Single Sign On

Single Sign on Integration

Single Sign On allows users (entrants, judges, and conference registrants) to sign into the system using an existing username and password that they already have associated with your organization.

This means that users don’t need an additional password to remember and can continue to use a log in they are used to for their other interactions with your organization.

Single sign on also lets the OpenWater system recognize membership status of a user and allow for special price rules accordingly.

There are 2 kinds of single sign on options available

  • Shared Authentication: Users sign in through OpenWater with their existing AMS / CRM credentials
  • Handshake Authentication: Users get redirected to your AMS / CRM to log in, upon successful login they will be directed back to OpenWater

Users who do not have an account and need to create one can do so using the following options

  • Shared Authentication
    • Create an account via OpenWater and automatically populate the CRM / AMS (not supported by all CRM / AMS)
    • Create an account via OpenWater but do not synchronize with CRM / AMS (new account only lives in OpenWater)
    • Restrict access to only existing accounts
  • Handshake Authentication
    • User can create an account based on rules defined by your CRM / AMS
Your Developers can Build a Handshake Integration to OpenWater using the Javascript Web Token Standard.

Single Sign On to OpenWater using Javascript Web Tokens

To integrate with OpenWater using your own custom authentication, you can follow the Javascript Web Token standard.  We have sample code in all popular languages to get you started.  The level of effort involved if you already have an authentication system in place is usually less than 1 day.

  1. Request Sample Code in C#, PHP, Java, Node.js, or Python
  2. Authenticate using your existing CRM / AMS
  3. Upon successful authentication, redirect back to OpenWater with the JWT signed email address, first name, and last name of the user
OpenWater maintains integrations with the following AMS / CRM systems

ACGI’s Association Anywhere

To integrate with association anywhere using the OpenWater maintained integration you will need to complete the following steps:

  1. Request the Authentication Url (e.g. yoursite.org/endpoint/CENSSAWEBSVCLIB.AUTHENTICATION) from ACGI
  2. Also request the Network User and Password to access this web server
  3. Request that ACGI opens up the firewall to OpenWater

The following modes are supported

  • Shared Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account
    • Create an account in OpenWater without linking back to ACGI

Abila / Avectra Netforum Enterprise

To integrate with Netforum Enterprise using the OpenWater maintained integration you will need to complete the following steps:

  1. Get your XWeb Credentials from Avectra (Xweb User / Password)
    • In some cases this may carry an additional fee from Avectra
  2. Get your XWeb Url from Avectra
  3. Get Network Credentials from Avectra

The following modes are supported

  • Shared Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account
    • Create an account in OpenWater without linking back to Avectra
    • Create an account in OpenWater and automatically add it back to Avectra

Abila / Avectra Netforum Pro

To integrate with Netforum Enterprise using the OpenWater maintained integration you will need to complete the following steps:

  1. Get your XWeb Credentials from Avectra (Xweb User / Password)
    In some cases this may carry an additional fee from Avectra
  2. Get your Xweb OnDemand Url from Avectra

 

The following modes are supported

  • Shared Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account
    • Create an account in OpenWater without linking back to Avectra
    • Create an account in OpenWater and automatically add it back to Avectra

IDme / TroopID

To integrate with IDme using the OpenWater maintained integration you will need to complete the following steps:

  1. Register your OAuth credentials with IDMe
  2. Copy the Client ID, Client Secret and Scope back to OpenWater

The following modes are supported

  • Handshake Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account

iMIS 15

To integrate with iMIS15 using the OpenWater maintained integration you will need to complete the following steps:

  1. iMIS web services must be enabled and accessible via the public internet (MembershipWebService.asmx)
  2. Temporary access to your iMIS web server for us to add a single sign on provider (code of this sso provider is available upon request)
  3. Classification for Non-Members (e.g. NM)

The following modes are supported

  • Shared Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account
    • Create an account in OpenWater without linking back to iMIS
    • Create an account in OpenWater and automatically add it back to iMIS with the non-member classification

iMIS 15 using ISG Web Services

ISG is a popular iMIS vendor add-on that allows for many enhancements including single sign on.  If your organization contracts with ISG we need the following to complete integration.

  1. iServices Base Url Provided by ISG
  2. Authentication Access Key Provided by ISG
  3. Account Access Key Provided by ISG
  4. Data Access Key Provided by ISG
  5. New Member Classification (e.g. NM)

The following modes are supported

  • Shared Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account
    • Create an account in OpenWater without linking back to iMIS
    • Create an account in OpenWater and automatically add it back to iMIS with the non-member classification

MemberClicks

To integrate with MemberClicks using the OpenWater maintained integration you will need to complete the following steps:

  1. Get your Organization Id from MemberClicks
  2. Get your API Credentials (Api Key, Admin Username and Password) from MemberClicks

The following modes are supported

  • Shared Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account
    • Create an account in OpenWater without linking back to MemberClicks

MemberSuite

To integrate with MemberSuite using the OpenWater maintained integration you will need to complete the following steps:

  1. Get your Association Id from MemberSuite
  2. Get your API Credentials (Access Key, Secret Key) from MemberSuite

The following modes are supported

  • Shared Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account
    • Create an account in OpenWater without linking back to MemberSuite

Personify

To integrate with Personify using the OpenWater maintained integration you will need to complete the following steps:

  1. Setup OpenWater as a vendor in your SSO Web Services and Simple Web Services administration portals
  2. Provide the SSO Web Service Url, Username, Vendor Id, Vendor Password and Vendor Block
  3. Provide the Simple Web Services Url, Login, Password, OrgId, and UnitId

The following modes are supported

  • Handshake Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account

Tendenci 4

To integrate with Tendenci version 4 using the OpenWater maintained integration you will need to complete the following steps:

  1. Request Tendenci to set a firewall rule to allow OpenWater access (this may incur a fee from Tendenci)
  2. Provide the Db Host, Username, Password and Db Name for your service

The following modes are supported

  • Shared Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account
    • Create an account in OpenWater without linking back to Tendenci

YourMembership

To integrate with YourMembership using the OpenWater maintained integration you will need to complete the following steps:

  1. Provide the Api Credentials (Public Key, Private Key, Private Key Code)
  2. Provide the code for a new member (e.g. NM)

The following modes are supported

  • Shared Authentication with users who have no existing account gain access by
    • Going to your existing website to create an account
    • Create an account in OpenWater without linking back to YourMembership
    • Create an account in OpenWater and automatically add it back to YourMembership with the non-member classification