Versions Compared

Old Version 36

changes.mady.by.user Sarah Holst

Saved on

compared with

New Version Current

changes.mady.by.user Sarah Holst

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents

...

  • Find and install the Identity Plugin

    1. In the Aspenware Commerce admin panel go to Configuration > Local Plugins

    2. Search the list for ExternalAuth Methods : Identity Authentication

    3. Select Install.

    4. Once installation is complete, select Restart application to apply changes at the top of the page.

Info

NOTE: This restart can take up to 7 minutes to complete and should occur during low-traffic times.

  • Configure Identity External Authentication

    1. Go to Configuration > External Authentication

      1. If the Identity plugin has been successfully installed you will see it on the admin screen.
         

    2. Select Configure.

      1. Enter your OpenID, ClientID, and OpenID ClientSecret (these are created and provided by Aspenware).

      2. In the Authority to use when connecting to OpenID field enter the web address (URL) that will be using Identity.

      3. Select Save.

    3. Return to the External Authentication Admin page and select Edit.

      1. Select the check box under the Is active column then select Update.

2. Enable reCAPTCHA for the Identity Plugin (optional)

...

  • Work with your Aspenware Representative (support@aspenware.com) to configure reCAPTCHA for Identity for reCAPTCHA. You will need to provide them with the following THREE configuration elements:

    • 1. Site Key and Secret Key you obtained from Google upon adding reCAPTCHA.


    Image Removed


    • Image Added

    • 2. The desired locations on which you would like reCAPTCHA v3 to monitor. Options include Create Account, Login, Recover Account, Password Reset and Claim Account. Aspenware recommends resorts enable reCAPTCHA v3 to all locations for the maximum benefit.

    • 3. The ReCaptcha v3 Score Threshold number to begin monitoring your site.

Info

NOTE: reCAPTCHA learns by seeing real traffic on your site. For this reason, scores in a staging environment or soon after implementing may differ from production. As reCAPTCHA v3 doesn't ever interrupt the user flow, you can first run reCAPTCHA without taking action and then decide on thresholds by looking at your traffic in the admin console. The recommended default threshold setting is 0.5. A threshold of 1 will ensure that NO ACTION is ever taken.

In general, the best score a user can get is a 1 and the worst (almost certainly a bot) is a zero. If a user scores below the threshold, the selection made in your admin dashboard will determine the action taken. For more information on assessment scores thresholds visit Google’s reCAPTCHA documentation.

...