IBM Cloud Docs
Integrating the web chat with your website

Documentation about IBM Watson® Assistant for IBM Cloud Pak® for Data has moved. For the most up-to-date version, see Web chat overview.

Integrating the web chat with your website

Add your assistant to your company website as a web chat widget that can help your customers with common questions and tasks.

When you create a web chat integration, code is generated that calls a script that is written in JavaScript. The script instantiates a unique instance of your assistant. You can then copy and paste the HTML script element into any page or pages on your website where you want users to be able to ask your assistant for help.

Create a web chat instance to add to your website

To add the assistant to a web page on your company website, complete the following steps:

  1. From the Assistants page, click to open the assistant tile that you want to deploy to your site.

  2. From the Integrations section, click the Web chat tile.

  3. Optional: Change the web chat integration name from Web chat to something more descriptive.

  4. Click Create to create a web chat instance.

  5. Optional: Customize the style of the chat window. You can make the following changes:

    • Public assistant name. Name by which the assistant is known to users. This name is displayed in the header of the chat window. The name can be up to 18 characters in length.

    • Primary color. Sets the color of the web chat header.

      Click the white dot to open a color switcher where you can choose a color. The color is saved as an HTML color code, such as #FF33FC for pink and #329A1D for green. Alternatively, you can add an HTML color code directly to the field to set the color.

    • Secondary color: Sets the color of the user input message bubble.

    • Accent color. Sets the color of interactive elements, including:

      • Chat launcher button that is embedded in your web page
      • Send button associated with the input text field
      • Input text field border when in focus
      • Marker that shows the start of the assistant’s response
      • Border of a button after it is clicked
      • Border of the drop-down list field as the user chooses an option
      • Typing indicator that is shown to repesent a pause response

    • Assistant image: This image is displayed in the web chat header along with the assistant name to represent your assistant or organization. Specify the URL for a publicly accessible hosted image, such as a company or brand logo or an assistant avatar.

      The image file must be between 64 x 64 and 100 x 100 pixels in size.

    Style changes you make are immediately applied to the preview that is shown on the page, so you can see how your choices impact the style of the chat UI.

  6. Optional: Add a home screen to the chat window. Click the Home screen tab to turn on the feature.

    The home screen helps to ease your customers into a conversation with your assistant. You can add a greeting and a list of quick conversation starter questions for customers to click. For more information, see Adding a home screen.

  7. Optional: To give your customers a way to reset the conversation if they get stuck, turn on suggestions. Click the Suggestions tab. For more information, see Showing more suggestions.

  8. Optional: To secure the web chat, click the Security tab. For more information, see Securing the web chat.

  9. Click the Embed tab.

    A code snippet is displayed that defines the chat window implementation. You will add this code snippet to your web page. The code snippet contains an HTML script element. The script calls JavaScript code that is hosted in your deployed cluster environment. The code creates an instance of a widget that communicates with the assistant. The generated code includes a region and unique integration ID. Do not change these parameter values.

  10. Copy the script HTML element.

  11. If you made any customizations, click Save and exit. Otherwise, click Close.

    The web chat instance is created as soon as you click the Create button, and does not need to be saved.

  12. Open the HTML source for a web page on your website where you want the chat window to be displayed. Paste the code snippet into the page.

    Paste the code as close to the closing </body> tag as possible to ensure that your page renders faster.

    The following HTML snippet is the source for a test page that you can copy and save as a file with a .html extension for testing purposes. You would replace the script element block here with the script elements you copied from the web chat integration setup page.

    <html>
<head></head>
<body>
    <title>My Test Page</title>
    <p>The body of my page.</p>
    
    </body>
</html>

  13. Refresh the web page.

    For information about the web browsers that are supported by the web chat, see Browser Support.

    Chat icon

    The web chat launcher icon is displayed at the end of the page. The icon is blue unless you customize the accent color.

    The placement of the web chat icon is always the same regardless of where you paste the script element into the web page source. The chat window is represented by a div HTML element.

    A developer can make more involved style changes, including:

  14. Click the icon to open the chat window and talk to your assistant.

    Web chat window

    The traffic to and from the web chat is sent between the instance that is hosted by your deployed cluster environment and the web page where you embed the web chat.

  15. Paste the code snippet into each web page where you want the assistant to be available to your customers.

    You can paste the same script tag into as many pages on your website as you want. Add it anywhere that you want users to be able to reach your assistant for help. However, be sure to add it only one time per page.

  16. Submit test utterances from the chat widget that is displayed on your web page to see how the assistant responds.

    No responses are returned until after you create a dialog skill and add it to the assistant.

