A3 Online Help

Menu path: Configuration > Policies and Access Control > Authentication Sources > Internal > HTTP.

This type of authentication uses an external HTTP API as an authentication source. The external API implements an authentication action and an authorization action.

Authentication

The authentication API returns information on whether or not a user name and password combination contained in the POST field of the request is valid. The server replies with two attributes in a JSON response:

result: 1 for success, 0 for failure
message: reason for the success or failure.

For example:

{"result":1, "message":"Valid username and password"}

Authorization

The authorization API returns information about which actions to perform based on a client's attributes. The following attributes are available in a JSON return:

access_duration
access_level
sponsor
unregdate
category

For example:

{"access_duration":"1D","access_level":"ALL","sponsor":1,"unregdate":"2030-01-01",
                    "category":"default"}

A3 Configuration

The fields in an HTTP authentication source definition are:


Field Name	Usage	Example
Name	The name of the authentication source.	HTTP auth
Description	Optional description of the source.	Corp HTTP authentication
Host	Three items are defined here: Protocol: http: or https: The host name or IP address of the HTTP server The port number to use	http 127.0.0.1:10000
API User Name (Basic Authentication)	If the API uses HTTP basic authentication as defined in RFC 2617, enter the user name and password in this field and the next. If this field or the next is empty, then A3 will handle the requests without authentication.
API Password (Basic Authentication)	See API username.
Authentication URL	URL relative to the host to call when doing performing authentication of a user. This field is automatically prefixed by a slash.
Authorization URL	URL relative to the host to call when doing performing authorization of a user. This field is automatically prefixed by a slash.
Associated Realms	The realms associated with the HTTP authentication source. Realms are discussed in Domains and Realms.