TecRMI Example - Authentication on the REST Service

Example: Authentication on the REST Service

Code language:

The following assembly references are required:

mscorlib
System
System.Core
System.Net.Http
System.Net.Http.Formatting
System.Web

100

101

102

103

using System;
using System.Linq;
using System.Net;
using System.Net.Http;
using System.Net.Http.Headers;
 
namespace Examples.CSharp.Rest
{
    /// <summary>   A REST example. </summary>
    public static partial class RestExample
    {
        /// <summary>   Example of login. </summary>
        /// <remarks>   Shows how to login. </remarks>
        /// <exception cref="InvalidOperationException">    Thrown when the requested operation is
        ///                                                 invalid. </exception>
        /// <param name="company">      The company. </param>
        /// <param name="account">      The user name. </param>
        /// <param name="password">     The password. </param>
        /// <returns>   The authentication token. </returns>
        public static string Login(string company, string account, string password)
        {
            // Create LoginCredentials object.
            var credentials = new LoginCredentials
            {
                Company = company,
                Account = account,
                Password = password,
            };
 
            HttpResponseMessage response;
 
            // Create service client instance.
            using (var serviceClient = new HttpClient { BaseAddress = new Uri("https://rmi-services.tecalliance.net") })
            {
                // Set the media type for the response either JSON ("application/json") or XML ("application/xml")
                // If not set the default response will be "application/json".
                serviceClient.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));
 
                // Set the user agent to a value that indentifies your client application. If your client application is also
                // a web application the user agent of the original request could be passed to identify the user's browser
                // e.g. new ProductInfoHeaderValue(HttpContext.Current.Request.UserAgent).
                serviceClient.DefaultRequestHeaders.UserAgent.Add(new ProductInfoHeaderValue("Examples.Csharp.Rest", "1.0"));
 
                // Set the origin to a value that indentifies your client application. If your client application is also
                // a web application the user agent of the original request could be passed (HttpContext.Current.Request.UserAgent)
                // to identify the user's browser.
                serviceClient.DefaultRequestHeaders.Add("Origin", "http://origin.example");
 
                // Call service via POST. If method PostAsJsonAsync is missing: Add a reference to System.Net.Http.Formatting.dll (https://stackoverflow.com/a/19158658)
                response = serviceClient.PostAsJsonAsync("/auth/login", credentials).Result;
            }
 
            using (response)
            {
                // Check the status code.
                if (response.IsSuccessStatusCode)
                {
                    Console.WriteLine("Logged in.");
 
                    // Get the authentication token and store it to authenticate further requests
                    return response.Headers.GetValues("X-AuthToken").FirstOrDefault();
                }
 
                // handle the error if necessary.
                switch (response.StatusCode)
                {
                    case HttpStatusCode.Unauthorized: // 401
                        Console.WriteLine("Not Authenticated!");
                        break;
                    case HttpStatusCode.InternalServerError: // 500
                        Console.WriteLine("An error occured!");
                        break;
                    default:
                        Console.WriteLine("Unexpected response!");
                        break;
                }
 
                return null;
            }
        }
    }
 
    /// <summary>
    /// Class <see cref="LoginCredentials"/> contains the access parameters which are needed to use the webservice.
    /// </summary>
    /// <remarks>
    /// The login method requires the "Company", "Account" and "Password" properties, containing the application-specific access parameters.
    /// </remarks>
    public class LoginCredentials
    {
        /// <summary>   Gets or sets the company name. </summary>
        /// <value> The company name. </value>
        public string Company { get; set; }
 
        /// <summary>   Gets or sets the user name. </summary>
        /// <value> The user name. </value>
        public string Account { get; set; }
 
        /// <summary>   Gets or sets the password. </summary>
        /// <value> The password. </value>
        public string Password { get; set; }
    }
}

This example uses JSON in Java.

// Initialize webservice parameters
JSONObject param = new JSONObject();
param.put("Company", "");
param.put("Account", "");
param.put("Password", "");
 
// Initialize webservice url
URL url = new URL("https://rmi-services.tecalliance.net/auth/login");
 
// Open connection
HttpURLConnection conn = (HttpURLConnection)url.openConnection();
 
// Set system parameter to allow setting the "Origin" HTTP header
System.setProperty("sun.net.http.allowRestrictedHeaders","true");
 
// Set request headers
conn.setRequestMethod("POST");
conn.setRequestProperty("UserAgent", "TecRMI-Java-Example"); // optional
conn.setRequestProperty("Origin", "http://origin.example");
conn.setRequestProperty("Accept", "application/json");
conn.setRequestProperty("Content-Type", "application/json");
conn.setUseCaches(false);
conn.setDoInput(true);
conn.setDoOutput(true);
 
// Set POST content
OutputStream out = conn.getOutputStream();
Writer writer = new OutputStreamWriter(out, "UTF-8");
writer.write(param.toString());
writer.close();
out.close();
 
// Check connection
if (conn.getResponseCode() != 200) {
    throw new IOException(conn.getResponseMessage());
}
 
// Get authentication token
String authToken = "TecRMI " + conn.getHeaderField("X-AuthToken");
 
// Close connection
conn.disconnect();
 
// Print login message
System.out.println("Login successful (AuthToken: " + authToken + ")");

// Set parameters
var url = 'https://rmi-services.tecalliance.net/auth/login';
var params = {
    Company: '',
    Account: '',
    Password: ''
};
 
// Send HTTP request
var xmlHttp = new XMLHttpRequest();
xmlHttp.open( 'POST', url, false );
xmlHttp.setRequestHeader( 'Content-type', 'application/json;charset=UTF-8' );
xmlHttp.setRequestHeader( 'Accept', 'applicationp/json' );
xmlHttp.send( JSON.stringify( params ) );
 
// Handle HTTP response
if(xmlHttp.status == 200) {
    var authToken = 'TecRMI ' + xmlHttp.getResponseHeader( 'X-AuthToken' );
    alert( 'Login successful (AuthToken: ' + authToken + ')' )
} else {
    alert( xmlHttp.responseText );
}

$vars = 'Company=<COMPANY>&Account=<USERNAME>&Password=<PASSWORD>&callback=responsevalue';
 
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, 'https://rmi-services.tecalliance.net/auth/login');
curl_setopt($ch, CURLOPT_POSTFIELDS, $vars);  //Post Fields
curl_setopt($ch, CURLOPT_PROXY, '127.0.0.1:8888');
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_HEADERFUNCTION, function ( $curl, $header_line ) {
    if ('X-AuthToken: ' === ''.substr( $header_line, 0, strlen( 'X-AuthToken: ' ))) {
        $_SESSION['token'] = trim(preg_replace('/\s\s+/', ' ', str_replace('X-AuthToken: ', '', $header_line)));
    }
    return strlen($header_line);
});
 
$headers = array();
$headers[] = 'Accept: application/jsonp';
$headers[] = 'Host: rmi-services.tecalliance.net';
$headers[] = 'Origin: http://origin.example';
 
curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
 
curl_exec ($ch);
curl_close ($ch);