Share this page
Authenticate
Description
Logs the user on to the server and returns the LW-SSO, Light Weight Single Sign On cookie (and QCSession cookie in versions earlier than 2020) for use with all subsequent requests.
For external applications, it logs the user on to the server using the ClientIdKey or ClientSecretKey pair and returns the LW-SSO, Light Weight Single Sign On cookie for use with all subsequent requests (available in OpenText Enterprise Performance Engineering 2021 R1 and later).
URL
Authenticate (GET)
When logging on to OpenText Enterprise Performance Engineering using basic authentication, the URL should be in the format:
/LoadTest/rest/authentication-point/authenticateIf you are using a multi-tenancy system (versions 2020 SP2 and later), the tenant Unique ID should be added to the URL in the format:
/LoadTest/rest/authentication-point/authenticate?tenant=tenant_UIDExample:
GET /LoadTest/rest/authentication-point/authenticate?tenant=fa128c06-5436-413d-9cfa-9f04bb738df3AuthenticateClient (POST)
Available in versions: OpenText Enterprise Performance Engineering 2021 R1 and later
When logging on from an external application, the URL should be in the format:
/LoadTest/rest/authentication-point/AuthenticateClientIf you are using a multi-tenancy system, the tenant Unique ID should be added to the URL in the format:
/LoadTest/rest/authentication-point/AuthenticateClient?tenant=tenant_UIDExample:
POST /LoadTest/rest/authentication-point/AuthenticateClient?tenant=fa128c06-5436-413d-9cfa-9f04bb738df3Remarks
Authenticate (GET)
This is used for OpenText Enterprise Performance Engineering's internal (Application) authentication.
To create the request header, encode the string "<user name>:<password>" using Base64. The request header text is "Authorization: Basic <encoded user:password>".
In the header of each request after authentication, your application passes the cookies returned by the authenticate resource.
When your application has completed its work, call logout to release the log-on and session.
For versions earlier than 2020: The tokens time out according to the System Administration settings from OpenText Application Quality Management, by default after one hour of inactivity. The LW-SSO token is self-contained.
AuthenticateClient (POST)
This request extends the OpenText Enterprise Performance Engineering REST API by providing a secure authentication mechanism to run automation tests for users with LDAP and SSO authentication types, and for external applications to access OpenText Enterprise Performance Engineering's API.
The OpenText Enterprise Performance Engineering site administrator configures a unique pair of ClientIdKey and ClientSecretKey keys for a specific user, which enables that user to login using a REST API. For details, see Set up API access in the Help Center.
In the header of each request after authentication, your application passes the cookies returned by the AuthenticateClient resource.
HTTP Method
GET: Returns the LW-SSO cookie (and QCSession cookie in versions earlier than 2020) when logging on using OpenText Enterprise Performance Engineering's internal (Application) authentication.
POST: Returns the LW-SSO cookie when logging on from an external application (available in versions 2021 R1 and later).
Request
Headers:
GET: Authorization: Basic <encoded user:password>
POST: For external applications.
One of the following:
Content-Type: application/xml
Content-Type: application/json
Cookies:
None
Request Body:
GET: None
POST: An XML or JSON describing the API access key pair (ClientIdKey, ClientSecretKey) generated by the OpenText Enterprise Performance Engineering site administrator.
The fields in the request are:
| Element | Description |
|---|---|
| ClientIdKey | The client ID string for communicating with OpenText Enterprise Performance Engineering. |
| ClientSecretKey | The secret key for communicating with OpenText Enterprise Performance Engineering. |
Request Example - GETResponse
Headers:
None
Cookies:
| Version 2020 (or later) | Set-Cookie: LWSSO_COOKIE_KEY = {cookie} |
| Versions earlier than 2020 | Set-Cookie: LWSSO_COOKIE_KEY = {cookie} Set-Cookie: QCSession = {cookie} |
HTML Return Code:
One of the HTTP Return Codes
Upon successful authentication, returns HTTP status 200 (OK).
HTML Body:
None
See Also
