Access to the wizard¶
By default, your wizard is accessible to everyone. Each user will be considered anonymous and will not share any personal information. You may need to restrict access for specific people only or you may want to know certain information such as first and last name or email address to be able to use it for your purposes. You will need to activate the authentication for your wizard.
Once authentication is activated, your users will not be able to start a conversation without going through the login form included in the dialog box.
Your users will be able to either log in if they already have an account or create a new account. They will have to validate their email by following the instructions sent to their email inbox to access the wizard, in order to certify that they are the owners of the email used to log in.
Once logged in, users will be able to chat with the wizard as normal.
In your intentions, you can access the session after having correctly configured the context of your intention. To do this, we will start by switching to expert mode by clicking on the button at the top right :
We can display the context settings and add the keyword
Then, in the parameters section, you have to declare the parameter that will read the content of the session. You can give any name you want to this parameter as long as its value is
#session.user. Here we will use
You now have access to a variable named
$user that you can use for the conditions of your answers and in the texts of your answers and they will be saved in your dataflow.
The settings allow you to enable or disable the real-time functionality by checking or unchecking the box :
You can choose by which Identity Provider you want to allow your users to connect :
If you activate the Prisme provider, your users will be able to create an account on the platform and we will be in charge of verifying the validity of their information through email validation. We leave this responsibility to other identity providers.
You then have the choice to let through any authenticated person or only specific users. The first option will be useful if your goal is to retrieve credentials:
But you may also just want to restrict access to certain people. You can then indicate the list of allowed emails. You can use an asterisk to authorize an entire domain. Convenient if you want to give access to all members of your company.
Restriction by IP address¶
You can restrict access to your wizard for a specific IP(s) by enabling this setting and filling in the list of allowed IPs :