Skip to main content

Magic Link

Overview

Magic Link authentication (also known as passwordless authentication) allows agents to log in to Deepdesk using a temporary link sent to their email address. This provides a secure, user-friendly authentication method without requiring password management.

For a complete view of how Magic Link fits into Deepdesk's overall authentication system, see the Authentication Login Flow.

Flow Steps

  1. Initial Sign-In Attempt: The agent is logged into the CX platform and sees an overlay above the input field with a button "Sign in to Deepdesk"

  2. Access Request: When the agent opens the link, the system checks if the email address exists in Deepdesk:

    • If the email does not exist, an access request email is automatically sent to this address

  3. Manager Approval:

    • The agent opens the access request link
    • A request is sent to the manager for approval
    • The manager reviews and approves the access request

  4. Magic Link Delivery: Once approved, a magic link is sent to the agent's email address

  5. Authentication:

    • The agent opens the magic link from their email
    • The agent is automatically logged in to Deepdesk

  6. Return to Platform:

    • The agent returns to the CX platform
    • After refreshing, the agent sees Deepdesk suggestions and can start using the platform

Security Considerations

  • Temporary Tokens: Magic links are temporary and expire after a configurable period
    • Token expiry is controlled by the SESAME_MAX_AGE setting
    • Default expiry time: 600 seconds (10 minutes)
  • Single-Use: Links become invalid after first use
  • User-Specific: Each link is tied to a specific email address and cannot be transferred
  • Approval Workflow: The access request process ensures proper approval workflow for new users

Implementation

The magic link authentication is implemented in the Deepdesk admin application. For technical implementation details, see:

See Also

  • SSO Authentication - OAuth2-based authentication for platform integration
  • API Key - Alternative authentication method for specific platforms