topic Re: Authentication woes on share REST API in Alfresco Archive

Authentication woes on share REST API

jocylincouch — Mon, 22 Sep 2014 12:04:43 GMT

I'm trying to ultimately get a CSRF token to post to create-site. I start with the share login to get the JSESSIONID.On executing the below, I have the following:curl –junk-session-cookies -L -H "Content-Type: application/x-www-form-urlencoded" –cookie-jar cookies.txt –cookie cookies.txt -H "Origin:

Re: Authentication woes on share REST API

kaynezhang — Tue, 07 Oct 2014 02:03:46 GMT

You can use proxy servlet in share directly to call site WebScript API and don't need to reauthenticate again

Re: Authentication woes on share REST API

jocylincouch — Wed, 15 Oct 2014 12:40:42 GMT

Could you explain this more please?

Re: Authentication woes on share REST API

jocylincouch — Tue, 21 Oct 2014 11:02:35 GMT

I don't get the proxy stuff mentioned above, however if the decoded CSRF token is added in to header of the create-site POST request, then you will have a site successfully created. Don't forget all the other cookies, including the CSRF token cookie (but don't decode that one – leave it alone!).