Authorize with Hosted Link

See how to integrate Hosted Link into your authorization flow

Codat recommends Link SDK

Instead of Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat., use the Link SDK to fully embed our flexible, white-labeled auth flow in your application.

You will benefit from our extensive experience combined with authorization best practices, providing your users with a native feeling of the auth flow that achieves an 89% conversion rate on average.

Overview

If you're not able to use our LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. SDK, you can choose Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. as your out-of-the-box authorization solution built, provided, and hosted by Codat.

To connect your customers' financial software with Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat., you can:

• Direct your customer from your existing app to the Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. auth flow programmatically, or
• Manually share the LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URL with your customer.

Indicative demo

Curious where Codat's Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. flow might fit in your customer's experience? See how a fictional fintech companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. uses it in our demo.

Integrate LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. in your app

First, create a company to represent your SMBSMB The primary customer segment that Codat helps businesses serve, typically companies with annual revenues under $500 million. in Codat. We recommend doing that at the time your SMBSMB The primary customer segment that Codat helps businesses serve, typically companies with annual revenues under $500 million. user signs up within your app. This way, you can track their connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. status from day one.

To create a new companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources., use the Create company endpoint and provide a name for the companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. in the request body. For details on managing and deleting existing companies, review Manage companies with our API.

Use your customer's ID for the company name

For the companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. name parameter, we recommend you pass the ID that you use for the customer in your internal system. This makes it easier to identify the Codat companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. that corresponds to your record of the customer.

Review the parameters in the example response to creating a new companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources.:

{
  // companyId - retain this
  "id": "1126743b-113d-4d72-b14f-36d6742df487",
  "name": "Superapp",
  "platform": "",
  // redirect - use to redirect your customer to Hosted Link
  "redirect": "https://link.codat.io/company/1126743b-113d-4d72-b14f-36d6742df487",
  "dataConnections": [],
  "created": "2022-05-16T14:55:21.6076495Z"
}

From the response, retain the following:

• companyId, because you will need it for directing your customers to LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. and managing their connectionsConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform.;
• redirect URL value, because you will use this URL in your app to direct the customer to start their LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. journey.

Once your customer finishes the LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. flow, they will be redirected back to the URL you have set in the Link settings. You can also present your customer with a confirmation screen that shows the platforms they have linked.

Monitor the connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. status

To enhance your Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. experience, set up a webhook for when a user authorizes a data connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. of the newly created companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. so that you can action it within your app.

Manage existing users with active connectionsConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform.

Direct the user to the redirect LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URL that you can retrieve from a companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources.'s metadata. This allows them to modify their existing connectionsConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. via the Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. UI.

If you create a new companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. and establish a new connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. for a customer previously connected, you may be billed for it based on your contract.

Manage existing users with pending connectionsConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform.

When a user initiates a connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. but fails to authorize access to their financial platform, a data connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. is created in a pending status in the respective Codat companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources..

In this scenario, allow your user to authorize this connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. by sending them directly to the third-party authentication screen. Use the linkUrl value from the dataConnections array in the companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources.'s metadata. This will prompt the user to authorize the connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. to their financial platform.

Use URL to initiate LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat.

You can request additional security measures within Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat.. LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URLs can have a one-time password (OTP) added as a query parameter to limit the validity and number of uses of these URLs. Contact your account manager if you want to enable these measures.

Link validity

LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URLs enhanced by OTPs behave as follows:

• Your customers aren't able to use the same LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URL more than once.
• CompanyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources.-specific and connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform.-specific LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URLs expire after one day even if they weren't used.

Use the Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URL

Use the Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URL if your customer's connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. is meant to be persistent, and your customer may need to view or update their connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. in the future.

To initiate the flow, follow these steps:

1. Create a company via Portal for your customer.
2. Navigate to the Companies page in the Portal.
3. Find the companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. that you created for the customer, and click Request data next to the companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. name.
4. Copy the LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URL from the box that appears and share it with the customer. This will allow the customer to create and authorize a data connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform..

If a user already has an integration connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. that hasn't been authorized and is not in an active state, click the integration name and copy the URL from the ConnectionsConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. section instead of the LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URL. Share this linkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. with the user to allow them to authorize the specific connectionConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform..

Query parameters in Link URLs

If your application already adds query parameters to LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. URLs (for example, by appending ?link.showSandboxIntegrations=false), confirm that your code can handle URLs that already contain query strings.

Use the Invite companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. URL

Not compatible with OTPs

By default, Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. has an additional authorization enabled that uses OTPs. As a result, it's not possible to use the generic Invite companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. button to invite your customers to share their data.

Contact your account manager if you want to disable these measures.

We recommend using the Invite companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. URL if both of these criteria apply to your use case:

• You want to onboard a large number of new companies without needing to specify companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. names or references, and
• Your companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. and your customer do not need to manage, view, or update connectionsConnection A link between a Codat company and a data source (like an accounting platform). Each connection represents authorized access to pull or push data from that platform. in the future.

To obtain the Invite companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. URL, navigate to the Companies page in the Codat Portal and click the Invite companyCompany In Codat, a company represents your customer's business entity. Companies can have multiple connections to different data sources. button. Before sharing the URL, check that you have customized the LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. flow as desired.

Customize the LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. flow

Our LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. settings allow you to configure the authorization process based on your data needs and manage LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat.'s visuals to suit your brand. You can customize these settings in the Codat Portal in Settings > Auth flow > LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat..

We provide detailed instructions on the use of each setting in our documentation:

• Customize Link settings
• Set up your company branding
• Set up redirect URLs

Limitations

Note the following limitations of the Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. solution:

• Hosted LinkLink The authorization flow that allows end users to connect their accounting, banking, or commerce platforms to your application via Codat. is not compatible with iframes because this is against our security policies.
• Some users may be concerned sharing their data at a codat.io domain. Consider warning them about visiting a third-party website for the authorization process.

To avoid these, try our Link SDK solution instead.

---

Read next

• Learn more about our Link SDK