cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Did you get an answer that solved your problem? Please mark it as an Accepted Solution so others with the same problem can find the answer easily. X

Translate the entire conversation x

Is there any API to get the Logged-in Users' Access-Token as shown as a sample.

Manoj_Dokku4
13-Aquamarine
13-Aquamarine
‎Jul 17, 2024 09:06 AM
‎Jul 17, 2024 09:06 AM

Is there any API to get the Logged-in Users' Access-Token as shown as a sample.

 

 

{
"access_token":"RsT5OjbzRn430zqMLgV3Ia",
"expires_in":3600
}

 

 

 

@HelesicPetr 

Labels:
0 Kudos
Notify Moderator
4 REPLIES 4
Catalina
Moderator
Moderator
(To:Manoj_Dokku4)
‎Jul 17, 2024 10:12 AM
‎Jul 17, 2024 10:12 AM

Hi @Manoj_Dokku4 

Thank you for your question!


I’d like to recommend to bring more details and context to your initial inquiry. 

It also helps to have screenshot(s) to better understand what you are trying to do in your process. 

This will increase your chances to receive meaningful help from other Community members. 

 

Thank you,

Catalina

Community Moderator

Catalina
PTC Community Moderator
0 Kudos
Notify Moderator
Manoj_Dokku4
13-Aquamarine
13-Aquamarine
(To:Manoj_Dokku4)
‎Jul 18, 2024 03:25 AM
‎Jul 18, 2024 03:25 AM

if Windchill SSO is configured as below.

 

Windchill(Shibbleth) <-> PingFederate(SAM,OATH2)

0 Kudos
Notify Moderator
HelesicPetr
22-Sapphire II
22-Sapphire II
(To:Manoj_Dokku4)
‎Jul 18, 2024 03:36 AM
‎Jul 18, 2024 03:36 AM

Hi @Manoj_Dokku4 

I know only api to get CSRFToken

curl -X 'GET' \
  'https://server.com:443/Windchill/servlet/odata/v3/PTC/GetCSRFToken()' \
  -H 'accept: application/json'

also you can check if the CSRF is valid by java script

 

var CSRFProtector = Java.type('com.ptc.core.appsec.CSRFProtector');
CSRFProtector.checkNonce(data.getHttpRequest());

 

PS> i guess that access token is different token that is used by Shibbleth and I guess that this information could be in the HTTP request as a parameter

 

PetH 

AVENG
0 Kudos
Notify Moderator
Manoj_Dokku4
13-Aquamarine
13-Aquamarine
(To:HelesicPetr)
‎Jul 26, 2024 04:14 AM
‎Jul 26, 2024 04:14 AM

CSRF and JWT Tokens are different than Windchill Access token.

For the reference there is an article from PTC.

https://support.ptc.com/help/windchill_rest_services/r2.2/en/index.html#page/windchill_rest_services/oauth_for_wrs.html

but this architecture is a bit different from the once which is configured.

Notify Moderator
Announcements


Contact Community Management
Top Tags
Top