Posted: 7 May 2021 8:02 EDT Last activity: 7 May 2021 16:43 EDT
Passing confidential information from portal to webchatbot
We have a requirement to get account number from portal to webchatbot channel once the customer initiates the chat. referring to "pegaHelperExtension.js" provided by Pega OOTB we see there are setCookie and getCookie functions to fetch these inputs. But these variables are visible in the network trace and leads to client security concern.
@AbdulAhad The code given in the PegaHelperExtension is an example of how to pass the data from desktop to the Webchatbot. In the actual implementation you would pass some other item like session ID or some other identifier that can then be looked up by the server.
Normally, some sort of a session id would be stored as the cookie, which would have been generated by the Website's authentication process. That is what you would pass through, not the actual account number or any other PII.