Credentials required to download an attachment
- 13 years ago
So these actions will be occuring entirely server-to-server? Your server is essentially acting as a proxy to the user?
Regarding SSO, is your community currently in the launch process or engaged in some other professional services project? If so, I'd suggest contacting your designated Project Manager to have Lithium SSO setup. Otherwise, I would suggest submitting a request via our Custom Case Portal so that our Support team can work with you to identify the proper library and to get your community configured properly.
With respect to authenticating via the UI, the login form has many hidden fields which are required. If you examine the request when you login via the UI using a tool like Fiddler or HttpFox to see all of the fields that are sent when logging in. I'm not aware off-hand of any other customers that have tried this, but if you want to pursue this approach further, you'll likely need to make an initial request for the login page in order to get the hidden form data, and then make a subsequent request to submit the form data along with your credentials. Various cookies will be included in the response, which you'll then need to include in your additional requests for obtaining the attachment data.
I think Lithium SSO will likely wind up being an easier approach since you'd just need to generate the SSO token on your server, and then include the cookie on the request for the attachment data.