We got requirement like user does not want to send user authentication credentials in header and interested to send in request body itself in username , password fields.
We are trying to validate user credentials that are sent in request body against Active Directory. We are able to form custom authorization HTTP header with Basic encode username:password .
headers:accept:*/*, accept-encoding:gzip, deflate, br, accept-language:en-US,en;q=0.8, Authorization:Basic eGthc3VuZTpDaGFyYW5AMjAxNg==, cache-control:no-cache, connection:keep-alive, content-length:8505, content-type:text/xml, origin:chrome-extension://fhbjgbiflinjbdggehcddcbncdddomop, user-agent:Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/
Still we are observing "Authentication Required" error from service.Could you please suggest us on how can we do authentication in this scenario.
Is it possible to do authentication what we are trying to do ?