Secure Partner Verification in Custom Dashboard Cards

You can now securely verify partner identities when embedding external tools and custom dashboards in the Partner Portal using a new, signed macro.

Securely Identify Partners

When customizing the Partner Portal, you might embed external applications—such as third-party fraud tools or custom performance dashboards—directly into custom cards. Previously, securely identifying which partner was viewing an embedded iframe required complex and fragile workarounds.

To streamline this and ensure security, we have added native support for a signed partner identification macro. This allows your external systems to verify partner identities directly and securely, without relying on browser-side workarounds.

Key Benefits

• Secure Embeds: Safely embed third-party applications and custom dashboards directly inside the Partner Portal.
• Reliable Authentication: Authenticate partner sessions using a secure cryptographic signature that cannot be guessed or spoofed.
• Simplified Setup: Eliminate the need for complex and fragile proxy setups to verify partner identities.
• Data Control: Ensure partners only see their own performance and fraud data within your custom cards.

How It Works

• New Signed Macro: Custom dashboard cards now support the {affiliate_id_signature} macro. When rendered, this macro dynamically generates an encrypted, HTML-safe signature containing the partner's ID and a timestamp.
• Validation: Use the Network API at /networks/signature/validate to validate the signature on your backend, confirming the partner's identity and the exact time of the request.
• Built-In Security: If a signature is invalid or unrecognized, the validation will fail, preventing unauthorized access to your custom portal integrations.