Is it possible to make authentication in identityserver4 only available via REST calls?
I'm quite new with identityserver4 so correct me if I say something wrong. I have set up identityserver4 together with ASP Identity for usermanagement and protected my API with it, however I don't know how to get an access token without having to be redirected to the login page. I'm using postman to get an access token via the authorization tab using the following details:
new Client
{
ClientId = "postman-api",
ClientName = "Postman Test Client",
ClientSecrets = { new Secret("PostmanIsASecret".Sha256()) },
AllowedGrantTypes = GrantTypes.Implicit,
AllowAccessTokensViaBrowser = true,
RequireConsent = false,
RedirectUris = { "https://www.getpostman.com/oauth2/callback"},
PostLogoutRedirectUris = { "https://www.getpostman.com" },
AllowedCorsOrigins = { "https://www.getpostman.com" },
EnableLocalLogin = false,
RequirePkce = false,
AllowedScopes =
{
IdentityServerConstants.StandardScopes.OpenId,
IdentityServerConstants.StandardScopes.Profile,
IdentityServerConstants.StandardScopes.Email,
"jumsum.api"
}
}
I just want to login and get an access token without having to be redirected all the time. In the console I'm getting this:
IdentityServer4.ResponseHandling.AuthorizeInteractionResponseGenerator: Information: Showing login: User is not authenticated
I just want to pass a username and password via the http request body and get an access token back. What am I doing wrong?
You could add a client that accepts the client credentials flow and using this flow you can get an access token using just a username and password. This is a flow for machine-to-machine communication where no human user is involved.
Read more about that here
- How to parse in Postman body response from XML format
- API internal error 500 in app and working fine in the server
- Firebase Firestore REST Request - Query and Filter
- How to decode jwt token in POSTMAN?
- How to show in postman collections run results summary the name of the folders next to the name of the requests
- Postman removed offline mode (Scratch Pad) in new versions, Is there a way to enable it?
- How to get Optum sandbox to authenticate with OAuth 2.0 using Java and okhttp
- Access complete response size in postman test?
- Create unique body request in postman for API-test
- Postman request body in Pre-request script
- Why is raw data not accepting the format in POSTMAN?
- Microsoft Cards for incoming webhook arrive empty in teams
- Postman API Invalid Credentials
- Ping Federate Settings to configure authorization code grant flow using Postman
- Connecting to SendGrid API via Postman
- why my postman basic auth not working correctly?
- How to get a session object in the server side in next.js 14?
- Alamofire .POST encoding (.URL)
- Post parameters not reaching API from app
- trpc giving error when trying to test with postman
- Postman - How to see request with headers and body data with variables substituted
- Converting a Postman request to curl
- Simulate a specific CURL in PostMan
- Postman: can't find interceptor button
- Mongodb FindOne returns object with undefined property
- Issue Accessing Azure Cloud Services via Rest API
- req.body empty on posts
- curl gives error while postman works as intended "Failed to decode JSON object: Expecting property name enclosed in double quotes"
- Postman: Is it possible to stop a postman call from being executed based on conditions detected in pre-requisite scripts?
- Marvel API and Insomnia (or Postman): how do I pass the hash value that's required?