Skip to main content
P
18-Opal
pshashipreetham18-Opal
18-Opal
December 21, 2022
Solved

SSO and Application Key

  • December 21, 2022
  • 3 replies
  • 3103 views

Hi,

I am using the Application Key as of now to access services and Mashup for the end user. (Adding APP key in URL)
If I use the SSO moving forward, how can I access those services and Mashups now?

Thanks,

Best answer by Sathishkumar_C

Tried following URL format in SSO enabled Thignworx 8.5.4 instance, it's working as expected.

https://<ThingWorxServer>:<ThingWorxPort>/Thingworx/Mashups/<MashupName>?appKey=<AppKey>&x-thingworx-session=true

Referred Accessing Mashups using Application Key (appKey) Authentication in ThingWorx

3 replies

T
ThorstenMueller13-Aquamarine
13-Aquamarine
December 21, 2022

If you want to use SSO to access these Mashups or services you would have to use an oauth token (bearer token) in your authorization.
This way you can access ThingWorx Mashups or API.
Or you can also re-enable Appkey authorization together with SSO authorization in ThingWorx.

  • To enable AppKey Authenticator when SSO is enabled you have to add the ApplicationKeySettings configuration to the ThingWorx sso-settings.json file located in <ThingworxPlatform>\ssoSecurityConfig:
{
 "BasicSettings": {...
			},
 "ApplicationKeySettings": {
	 "enabled": true
			},
			...
}

 With this help you could still access ThingWorx with appkey even if SSO is enabled

    P
    18-Opal
    pshashipreetham18-OpalAuthor
    18-Opal
    December 23, 2022

    Hi @ThorstenMueller ,

     

    Business use case over here is like... Mashup renders under a Different Portal. We use a Mashup URL with an Application key to Render in another portal.
    If I use SSO, what should I use in Place of the Application Key in the URL because Auth will not work since Mashup is a Render for that Portal.

    Thanks,

    V
    VladimirRosu_11662719-Tanzanite
    19-Tanzanite
    December 23, 2022

    @pshashipreetham 

    My expectation (never tested) is that if ThingWorx is setup for SSO, and when you are in that external portal you're already logged in, then you would not need to use the appKey at all, because when trying to access TW you'll use the same existing authorization token automatically, since you're already logged in via SSO.

    However, it needs to be tested...

    E
    Evieharper1-Visitor
    1-Visitor
    December 23, 2022

    If you want to use SSO to access these Mashups or services you would have to use an oauth token (bearer token) in your authorization. This way you can access ThingWorx Mashups or API. Or you can also re-enable Appkey authorization together with SSO authorization in ThingWorx.

    S
    17-Peridot
    Sathishkumar_C17-PeridotAnswer
    17-Peridot
    January 3, 2023

    Tried following URL format in SSO enabled Thignworx 8.5.4 instance, it's working as expected.

    https://<ThingWorxServer>:<ThingWorxPort>/Thingworx/Mashups/<MashupName>?appKey=<AppKey>&x-thingworx-session=true

    Referred Accessing Mashups using Application Key (appKey) Authentication in ThingWorx

      Terms & ConditionsCookie settingsAccessibility statement