The io.cozy.accounts doctype stores authentification informations used by konnectors to connect to external services or API.
Accounts can be managed in Cozy-Home (via Harvest). They are generally associated to a io.cozy.triggers document.
io.cozy.accounts attributes are:
account_type(deprecated) : {string} Slug of the konnector the account is related to.auth: {object} Contains authentification data, typically a couple withlogin/password. It could also contain an attributetokenfor OAuth konnectors.data: {object} Additional custom data.label: {string} Label given by user.state: {string} The account state is used to communicate between the konnector and Harvest to ask for a needed 2FA Code or to tell to reset the konnector session for example. Here are the used values for now:TWOFA_NEEDED: The service is asking for a Two Factor connexion and the related code (sent by the service) must be provided by the user.TWOFA_NEEDED_RETRY: The 2FA code provided by the user is wrong, the user can retry by providing a new one.RESET_SESSION: By finding this state, the konnector should reset the login session if there is one stored and reset the state.
twoFACode: When a 2FA code is asked by the service, Harvest will ask the user for it from and send it to the konnector via this attribute.
The auth attribute may also contain other data, like accountName, folderPath or frequency. As auth should only be used for authentication mechanisms, those two values should disappear soon.
folderPathshould purely and simply disappear, the folder information is stored inio.cozy.trigger.accountNameis in reality thelabel, change should be made soon to fix this mistake.frequencyshould move at the root of the account.namePath: The name of the last folder. Usually saved along withfolderPath.
The auth attributes also contain all values for the fields attribute specified in the manifest.konnector file.
An account may have a parent relationship. It is used to indicate that this accounts depends on another one.
Generally, the konnector should be able to handle by itself this kind of relationshiop, like querying the database to get the information it needs. A parent relationship is aimed to be an account overriden by the account it is linked to, but it can also be use as an aggregator account. See [Cozy-stack documentation about aggregator accounts)[https://github.com/cozy/cozy-stack/blob/master/docs/konnectors-workflow.md#aggregator-accounts].
{
"relationships": {
"parent": {
"_id": "aggregator-service-account",
"_doctype": "io.cozy.accounts"
}
}
}Some konnectors does not use a login parameter, but identifier or email. The usage of anything except login is deprecated and should not be done.
{
"auth": {
"accountName": "freemobile",
"credentials_encrypted": "aaDtwWSWsdpbbbbbbbbbbbbbbOzp2pBEbXlZLWjiTzOGumGRomrF2LwlRn4Y8c=",
"folderPath": "/Administratif/Free Mobile",
"login": "000000000",
"namePath": "Free Mobile",
"password": "*******"
}
}What we aim:
{
"auth": {
"credentials_encrypted": "aaDtwWSWsdpbbbbbbbbbbbbbbOzp2pBEbXlZLWjiTzOGumGRomrF2LwlRn4Y8c=",
"login": "000000000",
"password": "**********"
},
"folderPath": "/Administratif/Free Mobile",
"label": "freemobile",
"namePath": "Free Mobile"
}The connectors based on Linxo API are storing specific informations into data attribute.
{
"account_type": "linxo",
"auth": {
"folderPath": null,
"frequency": "week",
"identifier": "0000000000",
"secret": "*********"
},
"data": {
"auth": {
"login": "[email protected]",
"password": "********************************"
},
"status": "connected",
"token": "f415e",
"uuid": "deadbeef-912e-4ba8-9378-067c5c3e4f54"
}
}