Vendor Onboarding Process

Prior to onboarding, New Vendors must complete the New Vendor Application between July 1st and October 31st to be considered for the next school year.

The following steps outline how vendors can get started with WISEdata Ed-Fi Integration:

1. Obtain Authentication Credentials

There are a number of steps to take prior to getting started with WISEdata Ed-Fi Integration.

1- Evaluate your current status as a vendor

If you performed testing in the WISEdata UAT sandbox before, your API credentials (keys and secrets) should still be active and you can proceed to step 3.
If you are new to WISEdata, go to step 2

2- Obtain a Wisconsin Web Access Management (WAMS) ID for the UAT ‘sandbox’ environment. Follow the self-registration process on this page https://uaon.wisconsin.gov/WAMS/home

After you obtain a WAMS ID, fill out this access request form.

3- Obtain OAuth credentials. The Ed-Fi API is a service secured via OAuth 2.0. OAuth credentials (keys and secrets) will be generated by DPI and are needed to make REST calls.

If you have a test education agency in the sandbox environment, you can continue to use the same education agency.
If you have a test education agency but need a new education agency added to your sandbox, let the WISEdata team know (email WISEdataVendorHelp@dpi.wi.gov). The new education agency will not have any data.
If you need test data created (in the case you are a specialized vendor that doesn’t create enrollment, roster, discipline, etc., records), let the WISEdata team know (email WISEdataVendorHelp@dpi.wi.gov).

4- Access your API credentials (keys and secrets), education agency ID, and school IDs, you will need to log into the Ed-Fi Credential Application with your WAMS ID and password.

2. Authentication & Authorization

AUTHENTICATION

A REST client is required to make REST calls to the Ed-Fi API.
- The client that will publish data to the Ed-Fi API should be the Vendor software. The Vendor implementation will likely be based on the Ed-Fi REST client.
- A client that can be used in the testing phase is called Swagger UI [https://uaapps.dpi.wi.gov/EdFiSwagger/ ]
- The URL for a call to authentication via native code: https://uaapps.dpi.wi.gov/edfiwebapi/oauth/token
A client key and secret is required to connect
- Use the WAMS ID and password you created in the prior section to login to the Ed-Fi Credential app in the UAT ‘sandbox’ environment [https://uawisedata.dpi.wi.gov/EdFiCredential/]
- The Ed-Fi Credential application is your source for your API credentials (keys and secrets) for all education agencies that subscribe to you as a vendor. In Production, you will receive an email when an education agency subscribes to your product.

NOTE: The URL and your log-in credentials for the Ed-Fi Credential application will be different in Production than UAT ‘sandbox’. You will have to Obtain a Wisconsin Web Access Management (WAMS) ID for the production environment [https://on.wisconsin.gov/WAMS/SelfRegController ], then fill out this access request form: https://dpi.wi.gov/wisedata/vendors/contact

To better understand ‘authentication’, read this first: https://techdocs.ed-fi.org/display/ODSAPIS3V520/Authentication

AUTHORIZATION

The Ed-Fi API uses the API credentials to authorize requests. With each request made to the API, the token is obtained from the authentication process. The Ed-Fi API uses this token to identify the caller and determine the permissions that apply to each of the accessible API resources.
The API credentials are tied to a claim set. Wisconsin DPI restricts resources in the Ed-Fi API by linking the vendor's API key to a claim set.
The API credentials (key and secret) are tied to an education agency. For many resources/endpoints, a relationship-based strategy will be used. For example, a SIS vendor will be provided with an API key that is associated with a specific education agency.
For more information about Ed-Fi OAuth 2 authorization see: https://techdocs.ed-fi.org/display/ODSAPIS3V520/Authorization

3. Get familiar with the development and testing tools

A REST client which can authenticate via OAuth 2: there are many free and paid REST clients that you can use for testing. The two clients that we use are listed below. Both are free.
- SoapUI (version 4.6.4): http://www.soapui.org/
- RestClient 2: http://restclient.net/
Swagger: can be to monitor API transactions: https://uaapps.dpi.wi.gov/EdFiSwagger/
A web traffic tracer/debugger: the REST clients above (SoapUI or RestClient2) will show web traffic when you make a request. The web debuggers can be useful when creating requests via the DPI-provided WISEdata Ed-Fi REST SDK or a proprietary Ed-Fi REST client.
- Fiddler is free and one of the more popular web debuggers Web Debugging Proxy and Troubleshooting Tools | Fiddler
- Wireshark is a network protocol analyzer: Wireshark · Go Deep
Deleting data from your UAT sandbox. Sometimes you need to clear data and re-publish during testing. The WISEdata team has integrated a cleanup tool into the Ed-Fi Credential application. This Data Clean-up tool enables vendors to delete data for a specific education agency in the sandbox. To use the Data Clean-up tool, follow these instructions.
Troubleshooting. If you are receiving API errors, check the Ed-Fi Tech Docs for common API errors and resolutions.

WI DPI WISEdata Ed-Fi Docs