[arvados-dev] API Authentication Options from C#

Tom Clegg tom at curoverse.com
Wed Jul 19 08:54:59 EDT 2017


This is similar to the problem of authenticating to a Google account
without a browser, in that the solution may involve redefining the
problem a bit. :)

One approach I've seen is to set up a temporary web server and prompt
the user to visit the login URL (some terminal programs make this
easy) using something like
?return_to=http://localhost:12345/storetoken/. This can save the token
and respond with a page saying "authentication succeeded; now go back
to your terminal window." Of course, this would only work if the CLI
tool is running on localhost, but you might be able to adapt this to
other situations too.

If the goal is to remove the web browser from the picture entirely
(i.e., you need your application to work with real username/password
credentials instead of temporary access tokens) it would be possible
to add support for this in the Arvados API and SSO provider. Even then
it would only work with password-based backends like LDAP but not
Google.

--
Tom Clegg
Chief Architect
Curoverse



More information about the arvados-dev mailing list