Question

3
Replies
77
Views
Close popover
Tarini Prasad Dash (TariniDash)
Cognizant Technology Solutions India Ltd.
PEGA LSA
Cognizant Technology Solutions India Ltd.
ES
View ProfileSend Message
TariniDash Member since 2011 26 posts
Cognizant Technology Solutions India Ltd.
Posted: February 13, 2020
Last activity: February 13, 2020
Closed

Custom authentication header for Pega API

Hi,

 

According to compliance with TPA we need a token in the header always . By using Pega API is there a way to pass a custom header in each request ?

 

The idea is disable the basic authentication and use this token in header to authenticate.

 

 

Pega Platform 8.3.1 Enterprise Application Development Dev/Designer Studio Financial Services Lead System Architect
Close popover
Moderation Team has archived post
Posted: 1 year ago
Close popover
Praneeth Purighalla (PraneethPurighalla)
PEGA
Lead System Architect
Pegasystems Inc.
IN
View ProfileSend Message

Yes, you can configure 'api' service package to use custom authentication and write your logic in the authentication activity.

Posted: 1 year ago
Close popover
Tarini Prasad Dash (TariniDash)
Cognizant Technology Solutions India Ltd.
PEGA LSA
Cognizant Technology Solutions India Ltd.
ES
View ProfileSend Message

Service package is ok to change the authentication type but how the service rule will accept the new header. It is a final rule .

Posted: 1 year ago
Close popover
Praneeth Purighalla (PraneethPurighalla)
PEGA
Lead System Architect
Pegasystems Inc.
IN
View ProfileSend Message

You need the token (header) only for authentication, correct? Why does the service rule require the header? The headers can be retrieved in the authentication activity from HTTPServletRequest object. 
Share this page Share via LinkedIn Copying...
Copied!