How to verify user crdentials

Question

I use the Java binding for the Atmos REST API. My tool allows users to enter their atmos credentials in order to access their storage. I'd like to verify that the credentials have been entered correctly (so the user can correct them if not). Which API call is suitable to do this? It should be inexpensive, always fail with wrong credentials, and always succeed with correct credentials. Thanks, Carsten

rbala1 · Accepted Answer

The lowest overhead call that also exercises the Atmos authentication process is getServiceInformation().

fcarsten · Answer

My fault. Seems just adding '!!' in front of the secret does not invalidate it. With a completely bogus secret I indeed get rejected.

fcarsten · Answer

Hi rbala, thanks, but getServiceInformation() returns the same value with correct and incorrect credentials, so I can't use it to verify. Carsten

rbala1 · Answer

getServiceInformation() should fail if you use incorrect credentials. You should receive this error for an incorrect UID: 1033 Unable to retrieve the secret key for the specified user.

JasonCwik · Answer

Yes, the secret key is a base-64 encoded value so the ! character is ignored.

Atmos

Was this post helpful?