Authentication for api rest

mmanzur · September 25, 2017, 3:01pm

Hello everyone, I would need guidance for what I want to do. The scenario is as follows, I have a web application that uses the IDM to access. To do this, copy the flowable-task-ui mechanism. The problem arises when I want to use the api rest, since I need to send user: pass in the HTTP header by basic authentication. I have no way of knowing what the password is, which is fine. The idea I have is to modify the api in order to remove the HTTP authentication and then before each call to the methods check as does the task ui against the cookie. It does not seem the best or the cleanest, but I can not think of another way.
Do you see it possible? Is there another way to make it better?
Thanks and sorry for my English

Marcelo

joram · September 27, 2017, 8:47pm

The internal REST api (used by the UI) also uses the cookie approach (used by IDM) … so yes, if you want to reuse the REST api (non-ui one), that’s indeed an option that’s the easiest. You’d have to adapt the spring security configuration of the rest app though.

mmanzur · September 29, 2017, 12:02pm

Thanks Joram, I’ll try that and I’ll post the results

Thanks Again
Marcelo

Topic		Replies	Views
Authenticate user - REST API Flowable Engine	1	907	August 6, 2018
Rest authentication configuration during install process Flowable Engine	4	1184	July 6, 2018
Use jwt for authentication Flowable Engine	8	1535	April 24, 2022
Authentification Flowable Engine	3	504	April 10, 2020
Basic Authentication Flowable Engine	1	430	January 19, 2021

Authentication for api rest

Related Topics