Instructions for using SSO in dev program

I am able to successfully use the general developer program API. However, I would like to use SSO as well but cannot find any SSO documentation (other than seeing my SSO UUID on my dev program info page). Are there any instructions somewhere on using SSO so users can log in to TroopTrack from my site and use the API-based tools I’m creating? Thanks!

I would be really interested in getting this working. The dev program info page that shows my credentials shows that I have an SSO UUID, but there’s no documented way to use SSO. Using SSO is much more secure than hard-coding my credentials into a php page for getting a token or asking other users to submit their TroopTrack username and password on my website. I will never ask other people to provide their TroopTrack username and password to my website directly in order to get their authentication token - SSO is the way to go to get other people to be able to use my custom API-enabled tools.

Since other users may read this that might not have used SSO - my take on using SSO securely (which could be off a bit) would be:

  • A user is on my webpage and wants to access their TroopTrack data through my custom tool.
  • They click a link to sign in, which takes them to a legitimate TroopTrack login page (or popup).
  • After logging in, it redirects them back to my page, with POST data of their authentication token (or some other key that allows my tool to retrieve their authentication token from a TroopTrack endpoint).
  • My tool can now use their SSO UUID as a user token to allow them to retrieve their data in my tools.

@dave I’ll assume for now that SSO isn’t ready for us to use - is there a plan to make SSO available for use? Thanks!

SSO is used by several organizations right now to authenticate with forums, stores, etc. but it doesn’t currently return the token used by the APIs. We will need to make a generic SSO endpoint for that. I want to think about that a bit.

Thanks for taking proper security steps. I will probably be able to roll out an SSO service for you soon.

Dave

OK, great! I look forward to it!

Is the SSO presently available as a generic authentication mechanism for troops? I.e. using trooptrack to provide log-in credentials to a troop independently developed application? Or is it restricted to partner-organization usage?

hi @dave, wondering if you have new thoughts on this? Thanks!

I want to do it. Just kind of swamped right now.

do you have an update on this?

Our goal is to setup a public website with a member section.
Our unit management tool is TT but we also use several private FB groups.
We would like to use TT credentials to access our members only section; is that possible?