    If you don't extend the session timeout setting for the assistant, the dialog flow for the current session is restarted after 60 minutes of inactivity. This means that if a user stops interacting with the assistant, after 60 minutes, any context variable values that were set during the previous conversation are set to null or back to their initial values.

You can apply more advanced customizations to the style of the web chat by using the Watson Assistant web chat toolkit on GitHub. For example, the text that is displayed in the chat window uses the fonts: IBMPlexSans, Arial, Helvetica, sans-serif. If you want to use a different font, you can specify it by using the instance.updateCSSVariables() method.

Adding a home screen Beta

Customers often don't know how to interact with your assistant at first. They aren't sure how to format a question or what types of things they can ask. Don't make them guess. Show them by adding a home screen to the web chat window.

An example of the home screen

  1. From the Home screen tab, turn the home screen feature On.

  2. Add a greeting that is engaging and invites the user to interact with your assistant.

    A greeting is required and replaces the greeting that is specified in the welcome node of the dialog.

  3. Add three conversation starter messages.

    These messages are displayed in the web chat as examples of the types of questions that customers can ask. Customers can click one of them to submit it to the assistant.

    You must test each message that you add as a conversation starter. Use only questions that the assistant understands and knows how to answer well.

    All three conversation starters are required.

A developer can customize the home screen even more:

  • A Get started heading is displayed before the list of conversation starter messages. You can change the heading text by replacing the homeScreen_conversationStarterLabel in the web chat language strings file. For more information, see the instance.updateLanguagePack() method documentation.
  • You can use the web chat API to add other elements to the home screen page. For more information, see the instance.writeableElements() method documentation.
  • For information about CSS helper classes that you can use to change the home screen style, see the prebuilt templates documentation.

Showing more suggestions Beta

Suggestions give your customers a way to try something else when the current exchange with the assistant isn't delivering what they expect. A question mark icon Question mark icon is displayed in the web chat that customers can click at any time to see other topics that might be of interest or, if configured, to request support. Customers can click a suggested topic to submit it as input or click the X icon to close the suggestions list.

The suggestions are shown automatically in situations where the customer might otherwise become frustrated. For example, if a customer uses different wording to ask the same question multiple times in succession, and the same dialog node is triggered each time, then related topic suggestions are shown in addition to the triggered node's response. The suggestions that are offered give the customer a quick way to get the conversation back on track.

The suggestions list is populated with dialog nodes that condition on intents that are related in some way to the matched intent. The intents are ones that the AI model considered to be possible alternatives, but that didn't meet the high confidence threshold that is required for a node to be listed as a disambiguation option. Any dialog node with a node name (or external node name) can be shown as a suggestion, unless its Show node name setting is set to Off.

To enable suggestions, complete the following steps:

  1. Open the Suggestion tab, and set the switch to On.

    The Include a connection to support section is displayed where you can configure whether and how to give customers the ability to connect with support.

  2. Decide when you want an option to connect with support to be shown in the suggestions list. The choices are:

    • Always: Always shows the option to get support in the list of suggestions.
    • Never: Never shows the option to get support in the list of suggestions.
    • After one failed attempt: Adds the option to the list only if the customer reached a node with an anything_else condition in the previous conversation turn or reaches the same dialog node for a second time in succession.

  3. In the Option label field, add a label for the option.

    The text in the Option label field has two functions:

    • The text is shown in the suggestions list as an option for customers to select.
    • When selected by a customer, the text is sent to your assistant as a new message. The label must be able to function as input that your dialog understands and knows how to handle.

    By default, the option label Connect with agent is used. Change the option label to a message that helps your customers reach whatever form of support you do offer. If you offer a toll-free support line, you might add Get the support line phone number. Or if you offer an online support request form, you might add Open a support ticket.

    Whether you use the default option label or add your own, make sure your dialog is designed to recognize the message and respond to it appropriately. For more information, see Connecting customers with support.

Dialog considerations

The rich responses that you add to a dialog are displayed in the web chat as expected, with the following exceptions:

  • Connect to human agent: This response type is ignored.
  • Option: If your option list contains up to four choices, they are displayed as buttons. If your list contains five or more options, then they are displayed in a drop-down list.
  • Pause: This response type pauses the assistant's activity in the chat. However, activity does not resume after the pause until another response is triggered. Whenever you include a pause response type, add another, different response type, such as text, after it.

For more information about rich response types, see Rich responses.

Extending the web chat

A developer can extend the capabilities of the web chat by using the Watson Assistant web chat toolkit on GitHub.

