Question

3
Replies
118
Views
 Tarini Prasad Dash (TariniDash)
Cognizant Technology Solutions India Ltd.
PEGA LSA
Cognizant Technology Solutions India Ltd.
ES
TariniDash Member since 2011 28 posts
Cognizant Technology Solutions India Ltd.
Posted: February 13, 2020
Last activity: February 13, 2020
Posted: 13 Feb 2020 11:31 EST
Last activity: 13 Feb 2020 21:21 EST
Closed

Custom authentication header for Pega API

Hi,

 

According to compliance with TPA we need a token in the header always . By using Pega API is there a way to pass a custom header in each request ?

 

The idea is disable the basic authentication and use this token in header to authenticate.

 

 

Pega Platform 8.3.1 Enterprise Application Development Dev/Designer Studio Financial Services Lead System Architect
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.
Posted: 1 year ago
Posted: 13 Feb 2020 11:58 EST
Praneeth Purighalla (PraneethPurighalla)
PEGA
Lead System Architect
Pegasystems Inc.
IN

Yes, you can configure 'api' service package to use custom authentication and write your logic in the authentication activity.
Posted: 1 year ago
Posted: 13 Feb 2020 14:03 EST
Tarini Prasad Dash (TariniDash)
Cognizant Technology Solutions India Ltd.
PEGA LSA
Cognizant Technology Solutions India Ltd.
ES

Service package is ok to change the authentication type but how the service rule will accept the new header. It is a final rule .
Posted: 1 year ago
Posted: 13 Feb 2020 21:21 EST
Praneeth Purighalla (PraneethPurighalla)
PEGA
Lead System Architect
Pegasystems Inc.
IN

You need the token (header) only for authentication, correct? Why does the service rule require the header? The headers can be retrieved in the authentication activity from HTTPServletRequest object.