Forum Discussion

Guide

3 years ago

How to authenticate rest api calls using technical users for server to server use (SSO enabled)?

Hello, Been reading the docs and for a community with SSO enabled we've seen 3 means of achieving rest api access. OAuth 2.0 authorization grant flow To make a fully-automated server-to-server ...

Rest API

MohammedSh
3 years ago
octavian_krody, In this case you can use the session key based approach as you want to write/permission based access.

It is okay for two types to exist simultaneously, but that user can only use the API as the default auth pages are blocked when SSO is enabled.

MohammedSh

Moderator

3 years ago

Hi octavian_krody

We are working on an OAuth 2.0 Client Credentials Grant Flow and this is meant as a pure server-2-server communication. We can only do calls that do not require user interaction, effectively making these read-only calls.

So: For now: Session Key is the way. In the future, you may want to use the Client Credentials workflow depending on your implementation needs, but this will take a while. Please check https://oauth.net/2/grant-types/client-credentials/ for what this would be and you would need to assess if this is right for you.

Forum Discussion

How to authenticate rest api calls using technical users for server to server use (SSO enabled)?

Related Content

Aurora: Enable languages in your community

Aurora: Enable and configure Case Portal

API Authentication

Aurora: Enable spam management

Aurora: Enable emojis

Recent Discussions

API Call for Retrieving Pre-Moderation Messages

Google Tag Manager and Google Analytics Setup in Aurora platform

Error while fetching products data using graphql query

Using LiQL or SQL on Aurora instead of GraphQL?

Not receiving user email addresses from search endpoint