Skip to main content

In IFS 10 we can use REST (for integrations) services with Basic Authentication.

However, Basic Authentication is disabled by default in IFS Cloud and we cannot use it.

In some cases we don't want to use Open Id.

How can we re-enable Basic Authentication to use it in IFS Cloud?

 

 

 

We would be very happy if we see a solution.

Thanks to community!

Best regards,

 Hi @IfsHalukA,

Please refer the following extract from IFS cloud technical documentation:

Basic authentication as a last resort


If there is a necessary integration that can not do any of this, the last option is for a client to use HTTP Basic authentication in order to access the system. This is not recommended and has to be specifically enabled on the IFS Proxy, but if there is no other way to service a particular integration then it is available as an option.

The behavior that is triggered here is for the IFS Proxy to extract the username and password from the Basic authorization header and use Resource Owner Password Credentials Flow to exchange these for a token. This mimics the behavior of consuming a Basic authorization header but makes sure that there is still an access token available to the backend as expected.

NOTE: If it is possible for a client to use Authorization Code Flow or any of the direct access grants, this is always recommended over the use of HTTP Basic grants. Use of Resource Owner Password Credentials flow with a user associated with an external identity provider is not supported which means that for this flow to work the users need to be handled by the IFS IAM user registry.

 

Ref: https://docs.ifs.com/techdocs/21r1/foundation1/010_overview/210_security/030_authentication/default.htm

 

Thanks,

Kasun