WaterSight - Access Token Configuration


Product(s): WaterSight
Version(s): 10.00.
Area: Documentation

 

What is an Access Token? How is it used?

In case an Access Token is not configured (or it has expired) it is not possible to bring sensor data into WaterSight. An access token contains the security credentials for a login session and identifies the user, the user's groups and the user's privileges. This Access Token is specifically used when setting the Data Pusher connection (OpenFlowsOnsiteCoordinator) in order to bring time series data automatically into WaterSight. Can also be used to bring customer meter data or billings into WaterSight. 

The administration page is used to manage access tokens for a digital twin. Up to two access tokens can be added to a digital twin, and the tokens can have an expiration of up to a year.

Upon creating a token, the user will be prompted to copy the token before closing the window. We do not store the token itself, it will be irretrievable once the window is closed. Once a token is deleted, requests that use the token will fail.

 

Configuration Steps

Steps are the following:

  1. The Digital Twin administrator should first create the new Access Token selecting Administration > Access Tokens - Edit

A screenshot of a computerDescription automatically generated

  1. Click on “Plus” button (+) to set a new Token. You can leave the existing one that is about to expire – it will be removed automatically after expiration.
  2. Adjust the Expiration date – The maximum period is 1 year ahead.

  1. Copy the Token and save it in a secured folder.

  1. Click Ok.
  2. Access the machine where the sensor pusher (OFOSC) is installed.
  3. Go to services >> search for the OpenFlows Onsite Coordinator service and stop the service.

A screenshot of a computerDescription automatically generated

  1. Access the C:\ or D:\ drive of the machine and look for the OFOSC installation folder.
  2. Open the ServiceSettings.ini file using a text editor (for example with notepad).

A screenshot of a computerDescription automatically generated

  1. In the “Commonly Edited settings” section lookup the parameter “Service_PersonalAccessToken” and replace the characters that appear there by the new token copied on step 4.

A screenshot of a computerDescription automatically generated

  1. Save the ServiceSettings.ini file.
  2. Go to Windows Services and Start the OpenFlows Onsite Coordinator service.

A screenshot of a computerDescription automatically generated

  1. Check for Errors in the Log files.
  2. If you encounter issues, contact Bentley’s support team.

Note: After the Access Token gets saved in the ServiceSettings.ini.file and once the OpenFlows On-Site Coordinator service starts again, the token will be automatically encrypted for security reasons. 

 

Renew the Access Token

The token is valid during one year, after that period it is necessary to renew. If it is not renewed after one year the data pusher (OFOSC) will stop sending data and WaterSight will not have updated sensor data anymore. 

To renew the access token, the user needs to generate a new token in the Admin >> Access Tokens and copy the new token inside the "ServiceSettings.ini" file inside the OFOSC folder. The detailed steps on how to do this are described above.

 

See Also

OpenFlows WaterSight TechNotes and FAQ's

WaterSight Learning Resources Guide

Sensor Data Acquisition Requirements