so by exposing standard digital user journeys to unauthenticated users.

Starting with FintechOS 18.2, custom user journey can also be exposed to unauthenticated users.

Note: Only the wizard like digital user journeys (the ones that have the Wizard mode checkbox selected in the user journey configuration page, Sections tab) can be exposed to unauthenticated users.

Is it secure to expose digital user journeys to unauthenticated users?

A B2C environment with a secure architecture has been designed to allow exposing user journeys to unauthenticated users (consumers).

The desired wizard-like digital user journey is exposed on the organization’s website via an iFrame. As iFrame is vulnerable to hacker attacks, a reverse proxy sits between the internet and FintechOS apps which are placed in a non-public subnet.

The reverse proxy ensures a single point of authentication for all HTTP requests, forwarding the requests to the FintechOS B2C App (the one that contains the digital user journey to be exposed). It also handles requests to the FintechOS Back Office apps (FintechOS Studio and the Digital Experience Portal).

Here’s a simplified diagram of the traffic flow.

In order to expose wizard-like digital user journeys, you need to setup a B2C environment. For information on how to do that, see B2C Environment Setup.