If you choose to use the provided methods, you implement them by editing the code snippet that was generated earlier. You then embed the updated code snippet into your web page.

Here are some common tasks you might want to perform:

Setting and passing context variable values

A context variable is a variable that you can use to pass information to your assistant before a conversation starts. It can also collect information during a conversation, and reference it later in the same conversation. For example, you might want to ask for the customer's name and then address the person by name later on.

The following script preserves the context of the conversation. In addition, it adds an $ismember context variable and sets it to true.

The name that is specified for the skill (main skill) is a hardcoded name that is used to refer to any skill that you create from the product user interface. You do not need to edit your skill name.

<script>
  function preSendhandler(event) {
    event.data.context.skills['main skill'].user_defined.ismember = true;    
  }
  window.watsonAssistantChatOptions = {
    integrationID: "YOUR_INTEGRATION_ID",
    region: "YOUR_REGION",
    serviceInstanceID: "YOUR_SERVICE_INSTANCE_ID",

    onLoad: function(instance) {
      // Subscribe to the "pre:send" event.
      instance.on({ type: "pre:send", handler: preSendhandler });
      instance.render();
    }
  };

  setTimeout(function(){
    const t=document.createElement('script');
    t.src='https://web-chat.global.assistant.watson.appdomain.cloud/loadWatsonAssistantChat.js';
    document.head.appendChild(t);});

</script>

You can reference the $ismember context variable from your dialog. For example, the following screen capture shows a dialog node that conditions on #General_Greetings. It has multiple conditioned responses. The first response checks whether the current user is a member of your Rewards Program by checking for the presence of the $ismember context variable. If the variable is present, the response addresses the user as a member. The next response has a more generic greeting.

Shows multiple conditioned responses in a dialog node, one of which references the ismember context variable

If you enable security, you can encrypt the data that you pass to your dialog. For more information, see Passing sensitive data.

Remember that a session ends if there's no interaction with the user after 1 hour (or whatever inactivity timeout setting you specify, which can be up to 7 days). Any contextual information that you pass or collect is reset after the inactivity time period is passed.

Adding user identity information

If you do not enable security, and you want to perform tasks where you need to know the user who submitted the input, then you must pass the user ID to the web chat integration.

If you do enable security, you set the user ID in the JSON Web Token instead. For more information, see Authenticating users.

Choose a non-human-identifiable ID. For example, do not use a person's email address as the user_id.

User information is used in the following ways:

  • The user_id is used to measure the number of monthly active users who interact with the web chat integration.
  • The ability to delete any data created by someone who requests to be forgotten requires that a customer_id be associated with the user input. When a user_id is defined, the product can reuse it to pass a customer_id parameter. See Labeling and deleting data.

Because the user_id value that you submit is included in the customer_id value that is added to the X-Watson-Metadata header in each message request, the user_id syntax must meet the requirements for header fields as defined in RFC 7230.

To support these user-based capabilities, add the updateUserID() method in the code snippet before you paste it into your web page.

In the following example, the user ID L12345 is added to the script.

<script>
  window.watsonAssistantChatOptions = {
      integrationID: 'YOUR_INTEGRATION_ID',
      region: 'YOUR_REGION',
      serviceInstanceID: 'YOUR_SERVICE_INSTANCE',
      onLoad: function(instance) {
        instance.updateUserID(L12345);
        instance.render();
        }
    };
  setTimeout(function(){
    const t=document.createElement('script');
    t.src="https://web-chat.global.assistant.watson.appdomain.cloud/loadWatsonAssistantChat.js";
    document.head.appendChild(t);
  });
</script>

Global audience support

The underlying skills understand customer messages that are written in any of the languages that are supported by the service. For more information, see Supported languages. The responses from your assistant are defined by you in the underlying skill and can be written in any language you want.

Even if your skill includes responses in a language other than English, some of the phrases that are displayed in the web chat widget are added by the web chat itself and do not come from the underlying skill. These hardcoded phrases are specified in English unless you choose to apply a different language.

There are language files that contain translations of each English-language phrase that is used by the web chat. You can instruct the web chat to use one of these other languages files by using the instance.updateLanguagePack() method.

Likewise, the web chat applies an American English locale to content that is added by the web chat unless you specify something else. The locale setting affects how values such as dates and times are formatted.

To configure the web chat for customers outside the US, follow these steps:

  1. To apply the appropriate syntax to dates and times and to use a translation of the English-language phrases, set the locale. Use the instance.updateLocale() method.

