Calling the Webservice API with an access token instead of username + password

Øystein Langeland Sandvik shared this question 36 days ago
Answered

Hi,

I was wondering if it was possible to call the Webservice API without using the username and password for an admin user. For example, if we have configured the SAML bridge I would like to use the logged in session belonging to the user in the third party application to authenticate with the YF Webservice API. Ideally this would be an access token for the IAM that the SAML bridge is integrated with that Yellowfin would verify.

Comments (7)

photo
1

Hi Øystein,


I've check in with our Developers and they've let me know that his is not something that is possible with our SOAP service.


Let me know if there is anything else I can help clarify.


Kind regards,

Simon

photo
1

Hi, thanks for your answer.

Is this something that will be possible at a later point, or at least with the REST API in 9.x?

photo
1

Hi Øystein,


The Developers have let me know that this is already possible with the REST api, however, not using the SAML bridge which uses SOAP. Apparently you would be able to write your own bridge for this purpose. I believe this page should provide you with further information!


Let me know if you have any further questions.


Kind regards,

Simon

photo
1

Hi,

Just to clarify, I would have to write my own bridge when using the REST API?

photo
1

Hi Øystein,


That is correct. Yellowfin does not perform any SAML handling which is why the SAML bridge exists as an intermediary, however, this is restricted to the SOAP api.


Let me know if there is anything else I can help clarify.


Kind regards,

Simon

photo
1

Thank you for your help!

photo
1

Hi Øystein,


Not a problem!


I will mark this off as answered for the time-being, please feel free to respond here if you have any further questions on this topic, and I will get back to you shortly.


Enjoy your weekend!


Kind regards,

Simon