The document discusses how to integrate with the ORCID API. It describes the features of the public, member, and premium member APIs. It provides examples of connecting systems like manuscript submission systems and CRIS systems to ORCID to collect and display researcher IDs. The document outlines the OAuth workflow to authenticate users and connect data to their ORCID records using the API, and resources for learning more about synchronization and custom integrations.
ORCID Implementation in Open Access Repositories and Institutional Research I...Simeon Warner
Slides from presentation with Pablo de Castro at Open Repositories 2013 (http://or2012.net/)
ORCID provides individual researchers and scholars with a persistent unique identifier. Initial adoption has been rapid but the full benefit will be realized only if ORCID iDs are used by all stakeholder communities. ORCID iDs enable reuse of items in new contexts by making connections between items from the same author in different places. Through its author-focused approach ORCID will contribute to bridging the current divide between management of publications and research data, which are often carried out in independent ways through different, frequently disconnected kinds of repositories. We discuss procedures and strategies for ORCID iD implementation in two different contexts: Open Access repositories, and institutional research information management systems.
ORCID Implementation in Open Access Repositories and Institutional Research I...Simeon Warner
Slides from presentation with Pablo de Castro at Open Repositories 2013 (http://or2012.net/)
ORCID provides individual researchers and scholars with a persistent unique identifier. Initial adoption has been rapid but the full benefit will be realized only if ORCID iDs are used by all stakeholder communities. ORCID iDs enable reuse of items in new contexts by making connections between items from the same author in different places. Through its author-focused approach ORCID will contribute to bridging the current divide between management of publications and research data, which are often carried out in independent ways through different, frequently disconnected kinds of repositories. We discuss procedures and strategies for ORCID iD implementation in two different contexts: Open Access repositories, and institutional research information management systems.
To view recording of this webinar please use below URL:
http://wso2.com/library/webinars/2016/05/end-to-end-identity-management/
In today’s rapidly evolving world, enterprise identity management has proven to be challenging due to the constant changes in associated systems, corporate policies and stakeholder requirements. Therefore, managing identities and their privileges among the systems need to be handled in a flexible manner to save resources when governing identities and controlling access.
There are various specifications of industry standards in this domain making it difficult to select the correct one. Some of them may address the same problem with slight variations and some may look similar but address completely different problems.
This webinar will discuss
The real problems that need to be addressed when managing enterprise identity
Key challenges when implementing concepts
How to overcome these challenges and build a future proof identity and access management system with WSO2 Identity Server
How to use orcid to build your work and reseach profileRamesh C. Sharma
In this presentation you will learn various features of ORCID for building your profile and showcase your research. This workshop was conducted by Ambedkar University Delhi on 22 January 2021.
A whistlestop tour of FHIR API authentication and authorizationDunmail Hodkinson
Healthcare systems implementing HL7 FHIR REST APIs must provide security so that sensitive health data aren't inadvertently disclosed. Standard web technologies can be combined with features of FHIR to provide effective security.
Auditing web servers for HIPAA compliance - §164.312(a)(1)Eric Goldman
This presentation provides an overview of HIPAA (Health Insurance Portability and Accountability Act) from a technical standpoint, and the requirements it places upon a business. Specifically, this presentation addresses HIPAA § 164.312(a)(1). The presentation covers the requirements of this area of the law. In order to demonstrate the requirements, a test environment was built and some application mock-ups were created (intentionally vulnerable) in order to demonstrate what an auditor needs to look for, why the law requires this, and how to address such issues. The testbed demonstration also provides a good primer on SQL injection, password cracking, and file inclusion vulnerabilities. The presentation steps through many of these aspects in detail. The demonstration is embedded from YouTube, and is available in higher quality there. The presentation concludes with some hints and lessons learned through the process. You can get more information on this presentation, demo, and related materials by visiting http://www.ericgoldman.name
Open Standards for Authentication and Authorization (An introduction).
This presentation was originally given for about 80 developers at an internal tech day.
To view recording of this webinar please use below URL:
http://wso2.com/library/webinars/2016/05/end-to-end-identity-management/
In today’s rapidly evolving world, enterprise identity management has proven to be challenging due to the constant changes in associated systems, corporate policies and stakeholder requirements. Therefore, managing identities and their privileges among the systems need to be handled in a flexible manner to save resources when governing identities and controlling access.
There are various specifications of industry standards in this domain making it difficult to select the correct one. Some of them may address the same problem with slight variations and some may look similar but address completely different problems.
