Stack Overflow
Stack Overflow

Questions tagged [restful-authentication]

Questions about authentication for RESTful services.

Services designed using REpresentational State Transfer architecture must often authenticate clients. How best to do this can be a complex topic, as in true REST each client request to the server will contain all the information necessary to complete it (including authentication).

Resources

1447 questions
17
votes
4 answers

Rails, Restful Authentication & RSpec - How to test new models that require authentication

I've created a learning application using Bort, which is a base app that includes Restful Authentication and RSpec. I've got it up and running and added a new object that requires users to be logged in before they can do anything(before_filter…
srboisvert
  • 12,679
  • 15
  • 63
  • 87
17
votes
5 answers

How do i authenticate a rest call in firebase?

I want to do a rest call on some data protected by some rule using the aid of my user, so i need to had the token to my request. depending of which version of firebase documentation there is different way: old and deprecated way…
drevlav
  • 572
  • 2
  • 6
  • 14
17
votes
3 answers

Token based authentication with flask-security extension

I am currently looking for a way to secure a REST API using token based authentication. I am developing the API in Python using Flask and have discovered the flask-security extension which seems to have a lot of interesting features. One of the…
user2483431
  • 783
  • 2
  • 7
  • 11
16
votes
2 answers

RESTful API Authentication

I have found quite a few questions on this topic on SO, but couldn't find any answering this question: Should I validate users with their username and password, or with an API key? And what are the pros and cons of each method. I ask this because in…
Obto
  • 1,377
  • 1
  • 20
  • 33
16
votes
1 answer

WCF, RESTful Web Services and custom authentication

I am beginning to believe I am a grossly incompetent programmer. After a lot of reading, I still cannot figure out how to cleanly implement an authentication mechanism for a RESTful WCF Service. I have tried everything: Following this guide, only…
isekaijin
  • 19,076
  • 18
  • 85
  • 153
16
votes
15 answers

GET request works in browser but not in POSTMAN or SOAPUI

I have the following endpoint: http://millennium.iwise.com.br:6017/api/millenium_eco/Tabelas_preco.lista If I try to open via browser, it asks me credentials and then works fine - as seen on image below. user: OData password: 0d@t@123 If I send the…
Victor Viola
  • 575
  • 1
  • 4
  • 14
16
votes
1 answer

Error 500 with authorization while consuming OAuth2 RESTful service through C#

My current job is to consume a RESTful API with OAuth2. Currently I worked out how to get the access token and it is working ok while I use the chrome extension Rest Console, but when I try to do it from my application I always get the error that I…
user2227904
  • 679
  • 1
  • 8
  • 27
16
votes
1 answer

How to secure a REST api between a single page app and a server?

I have 2 servers in place, one is responsible for the front-end application and the user authentication. This server is rendering a single page application coded in javascript. This javascript app is rendering data from a second server through a…
Michael
  • 2,436
  • 1
  • 36
  • 57
15
votes
4 answers

Is OAuth good choice for RESTful API in this SaaS scenario?

Is OAuth sensible to use when the user account info (user id's, passwords, roles, etc) is going to be maintained in our own back-end and when there will not be any sharing of resources with other sites? Or is sharing the whole point of using…
Justin
  • 6,031
  • 11
  • 48
  • 82
15
votes
3 answers

RESTful authentication - resulting poor performance on high load?

For a RESTful web service we say that that the server shouldn't store any state. Now for every request the 'user' must be authenticated and must have an authorization for the action(s) he/she wishes to carry out. Now every request will contain…
PhD
  • 11,202
  • 14
  • 64
  • 112
14
votes
5 answers

How can I use Docker Registry HTTP API V2 to obtain a list of all repositories in a docker registry?

An external organization that I work with has given me access to a private (auth token protected) docker registry, and eventually I would like to be able to query this registry, using docker's HTTP API V2, in order to obtain a list of all the…
stachyra
  • 4,423
  • 4
  • 20
  • 34
14
votes
1 answer

How do I authenticate user in REST web service?

How do I write the method for user authentication in REST web service? I am beginner with web services.
sudo
  • 1,525
  • 7
  • 34
  • 59
13
votes
1 answer

Rails and iOS app, authentication question

I want to build web service in Rails 3 and iOS app to work with this service. I need simple thing. User when first time open iOS app, get login screen. When is logged in, iOS app can send and get requests. I already used Devise for authentication on…
dormitkon
  • 2,526
  • 4
  • 39
  • 60
13
votes
2 answers

A web API key can only be specified when a web API key name is provided

I was trying to get data from a vendor's REST API from Power BI. When getting data, under Web API, it keeps throwing this error. See attached screenshot. It is a POST method where you can filter by any field in the response body (yet I'm not…
Hanyu Wang
  • 141
  • 1
  • 1
  • 5
13
votes
1 answer

api authentication in rails 3

Currently I have an rails 3 application which uses devise plugin for website authentication. But now I'll be adding an iPhone app as well so I will be exposing the api calls to the client device (iPhone). How would I implement auth module so that…
ed1t
  • 8,719
  • 17
  • 67
  • 110
1 2 3
96 97