Configure SSO for APIs

To use APIs with SSO authentication, the following changes must be made.

• OTA API:

  When the user attempts to log in, a window appears and the user enters the proper credentials to pass SSO authentication. If the application is not supposed to work in interactive mode or if the user frequently logs in, the user can specify default credentials.

  To specify the default credentials, in OpenText Application Quality Management go to Help > ALM Tools > Webgate Customization. On the Web Server Settings tab, enter Web Server Username and Web Server Password, and select Add basic authentication header.

• REST API:

  Note: The REST API is a technical preview.

  • Web browser extension (REST clients) – The web browser authenticates via the connection itself, so when attempting to connect, the browser requests the SSO credentials. After the SSO credentials are applied, REST API continues as usual.

  • Non browser REST Clients – The REST client passes the SSO authentication, after which REST API continues as usual.

    Note: SiteMinder does not allow sending URLs that include the ['] character (single quote). To send such URLs, either replace the single quote with double quotes or change the SiteMinder settings to allow the single quote character.