One-Time URLs: The Importance of Disposable Access

The Importance of Disposable Access

Providing remote access to your internal resources can be a real challenge. If you must deliver an application to potential customers or your contractors need temporary access to corporate desktops, disposable connections can help you provide one-time secure remote access while avoiding complex configuration steps.

If you are responsible for delivering remote access to resources, you know that setting the environment up can turn into a nightmare. The risk increases when granting access to total strangers: unlike simple screen sharing, enabling unattended access to a remote desktop session requires a user definition or assignment.

Then, how can you prevent those users from attempting to reuse guest credentials? How can you provide the most secure and convenient alternative whenever they need access to those resources? How to successfully combine web and desktop worlds into a single, integrated environment? Well, this is when the importance of being discardable becomes a necessity.

One-Time-URL is how Thinfinity allows you to create a single use-and-discard web address. In a nutshell, you can set and configure the desired connection and generate a dynamic link you will provide to the user for one-time access to a desktop or application on your local network. This dynamic link can be created by admins with built-in credentials and predefined session duration.

How to integrate One-Time URL in Thinfinity Remote Workspace

1. First, you need to ask Thinfinity Remote Workspace to generate your URL. Call Thinfinity Remote Workspace server following this URL format:



2. The queryString should be built with all parameters listed below:

apikey= <apikey> &apiuser= <apiuser> &model= <model> &plen= <passlen> &expires= <expires>

Find in the table below a description for each parameter:

Parameter Description
apiKey The ApiKey is a secret value known only by Thinfinity® Remote Desktop Server and the corporate application. Find out more about it on the ApiKey topic.
apiuser Use this parameter to identify the user within Thinfinity® Remote Desktop Server. The value should be the user or email registered on your website. The users are seen in the Analytics Web Service.
model Send the profile key of the profile you want to connect to. The profile’s settings will work as a template for the One-Time-URL connection that will be established. You can modify these settings by adding more parameters to the One-time-URL.
plen The plen parameter carries the password length.
expires Through this parameter you can set an expiration(in minutes) for the URL. Expires = 60 means that the URL won’t work anymore after 60 minutes from the URL generation.


On the next topics, you can find out other parameters you can use to Configure the connection and Enable features.


3. If Thinfinity® Remote Desktop Server gets to authenticate with the parameters sent on the queryString, it will return a One-Time-URL that will allow you to establish an RDP connection with the remote desktop.



Concatenate the Thinfinity® Remote Desktop Server address to the generated URL, following this format below:



This way, the URL will be ready to be used. You can redirect your application to the desktop connection through it or even send it to an external user by e-mail.


⚠️You will find an HTML/ajax example inside the application installation directory, under the ‘webrdp’ folder. The file is named oturltest.html and implements the features covered on this topic.


In conclusion, a One-Time URL offers a useful way to extend web-enhanced applications to new scenarios. We are convinced you will greatly benefit from this Thinfinity Remote Workspace feature.

If you found this article interesting and want to know more about Thinfinity Remote Workspace,
you can contact us or schedule a 15-minute demo call with one of our Sales Engineers.

Leave a comment

Privacy Preferences
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.