    For example, if you apply the Spanish locale (es), the web chat uses Spanish-language phrases that are listed in the es.json file, and uses the DD-MM-YYYY format for dates instead of MM-DD-YYYY.

    The locale you specify for the web chat does not impact the syntax of dates and times that are returned by the underlying skill.

  2. To change only the language of the hardcoded English phrases, use the instance.updateLanguagePack() method.

    For more information, see Instance methods.

  3. To change the text direction of the page from right to left, use the direction method. For more information, see Configuration.

Securing the web chat

Configure the web chat to authenticate users and send private data from your embedded web chat.

All messages that are sent from the web chat are encrypted. When you enable security, your assistant takes an additional step to verify that messages originate from the web chat that is embedded in your website only.

The web chat uses an RSA signature with SHA-256 to encrypt communication. RS256 cryptography is a sophisticated type of RSA encryption. An RSA key pair includes a private and a public key. The RSA private key is used to generate digital signatures, and the RSA public key is used to verify digital signatures. The complexity of the RSA algorithm that is used to scramble the message makes it nearly impossible to unscramble the message without the key.

You can implement the following security measures:

  • Ensure that messages sent from the web chat to your assistant come from your customers only
  • Send private data from the web chat to your assistant

For more information about security, see Security.

Enable security

The process you use to add the web chat to your website is simple. Its simplicity also means it can be misused. That's why it's important to verify that the messages sent to your assistant are coming from authorized users only.

After you enable security, users cannot submit messages through the web chat unless you take steps to prove their origin. Do not enable it until you have support for authentication in place.

Before you enable security, complete the following steps:

  1. Create a RS256 private/public key pair.

    You can use a tool such as the OpenSSL command line or PuTTYgen.

    • For example, to create the key pair: openssl genrsa -out key.pem 2048

  2. Use your private key to sign a JSON Web Token (JWT). You will pass the token with the messages that are sent from your website as proof of their origin.

    The JWT payload must specify values for the following claims:

    • iss: Represents the issuer of the JWT. This value is a case-sensitive string.
    • sub: Represents the principal that is the subject of the JWT. This value must either be scoped to be locally unique in the context of the issuer or be globally unique. The value you specify for sub is used as the user_id. The syntax of the value must meet the requirements for header fields as defined in RFC 7230.
    • exp: Represents the expiration time on or after which the JWT cannot be accepted for processing. Many libraries set this value for you automatically. Set a short-lived exp claim with whatever library you use.

    For more information about JSON Web Tokens, see the RFC7519 and OpenID Connect 1.0 specifications.

    Most programming languages offer JWT libraries that you can use to generate a token. The following NodeJS code sample illustrates how to generate a JWT token.

    // Sample NodeJS code on your server.
const jwt = require('jsonwebtoken');

/**
 * Returns a signed JWT generated by RS256 algorithm.
 */
function mockLogin() {
    const payload = {
        /*
         * Even if this is an unauthenticated user, add a userID in the sub claim that can be used
         * for billing purposes.
         * This ID will help us keep track "unique users". For unauthenticated users, drop a
         * cookie in the browser so you can make sure the user is counted uniquely across visits.
         */
        sub: 'some-user-id', // Required
        iss: 'yourdomain.com' // Required
    };
    // The "expiresIn" option adds an "exp" claim to the payload.
    return jwt.sign(payload, process.env.YOUR_PRIVATE_RSA_KEY, { algorithm: 'RS256', expiresIn: '10000ms' });
}

To enable security, complete the following steps:

  1. From the web chat integration page in Watson Assistant, set the Secure your web chat switch to On.

  2. Add your public key to the Your public key field.

    The public key that you add is used to verify that data which claims to come from your web chat instance is coming from your web chat instance.

  3. To prove that a message is coming from your website, each message that is submitted from your web chat implementation must include the JSON Web Token (JWT) that you created earlier.

    Add the token to the web chat code snippet that you embed in your website page. Specify the token in the identityToken property.

    For example:

    <script>
  window.watsonAssistantChatOptions = {
      integrationID: 'YOUR_INTEGRATION_ID',
      region: 'YOUR_REGION',
      serviceInstanceID: 'YOUR_SERVICE_INSTANCE',
      identityToken: 'YOUR_JWT',
      onLoad: function(instance) {
        instance.render();
        }
    };
  setTimeout(function(){
    const t=document.createElement('script');
    t.src="https://web-chat.global.assistant.watson.appdomain.cloud/loadWatsonAssistantChat.js";
    document.head.appendChild(t);
  });
</script>

    The JSON Web Token is automatically included on each subsequent request that is sent from the web chat until it expires.

