Company Activation & Key Retrieval for Integration Partners

Gustav Henriksson - 31 March, 2025

The sandbox company included with your integration is pre-connected. However, for real companies to use the integration, an explicit activation is required.


Company Activation Methods

There are multiple ways for a company to activate the integration:


  • From within BL: By clicking an activation button.
  • From within BL: Using an activation key provided by your integration.
  • From your integration: Redirecting the user to BL’s activation flow via an activation URL (Only supported by web users).

1. At integrations from within the web app or through archives -> integrations from within BL Administration.

Find the public integration and activate by the activation button



2. At integrations from within the web app or through archives -> integrations from within BL Administration.

At the top right corner at the gear icon a company can activate by a activation key created by BL and provided by the integration



3. With a redirect URL from within your platform through an activation flow in the BL web app.

With a provided URL you can redirect users through an activation flow from within your platform.

app.bjornlunden.se/activate-integration/{integrationActivationKey}/{urlEncodedRegisteredCallbackUrl}?extra={optional}.


    3a. The redirect start by asking the user to login if not already.



    3b. The user select which company to connect with.



    3c. The user accept the requested scopes.


    Which will then redirect the user to:

     registeredCallbackUrl/{publicKey}?extra={optional}



How to Retrieve a Company Key

The public key is required to identify and authorize access to a company. You can support any or all of the following methods:


  • Manual: The company copies their public key from BL and pastes it into your platform or service.

  • Callback URL: When a company activates or deactivates the integration, BL makes a backend call to your registered callback URL:
    • yourRegisteredUrl/{publicKey}/ON/{orgNr}
    • yourRegisteredUrl/{publicKey}/OFF/{orgNr}

  • Redirect Flow: Guide the user through BL’s activation flow using:
    app.bjornlunden.se/activate-integration/{integrationActivationKey}/{urlEncodedRegisteredCallbackUrl}?extra={optional}
    After activation, the user is redirected to:
    registeredCallbackUrl/{publicKey}?extra={optional}

  • Redirect from a settings button from within BL: After the activation been done you have the option to display a seccond button on the integration card saying setting. Opon clicking the button the user is redirected to the registered settings URL together with the company public key.

    Example: yourSettingUrl?publickey={publicKey}


Depending on your needs, the methods can be combined to ensure who is activating or making changes.

You can manage your URLs by sending a request to api.se@bjornlunden.com or reach out with any questions you might have.


Helpful Tip

As mentioned in the API Quickguide, you can request a list of company keys from already established connections. This can be helpful when identifying existing links or verifying the status of a company.


Finally We hope you found this guide helpful, and that you will find our API intuitive and productive.
Also please don’t hesitate to reach out to us if you have any other thoughts.

Guide to BL Administration

Gustav Henriksson - 21 February, 2023
To access the sandbox company in BL Administration windows desktop application, you first need to obtain a developer license. Simply send a request email to api.se@bjornlunden.com to get started.

Once your license is activated, you’ll receive an email with your customer number.


Step 1 – Download BL Administration
After receiving the activation email for your developer license, visit https://www.bjornlunden.se/. Click on “Mina sidor” and then “Glömt lösenord”.
Enter your customer number, click “Skicka nytt lösenord”, and confirm your request. You will receive an email with your new password.

Once signed in, you can download BL Administration from the “Mina program” section.

Step 2 – Login and Start Exploring
After installing the application:
1. Open BL Administration and select “Lokal företagsgrupp”.
2. Log in using an asterisk (*) as the username and leave the password field empty.

Step 3 – Licensing BL Administration
Activate your developer-license by clicking on “Licensierat system” – “Uppdatera licens” – ”Licensuppdatering över internet”
Fill in your login details and OK.
At first login you will get a question if you want to import a local sandbox company. Choose as you please and explore our software.

Step 4 – Add the Sandbox company
Now, to the point!


To add your sandbox company to the companylist, click on “ny” and fill in an ID (1-4 digits) and a company name.
Select the “Databas I molnet” and Next.



Select the alternative above and OK.


Fill in the sandbox company database information you received when you activated the API-keys. Database, username and password in that order. (Timeout can be left blank)
Congratulations!

You now have access to the sandbox company in BL Administration and can follow your data from a customer perspective.
Just click on the company in the list and let the testing begin!

API quickguide

Erik Söderlund - 19 May, 2022
First of all, we would like to thank you for your time and interest in Bjorn Lundens AB’s API! In this tutorial we hope to guide you through the steps needed to complete your first successful calls.

Step 1 – onboard your integration
Visit https://developer.bjornlunden.se/get-started/ and complete the necessary steps to acquire the API credentials. We use OAuth 2.0 Client Credentials Flow to identify your integration in our system, and GUID’s for identifying specific companies/databases. Worth noting is that once complete the onboarding process, you also will have access to a sandbox company representing your first connected customer or client.

Step 2 – Get an access token
Call our identity server to get an access token. Each token is valid for 3600sec/1h and multiple tokens can be used simultaneously (but please use best practises by reusing tokens while valid, not to overburden our servers).

curl
--location --request POST '{baseUrlAuth}/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-raw'grant_type=client_credentials&scope=&client_id=&client_secret='

The above call will give you an answer like such:
Step 3 – Get list of connected companies/clients
This call will give you the list of id’s to connected companies. Once you go live with your finished integration, this list will grow as more companies connect themselves through our Marketplace, but if this is the first time you call this endpoint, the list most likely will consist of only the one Sandbox company that we created and connected to you as part of the onboarding in Step 1. These GUID’s are global and static in our systems, and potentially suitable to persist in your system as an identifier for the same company on your end as well.

alt.1
curl
--location --request GET ‘{baseUrl}/meta/allKeys’ \
--header ‘Content-Type: application/json’ \
--header ‘Authorization: Bearer
The answer will be an JSON array of GUID’s each representing a connected company that you are allowed to access through the API.

alt.2
curl
--location --request GET ‘{baseUrl}/common/client’ \
--header ‘Content-Type: application/json’ \
--header ‘Authorization: Bearer
The answer will be a JSON body containing the name, GUID(s), email address and scopes for each connected company that you are allowed to access through the API.

For the Sandbox, you will have extensive rights to enable you to develop your integration to your liking. But when you are ready to go live, we will validate and agree on which endpoints and scopes you will use in production. The ever-growing list of possible calls can be found as Swagger here https://developer.bjornlunden.se/api-documentation

Step 4 – make a call to your Sandbox company
The only additional thing needed from step 3, to make a call regarding a specific company, is the HEADER “User-Key” with the GUID value found in step 3.

curl
--location --request GET '{baseUrl}/details' \
--header 'Content-Type: application/json' \
--header 'User-Key: ' \
--header 'Authorization: Bearer '

That will give you an extensive JSON object with the details of the company identified by “User-Key”. (More information about the response for this call can be found here: https://developer.bjornlunden.se/api-documentation/ under “details” – where you also can find complete Swagger specs)

Finally
We hope you found this quick guide helpful, and that you will find our API intuitive and productive.
Also please don’t hesitate to reach out to us at api.se@bjornlunden.com if you run into trouble or have any thoughts.