This webinar will discuss
The real problems that need to be addressed when managing enterprise identity
Key challenges when implementing concepts
How to overcome these challenges and build a future proof identity and access management system with WSO2 Identity Server
How to use orcid to build your work and reseach profileRamesh C. Sharma
In this presentation you will learn various features of ORCID for building your profile and showcase your research. This workshop was conducted by Ambedkar University Delhi on 22 January 2021.
A whistlestop tour of FHIR API authentication and authorizationDunmail Hodkinson
Healthcare systems implementing HL7 FHIR REST APIs must provide security so that sensitive health data aren't inadvertently disclosed. Standard web technologies can be combined with features of FHIR to provide effective security.
Auditing web servers for HIPAA compliance - §164.312(a)(1)Eric Goldman
This presentation provides an overview of HIPAA (Health Insurance Portability and Accountability Act) from a technical standpoint, and the requirements it places upon a business. Specifically, this presentation addresses HIPAA § 164.312(a)(1). The presentation covers the requirements of this area of the law. In order to demonstrate the requirements, a test environment was built and some application mock-ups were created (intentionally vulnerable) in order to demonstrate what an auditor needs to look for, why the law requires this, and how to address such issues. The testbed demonstration also provides a good primer on SQL injection, password cracking, and file inclusion vulnerabilities. The presentation steps through many of these aspects in detail. The demonstration is embedded from YouTube, and is available in higher quality there. The presentation concludes with some hints and lessons learned through the process. You can get more information on this presentation, demo, and related materials by visiting http://www.ericgoldman.name
Open Standards for Authentication and Authorization (An introduction).
This presentation was originally given for about 80 developers at an internal tech day.
ORCID Member Site Integration: Using the APIORCID, Inc
Are you using the API to integrate ORCID functionality into your own site? This webinar will review common workflows for linking your site, and will review some of the trickier aspects of the API. (ORCID Training Presentation - Aug 30, 2012)
This presentation was given by guest lecturer Jordon Holt of ORCID, Inc., during the second session of the NISO Spring training series "Working with Scholarly APIs." Session Two, ORCID, was moderated by Phill Jones of MoreBrains Cooperative and held on May 5, 2022.
Como organização internacional interdisciplinar e sem fins lucrativos, a ORCID (Acrônimo para Open Researcher and Contributor ID), foi criada por pesquisadores e organizações de pesquisa para melhorar o processo de identificação e desambiguação de pesquisadores e autores acadêmicos, incrementar a colaboração e eficiência do financiamento da pesquisa, e facilitar o processo de integração de sistemas e dados relacionados à ciência. Dessa forma, contribui para o aprimoramento da comunicação científica por meio da criação e manutenção de identificadores únicos persistentes para pesquisadores individuais e um mecanismo aberto e transparente de ligação entre a ORCID, as organizações de pesquisa e de financiamento, publishers, além de outros esquemas de identificação como ResearcherID, ScopusID e CrossRef DOI, e objetos de pesquisa, tais como publicações, dados, prêmios e patentes.
Shared IT Solutions: The Secret Sauce for Research CollaborationCybera Inc.
A presentation for the Shared Services for Post-Secondaries session at the 2014 Cyber Summit by Wendy Petersen, Program Manager, Canadian Access Federation, at CANARIE.
VIVO and persistent identifiers: Integrating ORCID_08152013Rebecca Bryant, PhD
Title: VIVO and persistent identifiers: Integrating ORCID
Presented at the VIVO 2013 conference in St. Louis, MO, 08/15/13
Presenters:
Rebecca Bryant, PhD, ORCID, Bethesda, MD, USA
Hal Warren, American Psychological Association, Washington DC
Simeon Warner, PhD, Cornell University, Ithaca, NY
Abstract:
Since the launch of the ORCID Registry in October 2012, thousands of researchers have claimed their ORCID iD. Organizations have been embedding ORCID identifiers in manuscript submission systems, in funding applications, and adding them to university profile systems. Even before launch, the VIVO ontology had incorporated an ORCID field. In this panel, we will provide an overview of the ORCID registry and adoption, and demonstrate how the American Psychological Association (APA) has integrated ORCID identifiers into its VIVO system and developed an application to populate ORCID records with demographic and publication attributes from APA VIVO RDF files. The ORCID data are packaged as a JSON object stored as a URI in the VIVO record. This serves as a cross-check for ORCID assertions from the publisher of works claimed and allows APA to use VIVO to extend valid provenance assertions for publications in a Linked Open Data Trust Framework. We will discuss the application of this use case for other VIVO implementations and other researcher profiling systems, focusing on integrations at universities.
