Skip to main content
Version: 1.9

Authentication

Basic authentication is described in the section Authentication.

When ADS is configured to use authentication, any request without authentication headers, or with invalid credentials, will return HTTP 401 Unauthorized.

Authentication parameters are sent in the authorization header. The supported authentication method is basic authentication, which consists of the string Basic followed by a base64-encoding of a concatenation of the username, a : (colon) character, and the password.

Most HTTP clients will have a more convenient method of entering this information, for example,

curl --data @request.json -H content-type:application/xacml+json http://localhost:8080/authorize -H authorization:Basic\ YWRzLXVzZXI6c2VjcmV0

is equivalent to

curl --data @request.json -H content-type:application/xacml+json http://localhost:8080/authorize -u ads-user:secret

Refer to the documentation of the client for details.