Dialogporten User Guides Getting dialog details

Getting dialog details

How to get dialog details in Dialogporten

Introduction

This guide shows how a end-user system can access specific dialogs in Dialogporten using either REST or GraphQL APIs.

Note that the data structure that is returned when getting single dialogs differ from the one returned on the search endpoint; the dialog details view offer more information about the dialog and what the user may access.

Basic steps (REST)

Authenticate as a end-user
Find the dialog ID you want to access. To search for accessible dialogs, see the search endpoint. Dialog IDs can also be discovered via events.
Perform a GET request to /api/v1/enduser/dialogs/{dialogId}.

Returned information

The data structure returned consists of all the data available in the search endpoint, and additionally

title, summary and additional info (text)
front channel embeds (ie. referenced content)
actions that can be perfomed
activity log
transmissions

For full details, see the dialog details entity.

Authorization

Dialogporten will perform a authorization check against Altinn Authorization for the dialog and its components, checking whether or not the authenticated identity has access to

any or all of the defined actions
any or all of the defined transmissions

These entities have a flag, isAuthorized, which is either true or false. If false, the URLs associated with the action or transmission is replaced with a special value, urn:dialogporten:unauthorized.

Authentication level

Resources in Altinn Authorization may contain a policy that adds a requirement for a minimum level of authentication in order to access that resource. Altinn supports four security levels.

In ID-porten, authentication methods use the eIDAS Levels of Assurance (LoA) to indicate security levels. There are three levels, “low”, “substantial” and “high”; however ID-porten currently only supports authentication methods giving “substantial” or “high” levels of security. These are mapped to Altinn security levels 3 and 4, respectively.

Attempting to access dialog details with a token with insufficient authentication level will result in a 403 Forbidden error.

About system users

While eIDAS LoA does not define authentication levels for non-interactive, enterprise authentications such as Maskinporten, for historic reasons, Altinn maps these authentications - which in practice, involves system users - to level 3.

eIDAS mandates that both “substantial” and “high” levels of security can only be attained by multi-level authentication (MFA). So while one can assume that “substantial” maps to “level 3” and “high” maps to “level 4”, the inverse is not necessarily true.

Working with dialog details

The data returned will look something like the structure below.

This is an abbreviated and simplified model where some mandatory fields are omitted/altered for brevity

{
    "id": "01945fca-3189-7159-b3e6-d6ff8f9cca0c",
    "org": "ttd",
    "serviceResource": "urn:altinn:resource:some-service",
    "party": "urn:altinn:person:identifier-no:08895699684",
    "content": {
        "title": "Melding fra TTD",
        "summary":  "Et sammendrag på inntil 250 tegn her.",
        "mainContentReference": { 
            "value": "https://externalsite.com/fce/e859b33d54ca",
            "mediaType": "application/vnd.dialogporten.frontchannelembed-url;type=text/markdown"
        }
    },
    "dialogToken": "eyJhbGciOiJ..snip..RwLXN0YWdpbmctMjQ",
    "attachments": [
        {
            "displayName": "Vedleggsnavn.pdf",
            "urls": [ 
                { 
                    "url": "https://externalsite.com/attch/vedlegg.pdf", 
                    "consumerType": "Gui" 
                }
            ]
        }
    ],
    "guiActions": [
        {
            "url": "https://externalsite.com/gui/formfill",
            "priority": "Primary",
            "title": "Gå til utfylling"
        }
    ],
    "apiActions": [
        {
            "version": "20250215",
            "url": "https://externalsite.com/api/formpost",
            "httpMethod": "POST",
            "requestSchema": "https://externalsite.com/schemas/20250215",
            "responseSchema": "https://externalsite.com/schemas/response"
        }
    ]
}

Note that the data structure contains actual content - it contains instead references to content via either front channel embeds or attachments, both of which refer to endpoints external to Dialogporten.

Additional requests will have to be performed in order to fetch these resources. The end user system should expect that all these endpoints require authentication and that the same authorization is enforced as on the dialog, action or attachment itself. Typically will the endpoints require that the same kind of token (ID-porten or Maskinporten with system user) is provided but with a separate scope. For Altinn-based services, please refer to the documentation for Altinn Correspondence and Altinn APps.

Read more

Reference information about the dialog details entity

Handling front channel embeds

There may be several front channel embeds (FCEs) in a dialog:

One (or zero) on a dialog level
One (or zero) per transmission (there may be several transmissions)

The basic steps to handle front channel embeds are:

Perform a GET request to the URL indicated, supplying the the dialogtoken in a Authorization: Bearer-header
Based on the indicated media type, parse the response (usually markdown) and convert to the presentation format (usually HTML)
Inject the converted data into the GUI

The endpoints are expected to fully support the CORS-protocol, including pre-flight, enabling the use of fetch() and similar APIs within a constrained web browser environment.

Read more

Seen log updates

Read more