Login

As part of registering a customer with Quantotto, a new user is created. Among other properties, Login and Password are provided. These are user credentials that should be entered during login process.

Login Process

Quantotto will authenticate user against local or external directory, authorize user (by checking their membership in “Quantotto” group) and, if everything checks out, will grant access to Quantotto Management Console simulteneously issuing ID and Access tokens:

• ID token will contain user identity
• Access token will be used to authenticate against application APIs on behalf of the user

When user is successfully logged in, UI will show “Logout” button in the upper right corner along with Login name of currently logged in user. Pressing “Logout” will end the user session and invalidate all tokens.

Expiration

The above mentioned tokens are issued for 60 minutes. If user remains active, Quantotto Management Console will be refreshing tokens automatically behind the scenes.

After 50 minutes of inactivity, Management Console will display expiration warning (in the top) counting down minutes remaining. User activity at this point will refresh the tokens and warning message will vanish.

After 60 minutes of inactivity, session will end automatically and Management Console will redirect user to login page. User should simply enter their credentials to regain access to Management Console.