Setting Up a Custom Domain for Your Benji Pays Customer Portal 

We’re excited to announce the release of our Custom Domain for Customer Portal feature! This enhancement allows merchants to use their own branded subdomain for their customer portal, making the payment and invoicing experience more seamless and professional.  This feature is fully compatible with all other customer portal features including SSO configurations.

How Does It Work?

With this feature, you can configure a custom subdomain (e.g., billing.yourdomain.com) for your Benji Pays customer portal. Once enabled:

• Branded Experience: Your customers will see your domain in all links to the portal or payment pages, reinforcing your brand.
• Emails Updated:All outgoing emails from Benji Pays will automatically update to use your custom domain for links to the portal and payment pages.
  • Example: Instead of https://portal.benjipays.com, links will use https://billing.yourdomain.com.
• Backward Compatibility: Any existing links will still work, even after the custom domain is set up.

What’s Different?

When you enable a custom domain, there are a few important considerations:

• Single Sign-On (SSO) Integration:
  • If you’ve configured SSO for your portal, the callback URLs and other related settings must be updated to reflect the custom domain.
  • Please ensure your SSO provider is updated with the new domain to avoid interruptions.
  • You can retrieve updated links from your SSO Configuration in Benji Pays under Settings >> Customer Portal Settings
  • It's recommended to leave the existing URLs and add these new ones for backwards compatability
• Vendor Switching:
  • When a custom domain is active, users will no longer have the ability to switch between vendors within the portal, however they can still switch between customers within the vendor they are logged into if they have access to more than one customer. The experience becomes vendor-specific to maintain a cohesive, branded interface.

How to Set Up a Custom Domain

Setting up your custom domain is simple! Follow these steps:

1. Reach Out to Support:
   • Email us at [email protected] with your desired URL for the custom domain.
   • Example: billing.yourdomain.com
2. Configuration by Benji Pays:
   • We’ll configure the custom domain on our end and provide you with the necessary DNS records to add to your DNS system.
3. Add DNS Records:
   • Update your DNS settings as per the instructions we provide. This step ensures your domain is correctly pointed to the Benji Pays platform.
4. Update any SSO configurations setup in your Benji Pays Customer Portal settings:
   • Please see below section on SSO Updates
5. Verify and Launch:
   • Once the DNS entries are verified, your custom domain will go live, and we’ll notify you.

Security Measures for Custom Domain Support

We take security seriously at Benji Pays, and the Custom Domain for Customer Portal feature was built with robust safeguards to ensure your data and your customers' trust are protected. 

Here are the key security measures we implemented:

• Content Security Policies (CSP): We enforce strict Content Security Policies to control which resources can be loaded by the custom domain. This helps prevent unauthorized scripts or malicious content from being executed.
• Hostname Validation: All incoming requests are rigorously validated against an approved list of hostnames. This ensures that only domains authorized by Benji Pays can be used for the customer portal, preventing spoofing or phishing attempts.
• DNS Configuration Verification: Custom domains are activated only after a thorough DNS configuration review. This ensures that the domain points to Benji Pays infrastructure and is controlled by the merchant.
• SSL/TLS Encryption: All communication with the custom domain is encrypted using SSL/TLS, ensuring that sensitive information remains secure in transit.

These measures are important to help ensure that the custom domain feature cannot be exploited by unapproved domains or malicious actors, giving you peace of mind as you enhance your branding and customer experience.

We chose to handle user authentication through our authentication provider on the auth.benjipays.com domain and to send OTP codes via that system from [email protected] for enhanced security and reliability. By leveraging a dedicated authentication provider, we ensure that our authentication processes meet the highest standards of security, including industry-leading encryption, ongoing vulnerability testing, and compliance with modern security protocols. This approach minimizes the risk of introducing vulnerabilities that could arise from building and maintaining custom authentication code within our application. It also allows us to focus on our core features, such as custom domain functionality for our merchants, without compromising security. By centralizing authentication, we ensure a consistent, secure user experience across all custom domains, reducing the attack surface and maintaining a robust defense against phishing, credential stuffing, and other potential threats.

If you have further questions about security or would like more details about our processes, please contact us at [email protected].

Portal SSO Updates

If you are using our Customer Portal SSO integrations, you will need to update some settings with your OAuth/IDP provider, here is an example using the HaloSSO as an example:

error:invalid_request
error_description:The specified 'redirect_uri' parameter is not valid for this client application.

In Benji Pays, go to Settings >> Customer Portal Settings >> SSO (Single Sign On Configuration) and click edit on your SSO Configuration and find this info there.

Need Help?

If you have questions about configuring your custom domain, updating SSO settings, or anything else, don’t hesitate to contact us at [email protected]. We’re here to ensure a smooth setup and an excellent experience for your customers!

This new feature is part of our ongoing efforts to give you more control and flexibility over your customer experience. Try it out today and let us know what you think!