REST API Authentication

Question

Hi,&nbsp;I went through the documents and discussions and couldn't find a solution, may be I am missing something obvious.&nbsp;Problem:&nbsp;I have access to our community forums and also full permissions to use the REST API. So, when I try to call the API through python, I keep receiving error code 302, user authentication failed.&nbsp;While browsing through the forums, I understand that I need to get an SSO key for the authentication, but I am unable to get to lithium SSO client (assuming thats how I can get the key).&nbsp;&nbsp;Any help is appreciated.&nbsp;Cheers

haidongg · Answer

Hi&nbsp;durgamallesh,
&nbsp;
for SSO user to access the REST API, you just need to do as you normal SSO user login via Cookie, it is something like
LithiumSSOClient ssoClient = LithiumSSOClient.getInstance(SSO_KEY.getRaw(), SSO_CLIENT_ID, SSO_CLIENT_DOMAIN, SSO_SERVER_ID);
ssoAuthTokenString = ssoClient.getLithiumCookieValue(ssoid, screenname, email, "", "", "", CALLER_PUBLIC_IP);
&nbsp;the you do HTTP GET for
COMMUNITY_URL + "/restapi/vc/authentication/sessions/login?sso.authentication_token=" + ssoAuthTokenString;
&nbsp;to retrieve the restSessionKey.
&nbsp;
for your last question: yes, you are right: with SSO enabled, you can still access REST API with normal Lithium Authentication. However, once SSO is enabled, you are not able to register a new Lithium authentication&nbsp;account. for stage, you may temporarily&nbsp;disable SSO and ceate a new account. For production, you need to log a ticket with our Support team.

paolot · Answer

Hi&nbsp;durgamallesh,
&nbsp;
are you calling the API from a standalone application or external website? As discussed&nbsp;here&nbsp;the API supports username and password log in as well as authentication using the Lithium SSO cookie. If you get a 302 error back when using those credentials, make sure that you verify that the credentials are correct - also, please check the method you are using to send these in your request - for example a POST request of "application/x-www-form-urlencoded" Content-Type.
&nbsp;
If you are using the REST API in the Studio custom components via the rest context object - then the call will be made on behalf &nbsp;of the currently logged (or anonymous) session that is browsing the Lithium communities and loading the custom component.
&nbsp;
Maybe if you can provide some context on what you are trying to accomplish I can be more specific.
&nbsp;
Thanks,

durgamallesh · Answer

Thanks paolo.&nbsp;Before I proceed, I want to confirm that the credentials I am using are correct.&nbsp;&nbsp;I am calling the API from a Python program and trying to fetch some metrics for our forums.&nbsp;I am trying to make a GET request to the following URL and passing user.login and user.password as the parametershttp://forums.&lt;my company&gt;.com/restapi/vc/authentication/sessions/login.&nbsp;Please note that the user.login and user.password are the credentials I use to login to our company's forums with access to use the REST API.&nbsp;And this is the error, I get:&nbsp;&lt;?xml version="1.0" encoding="utf-8" standalone="yes"?&gt;&lt;response status="error"&gt;&lt;error code="302"&gt;&lt;message&gt;User authentication failed.&lt;/message&gt;&lt;/error&gt;&lt;/response&gt;&nbsp;I know that I am missing something obvious, but couldn't figure it out.&nbsp;Thanks for taking time to respond. Much appreciated.&nbsp;Cheers

haidongg · Answer

Hi&nbsp;durgamallesh,
&nbsp;
1)&nbsp;are you calling the authenticationurl like&nbsp;"/restapi/vc/authentication/sessions/login?user.login=" + user + "&amp;user.password=" + password &nbsp;?
&nbsp;
maybe your username or password contain special characters, which break the URL?
&nbsp;
2) has your community enabled SSO?
&nbsp;
if yes, you have to get the sso authorization token from the SSO provider and call&nbsp;"/restapi/vc/authentication/sessions/login?sso.authentication_token=" + ssoAuthTokenString;
&nbsp;
last, through it may not be related, you may want to make sure your user id has the proper right to call REST API.

durgamallesh · Answer

Hi Haidong,&nbsp;Thanks for the reply. I was on vacation so couldn't respond earlier.&nbsp;HaidongG wrote:Hi&nbsp;durgamallesh,&nbsp;1)&nbsp;are you calling the authenticationurl like&nbsp;"/restapi/vc/authentication/sessions/login?user.login=" + user + "&amp;user.password=" + password &nbsp;?&nbsp;maybe your username or password contain special characters, which break the URL?&nbsp;&nbsp;I have modified the password to ensure there are no special characters and tried, but no luck.&nbsp;&nbsp;2) has your community enabled SSO?&nbsp;if yes, you have to get the sso authorization token from the SSO provider and call&nbsp;"/restapi/vc/authentication/sessions/login?sso.authentication_token=" + ssoAuthTokenString;&nbsp;&nbsp;Our community has enabled SSO, but I am lost as how I can get the sso authentication token. Is this something that community admins would provide?&nbsp;last, through it may not be related, you may want to make sure your user id has the proper right to call REST API.I can confirm that my ID has access to the REST API. When I login to our community forums and try to authenticate using REST API, I get a session key using which I was able to make the REST calls.&nbsp;&nbsp;and a final question, if my community has enabled SSO, is SSO authentocation the only way to connect to REST API? or can I still use just my user id and password to connect to REST API?&nbsp;Thanks again.&nbsp;Cheers

Forum Discussion

REST API Authentication

Related Content

API Authentication

Authentication: REST API and SSO

facebook authentication rest api

Rest API Outside Community

Community REST-API: Get all tags available

Recent Discussions

Boosting a User

Google Tag Manager and Google Analytics Setup in Aurora platform

In Aurora, add additional <script> and <meta> tags

Incremental data for attachments in messages and replies

Incremental data for users data