Passthrough Create
Loading...
API endpoint path: /mx/{institutionId}/{mxSsoResourcePath}
Transparent passthrough for POST requests to the MX SSO APIs. The service provides a RESTful interface for authenticating users on the MX platform; endpoint paths, headers, query parameters, and request/response schemas are defined in the MX documentation.
Use this endpoint to:
- Invoke MX SSO POST APIs to authenticate users on the MX platform—the primary use case
is the get configurable widget URL endpoint, which MX recommends over the deprecated
list urls endpoint (see GET) for both testing and production. Pass widget-specific
configuration in the request body and set matching
AcceptandContent-Typeheaders (application/vnd.moneydesktop.sso.v3+jsonorapplication/vnd.moneydesktop.sso.v3+xml), along with a URL extension (.jsonor.xml) as required by the target endpoint. - Obtain embeddable widget URLs for MX Personal Finance Management (PFM), Financial Insights,
and other supported widget types with per-request options such as
deep_link_params,style,use_cases, or Connect Widget parameters. The configurable widget URL endpoint returns responses faster than list urls and always includes aurlfield; issued URLs are single-use and expire 10 minutes after creation. - Submit request payloads for other MX SSO create operations to authenticate users or provision SSO resources, as defined in the MX documentation.
- Access MX SSO create operations through the Candescent API Gateway instead of calling MX directly.
Behavior and capabilities:
- The gateway validates the OAuth V2 bearer token,
correlationId, andext_host, injects theMD-API-KEYfor MX SSO routing, and removes Candescent-specific headers before forwarding the request to MX. - Proxies requests using the path
/mx/{institutionId}/{mxSsoResourcePath}, whereinstitutionIdcorresponds to the MXclient_id(used in MX paths such as/{client_id}/...), must match the value in the OAuth V2 token, and is used when forwarding requests to MX. - Forwards all MX-supported headers, paths, query parameters, and request payloads without modification.
- Returns MX HTTP status codes and response payloads without modification.
Request
Responses
- 200
- 400
- 401
- 403
- 404
- 429
- 500
- 502
- 503
- 504
Response payload returned by the target MX SSO endpoint. Refer to the MX SSO APIs documentation for supported schemas and examples.
Bad Request
Unauthorized
Forbidden
Not Found
Too Many Requests
Internal Server Error
Bad Gateway
Service Unavailable
Gateway Timeout