Operation
When Graphical User Interface (GUI) applications have been configured for access control, the user is redirected to the following OpenAM login screen to provide their identification credentials:
If viewing this document in online form, click the image for a larger version.
Once the user enters their identification credentials (user name and password) correctly, they are redirected back to the original application. If the user is accessing an access controlled application via its REST-based interface, they can utilize the curl application to obtain an authentication cookie as follows:
% curl -d "&username=<username>&password=<password>" \
http://pdsops.jpl.nasa.gov/openam/identity/authenticate
token.id=AQIC5wM2LY4SfcyFAElnVTJ4ywAONCJRVy74LMgzFYbRmdI=@AAJTSQACMDE=#
This cookie can then be passed as follows in a POST request:
% curl -X POST ... --cookie 'iPlanetDirectoryPro="<token.id>"'
The example above also applies to a DELETE request.
