basicauthentication | Community Creatio

From the /ServiceModel/AuthService.svc/Login authorization API respond with 4 Set-Cookie headers in the response. But according to the spec [https://datatracker.ietf.org/doc/html/rfc6265#section-4.1] , "Servers SHOULD NOT include more than one Set-Cookie header field in the same response with the same cookie-name." From the client application, it can't get the all 4 header values, only first one retrievable. Could you please give a fix or suitable workaround for this.

2 comments

Best reply

Bogdan Lesyk

11:35 Sep 13, 2021

Hi Anusha,

it's now allowed in HTTP/2 (https://datatracker.ietf.org/doc/html/rfc7540#section-8.1.2.5), which specifies:

8.1.2...

MoreLess

Show all comments (1)

Basic authentication for custom configuration services

M Shrikanth

09:20 Jul 09, 2020

Hello Community!

The Creatio documentation suggests that basic authentication is only available for the OData API and not for a custom configuration web service. Anonymous/Forms authentication are the only 2 ways to authenticate for configuration web services. Would like to reconfirm this.

A...MoreLess

4 comments

Dennis Hudson

13:48 Jul 09, 2020

Hello!

Custom configuration service becomes available after user authentication via the AuthService.svc. If you don't have a possibility...MoreLess

M Shrikanth

14:10 Jul 09, 2020

Dennis Hudson,

Hi Dennis. We are not in a position to do any customization on the external system side.

Is there anything we can do on Creatio's side to facilitate this?

Dennis Hudson

15:17 Jul 09, 2020

M Shrikanth,

The only way to bypass the Auth service for configuration web services is to create an anonymous web service. As a workaround...MoreLess