I am looking for advice on automating an access verification step in Appian.
Each time a user logs in via OIDC, we need to call an external endpoint to verify their access. The endpoint requires the user bearer token issued at login, and we can only reliably perform the check while the user session is active. Because of this, we cannot defer the verification to a scheduled job.
Is there a recommended Appian pattern to run logic immediately on login, so we can call the endpoint once and persist the user’s access in an Appian table. The goal is to avoid invoking the external API on every site page load.
I tried using a service backed record, but it still requires a trigger such as a record view load. Similarly, a process model still needs a user action to start.
Are there any platform supported options for a login hook, post authentication trigger, or another best practice approach to achieve this
Any guidance would be appreciated.
Thanks
Discussion posts and replies are publicly visible
I am not sure that its a good idea to try to solve this from inside Appian. Did you consider to add some middleware like Keycloak to handle this interesting way of authentication?