AnsweredAssumed Answered

Custom HTTP Authorization Header

Question asked by saisuneel on Feb 14, 2017
Latest reply on May 4, 2017 by Mark_HE

Hi All,

 

We got requirement like user does not want to send user authentication credentials in header and interested to send in request body itself in  username , password fields.

We are trying to validate user credentials that are sent in request body against Active Directory. We are able to form custom  authorization HTTP header with Basic encode username:password .

 

headers:accept:*/*, accept-encoding:gzip, deflate, br, accept-language:en-US,en;q=0.8, Authorization:Basic eGthc3VuZTpDaGFyYW5AMjAxNg==, cache-control:no-cache, connection:keep-alive, content-length:8505, content-type:text/xml,  origin:chrome-extension://fhbjgbiflinjbdggehcddcbncdddomop, user-agent:Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/

 

Still we are observing  "Authentication Required" error from service.Could you please suggest us on how can we do authentication in this scenario.

 

Is it possible to do authentication what we are trying to do ?

 

Regards,

Suneel

Outcomes