Authenticating users with their Portal login (email/pwd)

[Nancy Dorsner]

Hi,

We have users who log in to fill out forms on our Portal.  We need to give them access to one of our website applications if they have Portal access.  Obviously, we don't want to have them have a different password associated with a second login, but of course we don't have direct access to their password stored within the system. What is the best way for our application to authenticate these users?  thx

[Wes]

Unfortunately, there isn't a way for the user to login to your app using their portal login.

There may be ways you can link the two. If your app is aware of the users in the applicants form, you can try to sync the applicants with users in your system by matching their email address. Or you may be able to send an email to the applicants with a link to your system. Of course this would likely mean they have 2 logins with potentially different passwords. 

[Nancy Dorsner]

We do have access to the list of the applicants and their email addresses.  But I really want to avoid a second password, as it causes all kinds of problems and support issues. 

Can you think of a solution that avoids a second password?

If they are logged into the Portal on their browser, could we use that somehow?

Or can we post to your login application and get a response code?

--
Zengine
https://zenginehq.github.io/developers
---
You received this message because you are subscribed to a topic in the Google Groups "Zengine Development" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zengine-development/_IWurP50HF4/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zengine-develop...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zengine-development/97ba7acc-b762-41a9-85ab-b07369bc33d1n%40googlegroups.com.

[Wes]

The portals service doesn't implement an authentication server for 3rd party integration, such as OAuth, so this would not be possible or secure if it was possible.

You could consider implementing a one-time password on your service. The user would enter their email address and you send them a special code/link that can be used one time to login to your system.