Expand my Community achievements bar.

SOLVED

API access without a need of token?

Avatar

Level 3

Hi, to make an API call without refreshing the token, what shall we do?

Can we use a static IP for this purpose?

1 Accepted Solution

Avatar

Correct answer by
Level 3

Hi,

Try setting the value of  allowUserPassword="true" and check the result.

Thanks,

Subhajit

View solution in original post

3 Replies

Avatar

Employee Advisor

You could enable user/password authentication for a specific security zone just containing the calling IP.

Refer to allowUserPassword in:

Configuring Campaign server

Avatar

Level 3

Thanks Ramon,

Here on the page you sent, I found:

If I use a static IP with the following settings, we ll eliminate to get token every time.

<securityZone allowDebug="false" allowHTTP="false" label="Public Network" name="public">

<subNetwork label="All addresses" mask="*" name="all"/>

<securityZone allowDebug="true" allowHTTP="false" label="Private Network (VPN)"

  name="vpn" showErrors="true">

  <securityZone allowDebug="true" allowEmptyPassword="true" allowHTTP="true"

  allowUserPassword="false" label="Private Network (LAN)" name="lan"

  sessionTokenOnly="true" showErrors="true">

  <subNetwork label="Lan 1" mask="192.168.0.0/16" name="lan1"/>

  <subNetwork label="Lan 2" mask="172.16.0.0/12" name="lan2"/>

  <subNetwork label="Lan 3" mask="10.0.0.0/8" name="lan3"/>

  <subNetwork label="Localhost" mask="127.0.0.1/16" name="locahost"/>

  <subNetwork label="Lan (IPv6)" mask="fc00::/7" name="lan6"/>

  <subNetwork label="Localhost (IPv6)" mask="::1/128" name="localhost6"/>

  </securityZone>

</securityZone>

</securityZone>

Avatar

Correct answer by
Level 3

Hi,

Try setting the value of  allowUserPassword="true" and check the result.

Thanks,

Subhajit