Does anyone know how we can authenticate customer’s contacts other than using the soon to be deprecated user credentials? A couple of years ago I’ve created a RESTLet and used the user credentials mechanism to authenticate customer’s contacts via a 3rd party web portal. Since the user credential authentication for RESTlet will soon be deprecated I am trying to investigate how customer’s contacts can be authenticated. I am not able to create any tokens for this this type of entity since tokens can only be created for users. So the current flow is that a customer’s contact visits a 3rd party web portal and tries to login by using their NetSuite credentials. The 3rd party web portal then pass these credentials by sending a request to the RESTlet. The data passed includes the NLAuth authorization header. When the supplied credentials are valid then the RESTlet will simply return a success which makes sure the customer’s contact can login into the 3rd party web portal.

this sounds Outbound Single Sign-on (SuiteSignOn)

Customer center can work with SSO. We are implementing a project based on that right now. There are some issues with it, for instance you cannot specify which role to use, so each customer center user must have only one customer center role, otherwise a role will be chosen randomly.

Thanks for the tips. I’m looking into Inbound SSO.