Documentation
Feedback
Guides
API Reference
App Development
Storefront Development
VTEX IO Apps
Troubleshooting
Release Notes
API Reference
Filter By
Post
Get
Put
Delete
Patch
Anti-fraud Provider API
Audience API
Buyer organizations (B2B Suite)
B2B Contracts
B2B Buyers
B2B Addresses
B2B Password Migration Protocol
Budgets API
Buying Policies API
Legacy CMS Portal API
Card Token Vault API
Catalog API - Seller Portal
Catalog API
Checkout API
Checkout Custom Card Payment API
Customer Credit API
Custom Checkout Fields
Delivery Promise Notification API
Delivery Promise Suggestions API
GiftCard API
Giftcard Provider Protocol API
GiftCard Hub API
Headless CMS
Intelligent Search API
Intelligent Search Events API - Headless
License Manager API
Logistics API
Marketplace API
Marketplace Protocol
VTEX Shopee Integration API
Master Data API - v2
Master Data API - v1
Message Center API
mTLS API
Operational Capacity API
Orders API
Organization Units API
Payment Provider Protocol API
Payments Gateway API
Pick and Pack API
Pick and Pack Last Mile Protocol API
Pick and Pack Order Changes API
Policies System API
Pricing API
Pricing Hub
Promotions & Taxes API
Promotions & Taxes API v2
Punchout API
Reviews and Ratings API
Recommendations BFF API
SKU Bindings API
Search API
Session Manager API
SSL Certificates API
Storefront Roles API
Subscriptions API (v3)
VTEX Ads API
VTEX Shipping Network API
VTEX DO API
VTEX ID
Profile System (Data Protection Plus)
Orders API - PII Data Architecture (Data Protection Plus)

B2B Password Migration Protocol

The B2B Password Migration Protocol is a set of definitions to help you integrate your legacy authentication system with VTEX's B2B user migration flow. This protocol defines the endpoints that your middleware must implement to enable B2B password migration. Your middleware must provide a client registration endpoint and an authentication endpoint that VTEX will call during the migration process.

To learn more about B2B password migration, check the B2B password migration guide.

This feature is only available for stores using B2B Buyer Portal, which is currently available to selected accounts.

Requirements

  • The middleware endpoint must use a standard subdomain or domain name, not an IP address.
  • All endpoints must be served over HTTPS on port 443 with TLS 1.3.
  • TLS certificates must be valid and issued by a trusted Certificate Authority (CA).
  • Endpoints must respond within 3 seconds (p95≤ 1s, p99 ≤ 2.5s recommended).
  • Never log the Secret, passwords, or signatures.
  • Do not reuse secrets across environments (e.g., staging vs. production).

Endpoints

Client registration

SummaryMethodPath
Register clientPOST/register

Authentication flow

SummaryMethodPath
Validate legacy credentialsPOST/authentication

Loading API specification...