Nonce Security Mechanism

Providing a nonce for the start and validation steps is yet another optional security mechanism.

  • In this case, you can create your own custom unique value and send it to Auth Armor during the start of an auth request.
  • Then, during validation, you should send the same nonce to Auth Armor and our systems will validate that the value was the same as what was provided at the start of the auth request.
  • This helps to prevent phishing attempts and is highly recommended.

JavaScript Client SDK

  • To use the nonce security feature with the JavaScript Client SDK, you need to provide your own value and set that value via a method in the setup of the SDK.