Getting Started with Array APIs
Useful Documents
- API Reference: https://docs.array.com/reference
- API Flow Diagram: https://drive.google.com/file/d/1N6wIGmweseCxm6GxABHdy3YlEtodfBoc/view?usp=sharing
- Credit Report API Flow: https://docs.array.com/docs/credit-report-api-flow
- Postman Collection: https://docs.array.com/docs/postman-collection
- OpenAPI/Swagger: https://docs.array.com/docs/openapiswagger
- Customer SSO Flow Overview: https://docs.google.com/document/d/1de8VhYJZL6CMS2zm0xCGMXHqYte8_r-KbMD3YvRXVjA/edit?usp=sharing
Base URL: https://sandbox.array.io
Client Authorization: The API does not require authentication
User Flow
This is the typical user flow using Array APIs:
- See if the user is already enrolled in Array:
- Do you have a clientKey for this user?
- No - User must be enrolled and authenticated.
- Display and obtain user consent.
- Obtain the user’s information
- Call Create User
- Create User returns a permanent clientKey.
- Store the clientKey - This is used the next time to verify that the user is already enrolled.
- Call Retrieve Questions
- Display authentication questions to the user
- Call Submit Answers
- Yes - User is already enrolled and authenticated. You may proceed to calling the desired APIs.
- Call the desired API(s)
- Listen for component and webhook events and respond accordingly.
Integration Workflow
This is the workflow for setting up Array API calls (see also the Array Web Component Flow Diagram):
- Create User- A user must first be created in Array before they can access any Array features.
- This is done only the first time a user accesses Array features.
- The user must be prompted for and give their consent.
- Create User can be called using existing user info, if you have it. Otherwise you will need to prompt the user to provide it before calling Create User.
- appKey (required)
- First Name (required)
- Last Name (required)
- SSN (required)
- Date of Birth (required)
- Address (required)
- Street Address
- City
- State
- ZIP
- Output
- clientKey
- Upon successful user creation, a permanent clientKey associated with the user is returned and must be stored. It is the existence of this clientKey which permits your system to determine whether a user needs to enroll in Array or not.
- Authentication - A user must also be authenticated before they can access any Array features.
- This is done only the first time a user accesses Array features.
- The user will be authenticated by answering questions based upon their credit history.
- Call Retrieve Questions to get the authentication questions.
- appKey (required)
- clientKey (required)
- provider1 (required)
- Output
- authToken
- provider
- questions[]
- text
- id
- answers[] (for the user to choose from)
- text
- id
- Display the authentication questions to the user.
- Get the user’s answers.
- Call Submit Answers to answer the authentication questions.
- appKey (required)
- clientKey (required)
- authToken (required)
- answers (required)
- Key-value pairs of questionId-answerId returned by Retrieve Questions
- Output
- userToken
- Upon successful authentication, a short-lived userToken associated with the user is returned. If this token expires during a user’s session, a new userToken can be obtained by calling Create User Token.
- Call other API(s) for which you are subscribed.
- Other APIs can now be called in a similar manner.
- Listen for webhook events and respond accordingly
- https://docs.array.com/docs/webhook-events
- Array sends webhook events to a listener that you have set up.
- Credit alerts are sent out via webhook events.
- https://docs.array.com/docs/efx-alerts
- The "webhook" examples show how these alerts would appear from our events.
- The titles of these alerts are customer-friendly explanations that you can include in the alert notifications (text message, email, etc) you send to the user.
Updated 2 months ago