API Authentication Not Persistent?

Community Support for Booked Scheduler
Post Reply
rtr2
Posts: 2
Joined: Tue Nov 03, 2020 6:58 pm

API Authentication Not Persistent?

Post by rtr2 »

I have a Booked installation at booked.example.com and I am runing API request from api.example.com.

I can confirm that I am able to authetcate correctly, as stated in the response below.

Code: Select all

{sessionToken: "1fc33ccdb8433580f8a92034599a12e455ede6a12590dd3044",…}
isAuthenticated: true
links: [{href: "https://booked.example.com/Web/Services/index.php/Authentication/SignOut", title: "logout"}]
message: null
sessionExpires: "2020-11-04T19:01:45+0000"
sessionToken: "1fc33ccdb8433580f8a92034599a18e499ede6a12590dd3044"
userId: "4"
version: "2.8"
But when i subsiqently try to do a reservation pull with the authicated credentials I get an error stating

Code: Select all

You must be authenticated in order to access this service.
https://booked.example.com/Web/Services/index.php/Authentication/Authenticate
My config security settings are,

Code: Select all

security.headers: True
security.strict-transport: False
security.x-frame: deny
security.x-xss: 1; mode=allow
security.x-content-type: nosniff
security.content-security-policy: [BLANK]


How do I make the authentication persistent, so i can use it to make API calls that require authentication?

Booked Version: 2.8.5
Php Version : 7.4

Post Reply