[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Handle-info] 14.6.3 Basic Access Authentication



Thanks a lot. When I swith to use https, it works this time using cURL.
Previous, I also tested sending the API calls to https://hdl.handle.net
But I guess you must point the API calls to your actual handle server for
basic authentication, right?
Kun

-----Original Message-----
From: Robert R Tupelo-Schneck <schneck@cnri.reston.va.us>
Sent: Tuesday, February 25, 2020 12:00 PM
To: Kun Lin <link@whitman.edu>
Cc: Handle-Info@cnri.reston.va.us
Subject: Re: [Handle-info] 14.6.3 Basic Access Authentication

The Handle server will ignore attempts to authenticate over plain http.
Send your requests to https://...:8000/api/handles instead.  If using curl,
you will generally need to add the -k or --insecure command-line option to
have curl accept the self-signed certificate from your handle server.

Robert

> On Feb 24, 2020, at 6:58 PM, Kun Lin <link@whitman.edu> wrote:
>
> Hi Robert
> When I test API basic authentication, I added header "Authorization"
> with "Basic " + base64 encoding of "10349/admin:{password}".  However,
> when I do PUT request to create a handle, I got error
> "responseCode": 406,
>    "message": "HandleException (UNABLE_TO_AUTHENTICATE) No
> authentication info provided"
>
> Did I do anything wrong? I try username 10349/admin and the same
> password in the handle admin java application and it works.
> Kun
>
> -----Original Message-----
> From: Robert R Tupelo-Schneck <schneck@cnri.reston.va.us>
> Sent: Monday, February 24, 2020 9:56 AM
> To: Kun Lin <link@whitman.edu>
> Cc: Handle-Info@cnri.reston.va.us
> Subject: Re: [Handle-info] 14.6.3 Basic Access Authentication
>
> You create a handle record with an HS_SECKEY value.  So you'll need to
> bootstrap, probably using the hdl-admintool and the
> 300:0.NA/YOUR_PREFIX authentication.  Create a handle, such as
> YOUR_PREFIX/ADMIN, and give it an HS_SECKEY value at the conventional
> index 300.  You'll also need to ensure that YOUR_PREFIX/ADMIN is
> authorized, which you could do by adding "YOUR_PREFIX/ADMIN" to
> "server_admins" in config.dct, and restarting the handle server.
>
> For Basic auth, the "username" will be the handle (such as
> YOUR_PREFIX/ADMIN) and the password will be the data of the HS_SECKEY
> value.
>
> Robert
>
>> On Feb 24, 2020, at 12:52 PM, Kun Lin <link@whitman.edu> wrote:
>>
>> Referring to 14.6.3 Basic Access Authentication in tech manual, where
>> do I set {username}:{password} that I could use to send basic auth
>> for API access?
>>
>> Thanks
>>
>> ----
>> Kun Lin
>> Systems and Application Librarian
>> Whitman College
>>
>> PGP Public Key https://kj7ieg.com/dnwklin_public.txt
>> _______________________________________________
>> Handle-Info mailing list
>> Handle-Info@cnri.reston.va.us
>> http://www.handle.net/mailman/listinfo/handle-info
> _______________________________________________
> Handle-Info mailing list
> Handle-Info@cnri.reston.va.us
> http://www.handle.net/mailman/listinfo/handle-info
_______________________________________________
Handle-Info mailing list
Handle-Info@cnri.reston.va.us
http://www.handle.net/mailman/listinfo/handle-info