Understanding SharePoint Apps, authentication and authorization infrastructur...SPC Adriatics
This session will teach you everything that you need to know in order to understand SharePoint Apps, authentication and authorization. Learn about the different type of Apps, the underlying Apps architecture and how to configure an on-premises environment to support Apps. Also you will learn about the different authentications options available for integrating apps, devices, and applications for on-prem scenarios, in the cloud and hybrid.
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...Envision IT
In this Webinar, Envision IT demonstrates how ADFS federation can allow external users to access an Extranet, their DMZ accounts or other external identities, and use single sign-on to other systems beyond SharePoint. View more details and the webinar recording here: http://www.envisionit.com/products/events/Pages/SharePoint-Extranet-Spring-Webinar-Series-Federation-and-SharePoint-On-Premise.aspx
This presentation, created by Syed Faiz ul Hassan, explores the profound influence of media on public perception and behavior. It delves into the evolution of media from oral traditions to modern digital and social media platforms. Key topics include the role of media in information propagation, socialization, crisis awareness, globalization, and education. The presentation also examines media influence through agenda setting, propaganda, and manipulative techniques used by advertisers and marketers. Furthermore, it highlights the impact of surveillance enabled by media technologies on personal behavior and preferences. Through this comprehensive overview, the presentation aims to shed light on how media shapes collective consciousness and public opinion.
Collapsing Narratives: Exploring Non-Linearity • a micro report by Rosie WellsRosie Wells
Insight: In a landscape where traditional narrative structures are giving way to fragmented and non-linear forms of storytelling, there lies immense potential for creativity and exploration.
'Collapsing Narratives: Exploring Non-Linearity' is a micro report from Rosie Wells.
Rosie Wells is an Arts & Cultural Strategist uniquely positioned at the intersection of grassroots and mainstream storytelling.
Their work is focused on developing meaningful and lasting connections that can drive social change.
Please download this presentation to enjoy the hyperlinks!
Collapsing Narratives: Exploring Non-Linearity • a micro report by Rosie Wells
Integrating with the ORCID API
1. INTEGRATING WITH THE ORCID API
19 APRIL 2017
community@orcid.org | orcid.org/0000-0002-6036-0903
ALAINNA THERESE WRIGLEY
Senior ORCID Community Team Specialist (APAC)
2. THE ORCID API
API Features
Public API
Freely available to anyone with
ORCID iD
• One (1) set of public API credentials (integration)
• Authenticate: Get a user’s authenticated ORCID iD
• Read (Public): Search/retrieve public data
Member API
ORCID member organizations
(Sandbox test environment
freely available to anyone)
• One (1) set of API credentials (integration)
• Read (Limited): Search/retrieve limited-access data
• Add: Post new data to a record
• Update: Edit or delete data you previously added
Premium Member API
Premium ORCID member
organizations
• Five (5) sets of API credentials (integrations)
• Webhooks: Receive notifications of updates
• Customised monthly reports (including email stats)
• Access to monthly public data file
3. ORCID REGISTRY CONNECTIONS
Two models:
1. Connect via a vendor system
• Manuscript submission/publication
• Document/data repositories
• Profile systems
• CRIS systems
2. Develop a custom connection
4. VENDOR CONNECTIONS
Publishing
• eJournal Press
• Editorial Manager
• Open Journal Systems
• ScholarOne
Document / data
repositories
• ePrints
• Hydra/Fedora
CRIS Systems
• Converis
• DSpace-CRIS
• Elements
• IRMA
• Pivot
• PlumX
• Pure
• Vivo
Find more:
https://members.orcid.org/orcid-
enabled-systems
5. CUSTOM INTEGRATIONS
Via the ORCID API
• Fine-tuned control & permissions
• Customized buttons, user flows, feedback
• Test & troubleshoot with ORCID team
Case examples: https://members.orcid.org/resources
Code examples:
https://members.orcid.org/api/resources/code-examples
7. COLLECT
COLLECT researcher’s validated iDs using
OAuth &
ORCID API
Learn more:
• ORCID workflows: https://members.orcid.org/api/workflow
• ORCID integration points: https://members.orcid.org/api/integrate
Look for natural fits:
• Email to researcher
• Registration/sign in
• Account settings/profile
• Submission
Email invitation
ORCID as a
sign in option
8. INVOLVING THE USER
Key benefits:
• You know the user controls the iD
• User knows what’s going on/user choice
• Privacy/ data control trends
• Position/ strengthen your system as a
service
How?
