Redirect Notice
As of April 12th, you must go to Progress SupportLink to create new support cases or to access existing cases. Please, bookmark the SupportLink URL and use the new portal to contact the support team.
How can we help you today?
LDAP Authorization
4 CommentsSorted by Oldest First
Is the 'loginAuthLink' method available to Phonegap and HTML5 js files?
Once you have the access token, you can use this to login as follows:
Kinvey.User.login({
"_socialIdentity": {
"authlink": {
"access_token": "",
"expires_in": "3600"
}
}
}).then(function () {
// success
}, function () {
// error
});
Kinvey.User.login({
"_socialIdentity": {
"authlink": {
"access_token": "",
"expires_in": "3600"
}
}
}).then(function () {
// success
}, function () {
// error
});
Mark, I tried this method, but I keep getting a error on the login response.
XMLHttpRequest cannot load https://baas.kinvey.com/user/kid_eV4NEeos5i/login/?_=ik7y2fbcmq3vunmi. No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost:9000' is therefore not allowed access.
Any thoughts on why I get this response? also, the request takes 59s to get this error back.
Thanks
XMLHttpRequest cannot load https://baas.kinvey.com/user/kid_eV4NEeos5i/login/?_=ik7y2fbcmq3vunmi. No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost:9000' is therefore not allowed access.
Any thoughts on why I get this response? also, the request takes 59s to get this error back.
Thanks
Updated: You're essentially at step 3 of Authentication Flow diagram in the LDAP Auth link guide. Which means you need to login to Kinvey using the auth token returned from the auth link before you can access your collection data.
Each native SDK has a convenience login method to handle session authentication with Kinvey servers. If you are using the REST api you will have to perform the POST manually.
Native Android:
kinveyClient.user().loginAuthLink(accessToken, new KinveyUserCallback() {
public void onFailure(Throwable e) {
Log.e(TAG, "failed Kinvey authlink login", e);
}
public void onSuccess(User u) {
Log.d(TAG, "successfully logged in with authlink");
}
});
REST API
POST /user/:appKey/ HTTP/1.1
Host: baas.kinvey.com
Content-Type: application/json
Authorization: [Basic Auth with app credentials]
{
"socialIdentity": {
"authlink": {
"accesstoken": "from authlink response",
"refresh_token": "from authlink response"
}
}
}
In step 4 the Kinvey servers will use the LDAP endpoint configuration setup for the app to 'verify' the authtoken and ensure only a 200 is returned then the request to "login" the user to Kinvey will complete successfully.
Each native SDK has a convenience login method to handle session authentication with Kinvey servers. If you are using the REST api you will have to perform the POST manually.
Native Android:
kinveyClient.user().loginAuthLink(accessToken, new KinveyUserCallback() {
public void onFailure(Throwable e) {
Log.e(TAG, "failed Kinvey authlink login", e);
}
public void onSuccess(User u) {
Log.d(TAG, "successfully logged in with authlink");
}
});
REST API
POST /user/:appKey/ HTTP/1.1
Host: baas.kinvey.com
Content-Type: application/json
Authorization: [Basic Auth with app credentials]
{
"socialIdentity": {
"authlink": {
"accesstoken": "from authlink response",
"refresh_token": "from authlink response"
}
}
}
In step 4 the Kinvey servers will use the LDAP endpoint configuration setup for the app to 'verify' the authtoken and ensure only a 200 is returned then the request to "login" the user to Kinvey will complete successfully.
Rich Doyle
Thanks