https://connect.hyland.com/t5/alfresco-forum/auhtentification-issues-in-alfresco-6-2/m-p/121283#M33292 <P>Hi there,</P><P>(my english is not so great so please be mindful)<BR /><BR />A bit of context :<BR /><BR />Actually my society has 2 conccurent servers running differents version of Alfresco .<BR />The server 1 in 5.1 (yes, inda old isn't he ?) -&gt; our production server<BR />We use http endpoints like<STRONG> /alfresco/s/api/login</STRONG> to generate authentication tickets<BR />And in almost all cases the alf_ticket as authentication<BR />We can read/create/delete/update folders and documents with no issues<BR /><BR />The server 2 in 6.2 wich will become our production once it has been fully tested,<BR />As yu can guess right now we have a small issue with the authentication.<BR /><BR />In order :<BR />To create we use alf_ticket like on 5.1<BR /><BR />1 -&nbsp; <A href="http://ip:port/alfresco/s/api/login?u={}&amp;pw=" target="_blank" rel="noopener nofollow noreferrer">http://ip<img id="smileytongue" class="emoticon emoticon-smileytongue" src="https://connect.hyland.com/i/smilies/16x16_smiley-tongue.png" alt="Smiley Tongue" title="Smiley Tongue" />ort/alfresco/s/api/login?u={}&amp;pw=</A>{}<BR />&nbsp;&nbsp; A ticket is generated, i could use it to "read" documents but not "create" documents even with admin credentials<BR />return a "401" unauthorized in postam<BR /><BR /><BR />2 - <A href="http://ip:port" target="_blank" rel="noopener nofollow noreferrer">http://ip<img id="smileytongue" class="emoticon emoticon-smileytongue" src="https://connect.hyland.com/i/smilies/16x16_smiley-tongue.png" alt="Smiley Tongue" title="Smiley Tongue" />ort</A><SPAN>/alfresco/api/-default-/public/authentication/versions/1/tickets + body{userId:"",password:""}<BR />&nbsp; A ticket is generated, the ticket is exactly the same (same ticket id),&nbsp; but this time i can reate (if the account&nbsp; is allowed to ) return 200 ok in Postman<BR /><BR />Did this happened to anyone yet ?<BR /><BR />Sould we change our external app to call /alfresco/api/-default-/public/authentication/versions/1/tickets ?<BR />Or <A href="http://ip:port/alfresco/s/api/login" target="_blank" rel="noopener nofollow noreferrer">http://ip<img id="smileytongue" class="emoticon emoticon-smileytongue" src="https://connect.hyland.com/i/smilies/16x16_smiley-tongue.png" alt="Smiley Tongue" title="Smiley Tongue" />ort/alfresco/s/api/login</A> has been deprecated ?<BR /><BR />This concerns me , be cause it seems that the ticket is correctly generated but the rights are not the same when using different methods.<BR /><BR />I already thank you<BR /></SPAN><BR /><BR /><BR /></P> Thu, 12 May 2022 09:08:16 GMT GabrielHuyard 2022-05-12T09:08:16Z https://connect.hyland.com/t5/alfresco-forum/auhtentification-issues-in-alfresco-6-2/m-p/121283#M33292 <P>Hi there,</P><P>(my english is not so great so please be mindful)<BR /><BR />A bit of context :<BR /><BR />Actually my society has 2 conccurent servers running differents version of Alfresco .<BR />The server 1 in 5.1 (yes, inda old isn't he ?) -&gt; our production server<BR />We use http endpoints like<STRONG> /alfresco/s/api/login</STRONG> to generate authentication tickets<BR />And in almost all cases the alf_ticket as authentication<BR />We can read/create/delete/update folders and documents with no issues<BR /><BR />The server 2 in 6.2 wich will become our production once it has been fully tested,<BR />As yu can guess right now we have a small issue with the authentication.<BR /><BR />In order :<BR />To create we use alf_ticket like on 5.1<BR /><BR />1 -&nbsp; <A href="http://ip:port/alfresco/s/api/login?u={}&amp;pw=" target="_blank" rel="noopener nofollow noreferrer">http://ip<img id="smileytongue" class="emoticon emoticon-smileytongue" src="https://connect.hyland.com/i/smilies/16x16_smiley-tongue.png" alt="Smiley Tongue" title="Smiley Tongue" />ort/alfresco/s/api/login?u={}&amp;pw=</A>{}<BR />&nbsp;&nbsp; A ticket is generated, i could use it to "read" documents but not "create" documents even with admin credentials<BR />return a "401" unauthorized in postam<BR /><BR /><BR />2 - <A href="http://ip:port" target="_blank" rel="noopener nofollow noreferrer">http://ip<img id="smileytongue" class="emoticon emoticon-smileytongue" src="https://connect.hyland.com/i/smilies/16x16_smiley-tongue.png" alt="Smiley Tongue" title="Smiley Tongue" />ort</A><SPAN>/alfresco/api/-default-/public/authentication/versions/1/tickets + body{userId:"",password:""}<BR />&nbsp; A ticket is generated, the ticket is exactly the same (same ticket id),&nbsp; but this time i can reate (if the account&nbsp; is allowed to ) return 200 ok in Postman<BR /><BR />Did this happened to anyone yet ?<BR /><BR />Sould we change our external app to call /alfresco/api/-default-/public/authentication/versions/1/tickets ?<BR />Or <A href="http://ip:port/alfresco/s/api/login" target="_blank" rel="noopener nofollow noreferrer">http://ip<img id="smileytongue" class="emoticon emoticon-smileytongue" src="https://connect.hyland.com/i/smilies/16x16_smiley-tongue.png" alt="Smiley Tongue" title="Smiley Tongue" />ort/alfresco/s/api/login</A> has been deprecated ?<BR /><BR />This concerns me , be cause it seems that the ticket is correctly generated but the rights are not the same when using different methods.<BR /><BR />I already thank you<BR /></SPAN><BR /><BR /><BR /></P> Thu, 12 May 2022 09:08:16 GMT https://connect.hyland.com/t5/alfresco-forum/auhtentification-issues-in-alfresco-6-2/m-p/121283#M33292 GabrielHuyard 2022-05-12T09:08:16Z