| For public/private key authentication, you can---in the present version---use Authorization: Handle, which requires you to write code to correctly encode a cryptographic signature using your private key, or you can use a client-side certificate.
We can further advise on how to use either a client-side certificate or Authorization: Handle, and you can also find more information in the Handle Technical Manual.
Robert
But I thought PUT /api/handles need a HS_SECKEY, right? I don’t know how to use that admprv.bin in PHP for auth. Kun Yes, PUT /api/handles/{handle} can be used. The technical manual describes the API. I should add that we generally try to discourage use of HS_SECKEY. Although HTTP Basic authentication is significantly simpler than the alternatives, HS_SECKEY does not have the security allowed by use of public/private key pairs. Robert
Is there a way to create a brand new handle via API? Create a handle, and in that handle record create a value of type HS_SECKEY. By convention the secret or public key is placed at index 300, but this is not necessary. Also, the HS_SECKEY value should be made not-world-readable (the hdl-admintool client does this for you). After this handle is created with an HS_SECKEY value, that handle can be used with HTTP Basic authentication. For the purpose of using REST API and Basic Access Authentication. How to set the HS_SECKEY password? I didn’t remember setting it. I always use admpriv.bin file for auth in clients. Systems and Application Librarian
|