UCP Identity Linking
Identity linking connects a user to a merchant account so agents can act on their behalf. Treat it as a high-trust flow.
Figure: Identity linking handshake.
When You Need It
- The merchant requires an existing account for checkout.
- Order history or loyalty status affects pricing.
Minimal Linking Flow
- User Consent: explicit approval before linking.
- Token Exchange: short-lived auth token converted to a stable link.
- Revocation: user can unlink at any time.
Security Baselines
- Scope tokens to the minimum set of actions.
- Store only a stable account reference, not raw credentials.
- Log link and unlink events for audit.