Methods of Authentication
Platform API
You can authenticate in two ways:
- Browser-based authentication: Use browser-based authentication if you are providing an interactive web-based login form for users other than yourself.
- Programmatic authentication: Use programmatic authentication if you are accessing OpenX protected resources with your own credentials only and do not plan on providing a web-based login form for other users.
Technical Differences
The following sections show the differences between browser-based and programmatic authentication.
URL Differences
| Browser-based | Different? | Programmatic |
|---|
https://sso.openx.com/api/index/initiate | No | https://sso.openx.com/api/index/initiate |
https://sso.openx.com/login/login | Yes | https://sso.openx.com/login/process |
https://sso.openx.com/api/index/token | No | https://sso.openx.com/api/index/token |
Callback URL Difference
| Browser-based | Programmatic |
|---|
| Your applications’ callback URL | oob (out of band) |
Cookie Difference
| Browser-based | Programmatic |
|---|
| Does not require that you persist the access token in a cookie. When the user has completed the session, the access token is released. | Requires that you persist the access token in a cookie named openx3\_access\_token until the session is complete. |