• Just a customized URL
• Prior iD not needed
9. STEP 1: AUTHORIZATION URL
https://sandbox.orcid.org/oauth/authorize?
client_id=APP-E422WM33OPZWKKMQ&
response_type=code&
scope=/read-limited%20/activities/update&
redirect_uri=https://my.URL.org&
family_names=Researcher&given_names=Bob&
email=bobresearcher@mailinator.com&
state=UNI-ID
the base URL, displays ORCID sign in screen
who’s asking?
what permissions?
where the user goes next
personalize the
experience with data
from your system
The OAuth call: part I
extra info to identify
user to your system
10. WHAT THE USER SEES
already signed in
sign in form
(already registered)
registration form
11. STEP 2: AUTH CODE & USER
FEEDBACK
ORCID sends the user to your redirect, with an
auth code appended to the end
https://my.URL.org?htA3yE&state=UNI-ID
• Save the code – you need it for the next step
• Display useful messages to the user
deny message
authorize message
12. STEP 3A: TRANSFORM THE
CODE INTO A TOKEN
Use the code to gain access using the ORCID API
https://sandbox.orcid.org/oauth/token
HEADER: accept:application/json
DATA:
client_id=APP-XT8FBKJRO3MR8WDR
client_secret=e285575c-4794-464b-a807-6f1c06b63
grant_type=authorization_code
code=htA3yE
redirect_uri=https%3A%2F%2Fmy.URL.org
our API calls always look
like URLs (RESTful)
what format?
the auth code
confirms that you are
the right one to get this
information
13. STEP 3B: STORE THE RESULT
The result of the call
"access_token" :"6710dfee-6aab-445b-a266-205dd9085273",
"token_type" :"bearer",
“refresh_token“ :"2d76d8d0-6fd6-426b-a017-61e0ceda0ad2",
"expires_in" :631138518,
"scope" :"/read-limited /activities/update",
"orcid" :"0000-0002-0491-7882",
"name" :"Bob Researcher"
store the access token,
refresh token and iD with
user’s info in your system
when permission expires (in seconds)
your permission – executed contract
iD & name for the person
who gave permission
what you can do
✔ iD Collected!
14. DISPLAY
DISPLAY iDs on your website & systems
Learn more:
• iD display guidelines: https://orcid.org/trademark-and-id-display-guidelines
iDs in profiles:
Tokyo Institute of Technology
iDs in journals: eLife
15. DISPLAY: IDS IN METADATA
<person_name>
<given_name>Tomoko</given_name>
<surname>Kato</surname>
<ORCID authenticated=“true”>
http://orcid.org/0000-0002-1469-0685
</ORCID>
</person_name>
DOI metadata
iDs in search
16. CONNECT
CONNECT your data to ORCID records
• Request permission to write to records
• Store long-lived tokens & put codes
• Add data that you uniquely can assert
• Explain the connection to your users
Enable researchers to provide validated data to other systems they use
Learn more:
• ORCID workflows: https://members.orcid.org/api/workflow
• Auto-update: https://orcid.org/blog/2015/10/26/auto-update-has-arrived-orcid-records-move-next-level
17. CONNECT VIA API TO SEND
DATA
Verb: POST
BASE URL: https://api.sandbox.orcid.org/v2.0/0000-0002-0491-7882/employment
HEADERS: Content-type:application/vnd.orcid+xml
Authorization: Bearer 6710dfee-6aab-445b-a266-205dd9085273
DATA (if adding or updating):
the file location=@employment.xml
endpoint:
/education
/work
/funding
/peer-review
etc.
data format
access token from before
type of action, also: GET; PUT; DELETE
1. Your client sends data 2. Researcher’s record updated
researcher’s iD
your client’s name
18. Saved time, better reporting, improved information flow
SYNCHRONIZE with your systems
• Continuously update researchers’ records with
new or corrected activity
• Know when record is updated – register
ORCID update notifications (webhooks)
• Search & Link wizard
SYNCHRONIZE
Learn more:
• Webhooks: https://members.orcid.org/api/tutorial/webhooks
• Auto-update: https://orcid.org/blog/2015/10/26/auto-update-has-arrived-orcid-records-move-next-level
19. API DEMO: CREATE ON DEMAND
https://orcid-createondemand.herokuapp.com
20. RESOURCES
Membership / API comparison chart
https://orcid.org/about/membership/comparison
Member Support Centre
https://members.orcid.org
ORCID API documentation
https://members.orcid.org/api
ORCID API documentation
https://members.orcid.org/api/workflow
ORCID API users listserv
https://groups.google.com/group/orcid-api-users
ORCID message (XSD) (Github)
https://git.io/vXw5w
Questions?
support@orcid.org
Editor's Notes
Ensure individuals are correctly connected with your institution
Explain what ORCID is
Explain why you’re collecting iDs
Consistent user experience
Authenticated connections
Signal to your researchers and the wider community that your systems support ORCID iDs