I am working in a project where Thingworx needs to be deployed in a framework. The framework routinely checks its health status by calling an endpoint/url. As long as anything is returned in a reasonable time, it's happy. The problem I am having is that it seems all the endpoints are behind a login. Is there ANY url that's open to public WITHOUT a login? say an "about" page? If not, what's the best way to add such an endpoint? thanks.
You can create a CustomAuthenticator that can use a specific user context (that you would need to create, recommended with very limited rights) to execute a service that returns a specific response.
You will need to implement a matching algorithm in order to make sure the request is caught (check for a URL pattern, or add a HTTP header etc.)
If you assign low enough priority, this authenticator will execute before the BasicAuthenticator.
This is relatively high as an effort and it's a potential vector of attack (imagine DDOS for that service which does not use basically any auth), so maybe that framework supports adding a HTTP header to that request so you can pass an appKey to it?