ONYX
Docs

Integration Overview

Review app identity, consent, scopes, assertions, and access changes.

An Onyx partner integration starts with an approved app identity and ends with a user-controlled connection.

The app requests only the scopes it needs. The user reviews the request. Onyx returns only approved access, current state, and safe eligibility results.

Integration Path

The standard path is:

  1. Create an app identity.
  2. Configure app profile, redirect URIs, and scopes.
  3. Sign the user in with Onyx.
  4. Request consent for the required scopes.
  5. Check trust and eligibility.
  6. Check communication permission.
  7. Create app-linked access where approved.
  8. Send approved messages where allowed.
  9. Receive webhook events.
  10. Handle revocation and expiration.

Each step depends on current account, app, and permission state.

App Identity

Every app must identify itself before requesting access.

The app identity includes:

  • app name
  • app description
  • verified domain
  • redirect URIs
  • allowed origins
  • approved scopes
  • review status

Users should understand which app is requesting access.

Scope Configuration

Scopes define what the app wants to access.

Partners should configure scopes before requesting consent.

Unsupported, excessive, duplicated, or unclear scope requests can be rejected.

User Consent

Consent gives the user control over connected access.

The consent flow should show:

  • app name
  • requested permissions
  • intended use
  • expiration timing where supported
  • user action required

The app must respect denied, revoked, expired, or limited access.

Trust And Eligibility

Some integrations need trust or verification assertions.

Approved assertions can answer specific eligibility questions, such as whether identity, age, jurisdiction, organization, or payment eligibility requirements are met.

The app receives only the approved assertion result.

Communication Access

Communication access is separate from login.

An app may sign a user in and still lack permission to message that user.

Before messaging, check:

  • consent
  • reachability
  • app approval
  • thread state
  • reason codes

Access Changes

Access can change after approval.

Access can become unavailable because of:

  • revoked consent
  • expired permission
  • app review changes
  • trust requirements
  • regional limits
  • feature gating
  • thread restrictions

Partners should check current state before each protected action.

Production Readiness

Before production, confirm:

  • app identity is approved
  • redirect URIs are correct
  • domains are verified
  • scopes match the feature
  • consent copy is approved
  • webhooks are tested
  • revocation works
  • blocked actions show clear reason codes