  4. You can add an event that is triggered when your token expires. The event has a callback you can use to update the token and process any messages that were added to a queue to wait to be processed while the token was expired.

    For example:

    <script>
window.watsonAssistantChatOptions = {
  integrationID: 'YOUR_INTEGRATION_ID',
  region: 'YOUR_REGION',
  serviceInstanceID: 'YOUR_SERVICE_INSTANCE',
  identityToken: 'YOUR_JWT',
  onLoad: function(instance) {
    instance.on({ type: 'identityTokenExpired', handler: function(event) {
      // Perform whatever actions you need to take on your system to get a new token.
      return new Promise(function(resolve, reject) {
        // And then pass the new JWT into the callback and the service will resume processing messages.
        event.identityToken = 'YOUR NEW JWT';
        resolve();
      });
    }});
    instance.render();
  }
};
setTimeout(function(){
    const t=document.createElement('script');
    t.src="https://web-chat.global.assistant.watson.appdomain.cloud/loadWatsonAssistantChat.js";
    document.head.appendChild(t);
  });
</script>

Passing sensitive data

You can optionally copy the public key that is provided by IBM, and use it to add an additional level of encryption to support passing sensitive data from the web chat.

Use this method to send sensitive information in messages that come from your website, such as a information about a customer's loyalty level, a user ID, or security tokens to use in webhooks that you call from your dialog. Information that is passed to your assistant in this way is stored in a private variable in your assistant. Private variables cannot be seen by customers and are never sent back to the web chat.

For example, you might start a business process for a VIP customer that is different from the process you start for less important customers. You likely do not want non-VIPs to know that they are categorized as such. But you must pass this informataion to your dialog because it changes the route of the conversation. You can pass the customer MVP status as an encrypted variable. This private context variable will be available for use by the dialog, but not by anything else.

  1. From the web chat configuration page, copy the public key from the IBM provided public key field.

  2. From your website, write a function that signs a JSON Web Token.

    For example, the following NodeJS code snippet shows a function that accepts a userID and payload content and sends it to the web chat. If a payload is provided, its content is encrypted and signed with the IBM public key.

    // Sample NodeJS code on your server.
const jwt = require('jsonwebtoken');
const RSA = require('node-rsa');

const rsaKey = new RSA(process.env.PUBLIC_IBM_RSA_KEY);

/**
* Returns a signed JWT. Optionally, adds an encrypted user_payload in stringified JSON.
*/
function mockLogin(userID, userPayload) {
    const payload = {
      sub: userID, // Required
      iss: 'www.ibm.com' // Required
    };
    if (userPayload) {
        // If there is a user payload, it is encrypted in base64 format using the IBM public key.
        payload.user_payload = rsaKey.encrypt(userPayload, 'base64');
    }
    const token = jwt.sign(payload, process.env.YOUR_PRIVATE_RSA_KEY, { algorithm: 'RS256', expiresIn: '10000ms' });
    return token;
    }
    ```

  3. The encrypted user payload is decrypted and then saved to the context.integrations.chat.private.user_payload object. For information about how to access the payload data from the dialog, see Web chat: Accessing sensitive data. You might want to access the payload, for example, to get the customer importance information or single sign-on credentials that you can subsequently use to authenticate a webhook.

Authenticating users

To authenticate and specify a unique ID for each customer, add the user ID information to the token.

  1. From the web chat configuration page, copy the public key from the IBM provided public key field. You will specify this value as the PUBLIC_IBM_RSA_KEY later.

  2. From your website, write a function that signs a JSON Web Token.

    The function must accept a UserID parameter and set the userID as the sub claim value.

    For example, the following NodeJS code snippet set the user's ID to L12345.

    // Sample NodeJS code on your server.
const jwt = require('jsonwebtoken');
const RSA = require('node-rsa');

const rsaKey = new RSA(process.env.PUBLIC_IBM_RSA_KEY);

/**
* Returns a signed JWT. Optionally, adds an encrypted user payload in stringified JSON.
*/
function mockLogin() {
  const payload = {
    sub: 'L12345', // Required
    iss: 'www.example.com' // Required
  };
  const token = jwt.sign(payload, process.env.YOUR_PRIVATE_RSA_KEY, { algorithm: 'RS256', expiresIn: '10000ms' });
return token;
}

    After you set the value of the sub claim to be the user's userID, you cannot change the claim to another user. The userID that you specify with this method is used for billing purposes and can be used to delete customer data upon request.

If you disable security, then you can use the instance.updateUserID() method to specify user IDs. For more information, see Adding user identity information.