First, you will need to call getSingleSignOnToken from a trusted server with either the cons ID or member ID of the user that you have authenticated. This will return quite a few values, providing two different ways to log in:
  1. Use the signleSignOn method as a POST-only method and pass the value returned for "token" in the getSingleSignOnToken response. Due to PCI compliance requirements, that token must be passed as a body parameter rather than a URL parameter.
  2. Use the loginTest method with the parameter "NONCE_TOKEN" and the value returned with the parameter "nonce" in the getSingleSignOnToken response. This can be done as a GET method, allowing redirects to occur.