Accessing signature using HTTP header
Access to the MFT FS REST API is secured through the usage of session identifier provided as part of the request header.
This session identifier should be received from the Authenticator service.
All interactions with MFT FS REST Services API should take place over HTTPS.
However, some actions that do not require security mechanisms should be available over HTTP.
Also session identifier allows the API to identify the caller and enforce the necessary access rules to the invoked endpoint.
info
Not all endpoints require authenticated access.
If an endpoint does require authenticated access, the client needs to pass session ID in the Authorization request header:
- Authorization: SessionID
Was this topic helpful?
