This is an inbound web service invoked by remote systems on Universal Access. It is used to create a Citizen Workspace Account for users who previously submitted an Intake Application anonymously. The service actually performs two discrete functions:
- Create an account for a previously anonymous user.
- Link that account to the remote system that is invoking the Create Account Web Service.
If a Citizen Workspace user is "linked" to a remote system, it means that user is registered on the remote system and the remote system will recognise requests from that Citizen Workspace user as relating to a particular case, cases or an individual on the remote system. This has serious security implications on the remote system – The remote system sending a request to link a user or create an account for a user must be convinced of the identity of the individual who owns the account. The schema for the payload of web service requests of this type can be found in <CURAM_DIR>\EJBServer\components\WorkspaceServices\webservices\ExternalAccountCreate.xsd. A sample SOAP request for this web service is published in Appendix A.
A create account request contains the following information:
- firstName – The client's first name.
- middleName – The client's middle name. Optional.
- surname – The client's last name.
- username – The username for the newly created account.
- password – The password for the newly created account.
- confirmPassword – Confirmation of the password. Must match password.
- secretQuestionType – The type of secret question selected to unlock the user's account. Values should correspond to entries from the SecretQuestionType code table. For example, SQT1 – Mother's maiden name.
- answer – An answer to the secret question. Non empty.
- termsAndConditionsAccepted – Boolean indication that the client has accepted the terms and conditions on which the account is created.
- intakeApplicationReference – Refers to the unique applicationReference passed in as part of the receive application request. If this is specified, a link will be created between the application and the newly created account.
- clientIDOnRemoteSystem – This is a unique identifier that can be used to identify the user of this account on the remote system. There is no prescribed form for this id, it could be a Social Security Number for example. It must be capable of uniquely identifying the client on the remote system.
- sourceSystem – Identifies the remote system that sent this request. This must match the name of a remote system configured in the administration application. For further information on configuring remote systems see the Configuring Remote Systems chapter the Cúram Universal Access Configuration Guide.
If successful this returns the id of the created citizen workspace account. Problems that occur during the processing of the request are flagged by via a fault response. Possible issues include:
- An account has already been associated with the intake application reference.
- The username already exists.
- The username and/or password do not meet minimum mandatory criteria for password strength, username length etc.