Hello,
I could not find or successfully configured client auth with cert and disabled user/password. Can you give some help ?
- Cert is useful for api calls,
- you cannot disable password, create a random long password and set it.
- If you want to call api from applications,then you should create apikey and use them just adding to header like ‘ApiKey:$apikey’
How to use certs
if you have created a certificate then
base64Cert=base64(certString);
curl -X POST --header 'Cert:$base64Cert' https://yourserver/api/auth
will return an object {key:$generatedKey}
then post this object to
curl -X POST --data '{"key":"$generatedKey"}' --header 'content-type:application/json' https://yourserver/api/accesstoken will return an accessToken and refreshToken
for every api request you should use send this accessToken in headers like adding
‘Authorization: Bearer $accessToken’
for refreshing access token. that these tokens expires
curl -X POST --data '{"refreshToken":"$refreshToken"} https://yourserver/api/refreshtoken
So if I understand certs can only be used for api auth, it is not posible to use with client app to authorized user with agent and cert instead of user/pass?
We are working on a new client version. We will try to add this feature to new client