Forum Discussion
nathan
Executive
I was under the impression that if you made a call to the REST API authentication method with the SSO cookie (but not specifying a username or password) that it would authenticate with the SSO cookie and return a valid token that can be used in subsequent calls. This avoids the for the user to browse to the community first.
I've just tested this and seems to be working. However, it could just be that the 'unsafe' cookie authentication is enabled.
JakeS
11 years agoLithium Alumni (Retired)
Yeah, that's the correct flow, and doesn't rely on a browser session cookie; that token should work if you add it as a query param to an api call in ANY context, even outside of the original browser.
Related Content
- 8 months ago
- 4 years ago
- 10 years ago