Enabling Trusted Authentication with HTTP Headers
Trusted Authentication with HTTP Headers is a feature that allows users to log in through HTTP headers. A request is authenticated if it contains the user’s email address in a particular HTTP header, specified by the administrator of the SD Elements instance.
| This method is not secure unless all traffic into SD Elements is intercepted by a trusted server that verifies that all requests are authenticated, such as a proxy. If unsecured, unauthenticated users are able to set a correct header in an HTTP request to be considered authenticated by the system. |
To enable this feature, perform the following steps.
-
The user has the system super user permission.
-
Log in to SD Elements with super user credentials.
-
From the gear icon menu, select Authentication.
-
From the Single Sign-on tab, go to SSO Type and select the Trusted Authentication option.
-
Enter the details in the following fields: *Email Address: The HTTP header containing a user’s email address. *First Name: The HTTP header that contains a user’s first name. (Optional) *Last Name: The HTTP header that contains a user’s last name. (Optional) *Login URL: The URL that unauthenticated users will be redirected to upon attempted access. The standard login page will be used if not provided. (Optional) *Logout URL: The URL where users will be redirected to upon logout. The standard logout page will be used if not provided. (Optional)
-
Click Save to finish.
| If the First Name and Last Name headers are not available, a new user will be prompted to enter their name. It is also recommended that you provide both a Login URL and Logout URL for optimal integration with your Single Sign-On Service. . Click Save to finish. |