This post is more than 5 years old
3 Apprentice
•
318 Posts
0
702
May 17th, 2017 07:00
REST API passwordless authentication
Hi,
From reading
https://support.emc.com/docu79794_OneFS-8.0.1-API-Reference.pdf?language=en_US
page 17, it seems
"Session cookies are configured to expire automatically in 15 minutes after a period of inactivity or in 4 hours after an absolute period of time."
I was looking to create a job running via REST to gather stats, but the session cookie is too short lived and I do not want to have cleartext username/password. Another vendor uses an API key which is challenge/responded to. Any ideas on what options are ?
No Events found!
Peter_Sero
4 Operator
•
1.2K Posts
1
May 17th, 2017 07:00
Even the session cookie must be obtained with username/password, so there's no way around that.
What we and many others do: create a dedicated user with minimal and read-only
access privileges to the required API sections.
hth
-- Peter
cadencep45
3 Apprentice
•
318 Posts
0
May 17th, 2017 07:00
Tks,
looking around, that appeared to be the option of least resistance