Single sign-on for three independent but associated websites means a seamless member database and improved interactivity for users, thanks to i2Integration.
Administrators and members of the American Association for Women Radiologists (www.aawr.org), the Society of Computed Body Tomography & Magnetic Resonance (http://www.scbtmr.org/) and the North American Society for Cardiovascular Imaging (http://www.nasci.org/) now enjoy a single sign on between Avectra and DNN.
The new capability allows members to log in to DNN, which then automatically logs them into Avectra’s NetFORUM. Upon login, member profile data is pulled from Avectra to populate the DNN user account with Avectra’s data. Roles are automatically assigned in DNN based on the member profile in Avectra. Instant benefit to members: one central login and one account to manage.
“Avectra netFORUM is a great platform for association management," said John Forsberg, i2Integration CEO. "Pulling that together with the open source DNN CMS gives our clients a powerful solution, directly tying the website to the membership database and online member interactivity."
How we did it:
i2Integration created a DNN login module that was placed on the three websites, which allows users to enter their credentials, click a button and attempt a login to the site.
Upon entering a username and password and clicking the Submit button, the module attempts to verify that the credentials are valid using the netFORUM API’s “Authenticate” method. This method returns a SingleSignOn Token if the credentials that are passed are valid.
If the Authenticate method does not return a valid token, the DNN module attempts to log the user into the DNN site with local credentials. If the DNN authentication succeeds, but the netFORUM authentication fails, an error is presented to the user that informs them that their user information is out of date, and that they need to contact the website owner for further assistance.
If neither authentication succeeds, the user is presented with a message stating that the entered user information is invalid.
If the netFORUM authentication succeeds, but no matching username exists in DNN, a call is made to the netFORUM API “CheckEWebUser” method, passing in the username, password and authentication token. This method returns the basic user information needed to create a copy of the user in DNN. Once the user is created in DNN, the standard DNN authentication is performed, and the user is logged into DNN. The user is also added to a “Members” role based on a flag returned by the netFORUM API “GetIndividialByKey” method. If the individual has a value of 1 in this field, they are considered to be in the “Members” role; otherwise, they are considered a “Visitor" and only have the role of “Registered Users” in DNN.
If the netFORUM authentication succeeds, and a matching username exists in DNN, a call is made to the netFORUM API “CheckEWebUser” method, passing in the username, password and authentication token. This method returns the basic user information needed to update the user in DNN. Once the user's account is updated in DNN, the standard DNN authentication is performed and the user will be logged into DNN.
The login is maintained using a cookie, so if the user travels to another website and then returns back to the DNN site, they are still logged in as long as the cookie is not expired.
The "Forgot Password" link directs to the netFORUM “Forgot Password” page.